Browse Information Systems and Controls (ISC)
-
-
- 3.1 COSO Internal Control – Integrated Framework: Relevance to Information Systems
- 3.2 COSO ERM for IT: Risk Management Across Digital Environments
- 3.3 COBIT 2019 Overview: Governance System Principles and Components
- 3.4 Other Influential Standards and Regulations (e.g., PCI DSS, HIPAA, GDPR)
- 3.5 ITIL and IT Service Management Overviews
-
-
- 10.1 Change Control Concepts: Policies and Procedures
- 10.2 Environments and Testing (Development, QA/Staging, Production)
- 10.3 Patch Management: Risks and Controls
- 10.4 Continuous Integration and Continuous Deployment in Modern DevOps
- 10.5 Systems Development Life Cycle (SDLC): Waterfall vs. Agile/DevOps
-
-
-
-
-
Chapter 10: IT Change Management
In this section
-
Change Control Concepts: Policies and Procedures
A comprehensive guide on establishing formal change control policies and procedures, emphasizing mandatory steps, risk mitigation, and alignment with regulatory standards.
-
Environments and Testing (Development, QA/Staging, Production)
Explore how environment segregation and structured testing methodologies reduce risk and enhance reliability in software change management processes.
-
Patch Management: Risks and Controls
Explore critical patch management strategies, testing procedures, and rollback plans to mitigate IT risks. Learn about timely deployment best practices, real-world breaches, and CPA considerations.
-
Continuous Integration and Continuous Deployment in Modern DevOps
Explore how CI/CD pipelines streamline code integration, testing, and automated deployment in modern DevOps, emphasizing security scanning and efficiency for financial and accounting systems.
-
Systems Development Life Cycle (SDLC): Waterfall vs. Agile/DevOps
Compare Waterfall’s linear approach with Agile/DevOps’ iterative cycles, examining their impact on risk oversight, compliance, and efficient project delivery.
