CHAPTER 2
IT Governance and Management
This chapter covers CISA Domain 2, “Governance and Management of IT,” and discusses the following topics:
• IT governance structure
• Human resources management
• IT policies, standards, processes, and procedures
• Management practices
• IT resource investment, use, and allocation practices
• IT contracting and contract management strategies and practices
• Risk management practices
• Monitoring and assurance
The topics in this chapter represent 17 percent of the CISA examination.
IT governance should be the wellspring from which all other IT activities flow.
Properly implemented, governance is a process whereby senior management exerts strategic control over business functions through ...
Get CISA Certified Information Systems Auditor All-in-One Exam Guide, Fourth Edition, 4th Edition now with the O’Reilly learning platform.
O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.
