O'Reilly logo

Stay ahead with the world's most comprehensive technology and business learning platform.

With Safari, you learn the way you learn best. Get unlimited access to videos, live online training, learning paths, books, tutorials, and more.

Start Free Trial

No credit card required

CISA: Certified Information Systems Auditor Study Guide, 4th Edition

Book Description

The ultimate CISA prep guide, with practice exams

Sybex's CISA: Certified Information Systems Auditor Study Guide, Fourth Edition is the newest edition of industry-leading study guide for the Certified Information System Auditor exam, fully updated to align with the latest ISACA standards and changes in IS auditing. This new edition provides complete guidance toward all content areas, tasks, and knowledge areas of the exam and is illustrated with real-world examples. All CISA terminology has been revised to reflect the most recent interpretations, including 73 definition and nomenclature changes. Each chapter summary highlights the most important topics on which you'll be tested, and review questions help you gauge your understanding of the material. You also get access to electronic flashcards, practice exams, and the Sybex test engine for comprehensively thorough preparation.

For those who audit, control, monitor, and assess enterprise IT and business systems, the CISA certification signals knowledge, skills, experience, and credibility that delivers value to a business. This study guide gives you the advantage of detailed explanations from a real-world perspective, so you can go into the exam fully prepared.

  • Discover how much you already know by beginning with an assessment test
  • Understand all content, knowledge, and tasks covered by the CISA exam
  • Get more in-depths explanation and demonstrations with an all-new training video
  • Test your knowledge with the electronic test engine, flashcards, review questions, and more

The CISA certification has been a globally accepted standard of achievement among information systems audit, control, and security professionals since 1978. If you're looking to acquire one of the top IS security credentials, CISA is the comprehensive study guide you need.

Table of Contents

  1. Introduction
    1. Assessment Test
    2. Answers to Assessment Test
  2. Chapter 1 Secrets of a Successful Auditor
    1. Understanding the Demand for IS Audits
    2. Understanding Policies, Standards, Guidelines, and Procedures
    3. Understanding Professional Ethics
    4. Understanding the Purpose of an Audit
    5. Differentiating between Auditor and Auditee Roles
    6. Implementing Audit Standards
    7. Auditor Is an Executive Position
    8. Understanding the Corporate Organizational Structure
    9. Summary
    10. Exam Essentials
    11. Review Questions
  3. Chapter 2 Governance
    1. Strategy Planning for Organizational Control
    2. Overview of Tactical Management
    3. Planning and Performance
    4. Overview of Business Process Reengineering
    5. Operations Management
    6. Summary
    7. Exam Essentials
    8. Review Questions
  4. Chapter 3 Audit Process
    1. Understanding the Audit Program
    2. Establishing and Approving an Audit Charter
    3. Preplanning Specific Audits
    4. Performing an Audit Risk Assessment
    5. Determining Whether an Audit Is Possible
    6. Performing the Audit
    7. Gathering Audit Evidence
    8. Conducting Audit Evidence Testing
    9. Generating Audit Findings
    10. Report Findings
    11. Conducting Follow-up (Closing Meeting)
    12. Summary
    13. Exam Essentials
    14. Review Questions
  5. Chapter 4 Networking Technology Basics
    1. Understanding the Differences in Computer Architecture
    2. Selecting the Best System
    3. Introducing the Open Systems Interconnection Model
    4. Understanding Physical Network Design
    5. Understanding Network Cable Topologies
    6. Differentiating Network Cable Types
    7. Connecting Network Devices
    8. Using Network Services
    9. Expanding the Network
    10. Using Software as a Service (SaaS)
    11. The Basics of Managing the Network
    12. Summary
    13. Exam Essentials
    14. Review Questions
  6. Chapter 5 Information Systems Life Cycle
    1. Governance in Software Development
    2. Management of Software Quality
    3. Overview of the Executive Steering Committee
    4. Change Management
    5. Management of the Software Project
    6. Overview of the System Development Life Cycle
    7. Overview of Data Architecture
    8. Decision Support Systems
    9. Program Architecture
    10. Centralization vs. Decentralization
    11. Electronic Commerce
    12. Summary
    13. Exam Essentials
    14. Review Questions
  7. Chapter 6 System Implementation and Operations
    1. Understanding the Nature of IT Services
    2. Performing IT Operations Management
    3. Performing Capacity Management
    4. Using Administrative Protection
    5. Performing Problem Management
    6. Monitoring the Status of Controls
    7. Implementing Physical Protection
    8. Summary
    9. Exam Essentials
    10. Review Questions
  8. Chapter 7 Protecting Information Assets
    1. Understanding the Threat
    2. Using Technical Protection
    3. Summary
    4. Exam Essentials
    5. Review Questions
  9. Chapter 8 Business Continuity and Disaster Recovery
    1. Debunking the Myths
    2. Understanding the Five Conflicting Disciplines Called Business Continuity
    3. Defining Disaster Recovery
    4. Defining the Purpose of Business Continuity
    5. Uniting Other Plans with Business Continuity
    6. Understanding the Five Phases of a Business Continuity Program
    7. Understanding the Auditor Interests in BC/DR Plans
    8. Summary
    9. Exam Essentials
    10. Review Questions
  10. Appendix Answers to Review Questions
    1. Chapter 1: Secrets of a Successful Auditor
    2. Chapter 2: Governance
    3. Chapter 3: Audit Process
    4. Chapter 4: Networking Technology Basics
    5. Chapter 5: Information Systems Life Cycle
    6. Chapter 6: System Implementation and Operations
    7. Chapter 7: Protecting Information Assets
    8. Chapter 8: Business Continuity and Disaster Recovery
  11. Advert
  12. EULA