CISA Review Manual 2009

The CISA Review Manual 2009 has been extensively revised and updated with new content to reflect changing principles and practices, and is organized according to the current CISA job practice areas. The manual features detailed descriptions of the tasks performed by IS auditors and the knowledge required to plan, manage and perform IS audits. The new edition also features new content based on the IT Assurance Framework (ITAF) recently published by ISACA. ITAF is a comprehensive assurance model that incorporates standards and good practices, providing guidance on the design, conduct and reporting of IT audit and assurance assignments; defines terms and concepts specific to IT assurance; and establishes standards that address IT audit and assurance professional roles and responsibilities, knowledge and skills, diligence, conduct and reporting requirements. The CISA Review Manual 2009 includes brief chapter summaries that focus on the main topics that a candidate should keep in mind, and new case studies to assist the candidate in understanding current practices. Also included are definitions of terms most commonly found on the exam, practice questions similar in content to what has previously appeared on the exam and references to additional study materials on specific topics. This manual can be used as a stand-alone document for individual study or as a guide or reference for study groups and chapters conducting local review courses. The 2009 edition has been developed to help the CISA candidate prepare for the exam and the manual is organized for study in the following job practice areas: IS audit process IT governance Systems and infrastructure life cycle management IT service delivery and support Protection of information assets Business continuity and disaster recovery