ISACA Seeks Public Feedback on IS Audit and Assurance Guidelines
The guidelines support the Standards for IS Audit and Assurance, which also were recently updated after public exposure. ISACA introduced the standards in 1988 and is dedicated to keeping them current. The updated standards address IS audit and assurance professionals' roles and responsibilities, and become effective 1 November 2013. The standards are also fully integrated into the IT Assurance Framework (ITAF), 2nd Edition, a living reference framework that includes references to other ISACA tools and techniques, such as COBIT 5. Previous standards will be withdrawn when the new standards become effective.
"The IS Audit and Assurance Guidelines assist IS audit and assurance professionals in complying with the new standards," said Steven Sizemore, CISA, CIA, CGAP, IT audit manager for Texas Health and Human Services and chair of ISACA's Professional Standards and Career Management Committee. "The committee welcomes feedback from the public exposure period and will review every response to ensure the updated guidelines meet the needs of these professionals."
The ISACA Professional Standards and Career Management Committee plans to issue the updated guidelines in the third quarter of 2014.
"While the standards represent high-level principles that auditors must follow when conducting an IS audit and assurance engagement, the guidelines deliver the 'meat on the bone' of the standards," said Ian Sanderson, CISA, CRISC, FCA, chief financial reporting officer of the NATO Supply Agency and member of ISACA's Professional Standards Committee. "The guidelines are an essential tool for all IS audit and assurance professionals. They elaborate on the standards and provide practical guidance to meet their requirements."
To comment on the guidelines visit www.isaca.org/standardexposure. For additional information on ITAF, visit www.isaca.org/itaf.
With more than 110,000 constituents in 180 countries, ISACA® (www.isaca.org) helps business and IT leaders maximize value and manage risk related to information and technology. Founded in 1969, the nonprofit, independent ISACA is an advocate for professionals involved in information security, assurance, risk management and governance. These professionals rely on ISACA as the trusted source for information and technology knowledge, community, standards and certification. The association, which has 200 chapters worldwide, advances and validates business-critical skills and knowledge through the globally respected Certified Information Systems Auditor® (CISA®), Certified Information Security Manager® (CISM®), Certified in the Governance of Enterprise IT® (CGEIT®) and Certified in Risk and Information Systems Control(TM) (CRISC(TM) ) credentials. ISACA also developed and continually updates COBIT®, a business framework that helps enterprises in all industries and geographies govern and manage their information and technology.
Participate in the ISACA Knowledge Center: www.isaca.org/...
Follow ISACA on Twitter: https://twitter.com/ISACANews
Join ISACA on LinkedIn: ISACA (Official), http://linkd.in/ISACAOfficial
Like ISACA on Facebook: www.facebook.com/ISACAHQ