Browse Information Systems and Controls (ISC)
-
-
- 3.1 COSO Internal Control – Integrated Framework: Relevance to Information Systems
- 3.2 COSO ERM for IT: Risk Management Across Digital Environments
- 3.3 COBIT 2019 Overview: Governance System Principles and Components
- 3.4 Other Influential Standards and Regulations (e.g., PCI DSS, HIPAA, GDPR)
- 3.5 ITIL and IT Service Management Overviews
-
-
- 10.1 Change Control Concepts: Policies and Procedures
- 10.2 Environments and Testing (Development, QA/Staging, Production)
- 10.3 Patch Management: Risks and Controls
- 10.4 Continuous Integration and Continuous Deployment in Modern DevOps
- 10.5 Systems Development Life Cycle (SDLC): Waterfall vs. Agile/DevOps
-
-
-
-
-
Chapter 16: Foundations of Cybersecurity
In this section
-
Threat Actors, Attack Vectors, and Evolving Landscapes
Explore the diverse range of cyber threat actors, top attack vectors leveraged in modern cyber intrusions, and the continuously evolving threat landscape, with practical insights for CPAs.
-
Cybersecurity Strategies: Layers, Defense‑in‑Depth, Zero‑Trust
Explore how layered cybersecurity, defense-in-depth, and zero-trust strategies fortify organizations against advanced threats, ensuring data confidentiality, integrity, and availability.
-
COSO Framework Applied to Cybersecurity Risks
Explore how the COSO Internal Control – Integrated Framework applies to cybersecurity, examining key components, controls, and real-world crosswalks between governance and cyber risk mitigation.
-
Zero‑Trust Approach to Security
Explore how Zero‑Trust differs from traditional perimeter-focused strategies, deployment guidelines, and best practices for CPAs advising organizations in modern cybersecurity environments.
