CISA Certified Information Systems Auditor Practice Exams

CHAPTER 2 IT Governance and Management

This chapter covers CISA Domain 2, “Governance and Management of IT,” and includes questions from the following topics:

• Business alignment

• Security strategy development

• Security governance

• Information security strategy development

• Resources needed to develop and execute a security strategy

• Information security metrics

The topics in this chapter represent 17 percent of the CISA examination.

ISACA defines this domain as follows: “Establish and/or maintain an information security governance framework and supporting processes to ensure that the information security strategy is aligned with organizational goals and objectives.”

When properly implemented, security governance is management’s ...

Get CISA Certified Information Systems Auditor Practice Exams now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.

Start your free trial

CISA Certified Information Systems Auditor Practice Exams by Peter H. Gregory

CHAPTER 2

IT Governance and Management

Don’t leave empty-handed

It’s yours, free.

Check it out now on O’Reilly