IT Audit

This capability maturity model can be used to measure the maturity of an organization’s access controls process and to a...

This policy sample establishes guidelines and procedures common to effective company equipment and system information pr...

This tool contains performance measures and questions an organization can use to enforce and ensure the validity of tran...

This document outlines risks and controls common to data warehouse and business intelligence management in a risk contro...

This tool includes two sample audit programs that provide steps organizations can take to facilitate an application secu...

This tool contains two sample audit programs that provide steps organizations can take to perform a data conversion audi...

This sample policy defines guidelines and procedures organizations should follow when using telecommunications systems.

The objective of this policy is to provide a standardized approach and operating instructions for the execution of a com...

This tool features leading practices that can be used to evaluate and improve an organization’s IT infrastructure.

This tool contains three sample policies that highlight guidelines and procedures common to recognizing and retaining da...

This policy establishes the scope of a company's information security management system and characterizes the interfaces...

The purpose of this tool is to encourage dialog and help an organization assess the state of its network security. Areas...