6.3 System Infrastructure
(a) Information Technology Control Frameworks
IT control frameworks provide overall guidance to user organizations as a frame of reference for security, governance, and implementation of security-related controls. Several organizations within and outside the United States provide such guidance.
Eleven major types of IT control frameworks are discussed in this section:
In addition, guidelines for implementing minimum security requirements, regardless of the type of IT control framework adopted, are presented. ...
Get Wiley CIAexcel Exam Review 2014: Part 3, Internal Audit Knowledge Elements now with the O’Reilly learning platform.
O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.