CISA – Certified Information Systems Auditor Study Guide - Second Edition

By : Hemang Doshi

5 (3)

Buy this Book

CISA – Certified Information Systems Auditor Study Guide - Second Edition

5 (3)

By: Hemang Doshi

Buy this Book

Overview of this book

With the latest updates and revised study material, this second edition of the Certified Information Systems Auditor Study Guide provides an excellent starting point for your CISA certification preparation. The book strengthens your grip on the core concepts through a three-step approach. First, it presents the fundamentals with easy-to-understand theoretical explanations. Next, it provides a list of key aspects that are crucial from the CISA exam perspective, ensuring you focus on important pointers for the exam. Finally, the book makes you an expert in specific topics by engaging you with self-assessment questions designed to align with the exam format, challenging you to apply your knowledge and sharpen your understanding. Moreover, the book comes with lifetime access to supplementary resources on an online platform, including CISA flashcards, practice questions, and valuable exam tips. With unlimited access to the website, you’ll have the flexibility to practice as many times as you desire, maximizing your exam readiness. By the end of this book, you’ll have developed the proficiency to successfully obtain the CISA certification and significantly upgrade your auditing career.

Preface

Online Exam-Prep Tools

Who This Book Is For

What This Book Covers

How to Get the Most out of This Book

Recorded Lectures

Requirements for the Online Content

Instructions for Unlocking the Online Content

Quick Access to the Website

Conventions Used

Get in Touch

Share Your Thoughts

Download a Free PDF Copy of This Book

Chapter 1: Audit Planning

The Contents of an Audit Charter

Audit Planning

Business Process Applications and Controls

Types of Controls

Risk-Based Audit Planning

Types of Audits and Assessments

Summary

Chapter Review Questions

Free Chapter

Chapter 2: Audit Execution

Audit Project Management

Sampling Methodology

Audit Evidence Collection Techniques

Data Analytics

Reporting and Communication Techniques

Control Self-Assessment

Summary

Chapter Review Questions

Chapter 3: IT Governance

Enterprise Governance of IT (EGIT)

IT-Related Frameworks

IT Standards, Policies, and Procedures

Organizational Structure

Enterprise Architecture

Enterprise Risk Management

Maturity Model

Laws, Regulations, and Industry Standards Affecting the Organization

Summary

Chapter Review Questions

Chapter 4: IT Management

IT Resource Management

IT Service Provider Acquisition and Management

IT Performance Monitoring and Reporting

Quality Assurance and Quality Management in IT

Summary

Chapter Review Questions

Chapter 5: Information Systems Acquisition and Development

Project Management Structure

Business Case and Feasibility Analysis

System Development Methodologies

Control Identification and Design

Summary

Chapter Review Questions

Chapter 6: Information Systems Implementation

Testing Methodology

System Migration

Post-Implementation Review

Summary

Chapter Review Questions

Chapter 7: Information Systems Operations

Understanding Common Technology Components

IT Asset Management

Job Scheduling

End User Computing

System Performance Management

Problem and Incident Management

Change Management, Configuration Management, and Patch Management

IT Service-Level Management

Evaluating the Database Management Process

Summary

Chapter Review Questions

Chapter 8: Business Resilience

Business Impact Analysis

Data Backup and Restoration

System Resiliency

Business Continuity Plan

Disaster Recovery Plan

DRP – Test Methods

Recovery Time Objective (RTO) and Recovery Point Objective (RPO)

Alternate Recovery Sites

Summary

Chapter Review Questions

Chapter 9: Information Asset Security and Control

Information Asset Security Frameworks, Standards, and Guidelines

Privacy Principles

Physical Access and Environmental Controls

Identity and Access Management

Biometrics

Summary

Chapter Review Questions

Chapter 10: Network Security and Control

Network and Endpoint Devices

Firewall Types and Implementation

VPN

Voice over Internet Protocol (VoIP)

Wireless Networks

Email Security

Summary

Chapter Review Questions

Chapter 11: Public Key Cryptography and Other Emerging Technologies

Public Key Cryptography

Internet of Things (IoT)

Summary

Chapter Review Questions

Chapter 12: Security Event Management

Security Awareness Training and Programs

Information System Attack Methods and Techniques

Security Testing Tools and Techniques

Security Monitoring Tools and Techniques

Incident Response Management

Evidence Collection and Forensics

Summary

Chapter Review Questions

Why subscribe?

Other Books You May Enjoy

Share Your Thoughts

Download a Free PDF Copy of This Book

Customer Reviews

5 (3)

5 star

100%

4 star

3 star

2 star

1 star

Chapter Review Questions

Before you proceed to Chapter 3, IT Governance, it is recommended that you solve the practice questions from this chapter first. These chapter review questions have been carefully crafted to reinforce the knowledge you have gained throughout this chapter. By engaging with these questions, you will solidify your understanding of key topics, identify areas that require further study, and build your confidence before moving on to new concepts in the next chapter.

Note

A few of the questions may not be directly related to the topics in the chapter. They aim to test your general understanding of information systems concepts instead.

The following image shows an example of the practice questions interface.

Figure 2.7: CISA practice questions interface

To access the end-of-chapter questions from this chapter, follow these steps:

Open your web browser and go to https://packt.link/WYjVC. You will see the following screen:

Figure 2.8: Chapter summary and login

You can also scan the following QR code to access the website:

Figure 2.9: QR code to access Chapter 2 questions

Log in to your account using your credentials. If you haven’t activated your account yet, refer to Instructions for Unlocking the Online Content in the Preface for detailed instructions.

After a successful login, you will see the following screen:

Figure 2.10: Chapter summary and end-of-chapter question sets

Click on any of the given sets to begin your practice quiz. The quiz sets are timed as you can see from the following image:

Figure 2.11: Practice questions interface with timer

When the timer runs out, the quiz will submit automatically. Attempt each quiz multiple times till you are able to answer all questions not just correctly, but within the time limit as well

Chapter Benchmark Score

Before moving on to the next chapter, it is recommended that you score an average of 75% on the end-of-chapter practice quizzes. By actively working toward meeting this benchmark score, you will ensure that you are well-equipped to tackle the concepts in the upcoming chapter.

CISA – Certified Information Systems Auditor Study Guide - Second Edition

By : Hemang Doshi

CISA – Certified Information Systems Auditor Study Guide - Second Edition

By: Hemang Doshi

Overview of this book

Related Content you might be interested in

Current Title:

CISA – Certified Information Systems Auditor Study Guide - Second Edition

Certified Information Security Manager Exam Prep Guide

Certified Information Security Manager Exam Prep Guide

Mastering Information Security Compliance Management

Chapter Review Questions