Browse Information Systems and Controls (ISC)
-
-
- 3.1 COSO Internal Control – Integrated Framework: Relevance to Information Systems
- 3.2 COSO ERM for IT: Risk Management Across Digital Environments
- 3.3 COBIT 2019 Overview: Governance System Principles and Components
- 3.4 Other Influential Standards and Regulations (e.g., PCI DSS, HIPAA, GDPR)
- 3.5 ITIL and IT Service Management Overviews
-
-
- 10.1 Change Control Concepts: Policies and Procedures
- 10.2 Environments and Testing (Development, QA/Staging, Production)
- 10.3 Patch Management: Risks and Controls
- 10.4 Continuous Integration and Continuous Deployment in Modern DevOps
- 10.5 Systems Development Life Cycle (SDLC): Waterfall vs. Agile/DevOps
-
-
-
-
-
Chapter 18: Authentication and Access Management
In this section
-
Identification vs. Authentication vs. Authorization
Explore the core pillars of Identity and Access Management—Identification, Authentication, and Authorization—and their significance in CPA-oriented IT environments.
-
Password Policies, Multi‑Factor Authentication, Single Sign‑On
Explore robust password policies, multi-factor authentication methods, and single sign-on strategies to reinforce security in modern CPA environments.
-
Role‑Based Access and the Principle of Least Privilege
Learn how to design and implement role-based access control in alignment with the principle of least privilege for secure, efficient, and compliant authorization management.
-
Monitoring Tools: Logging and Access Reviews
Learn how to harness effective monitoring tools to identify anomalies in user logins, implement robust logging practices, and conduct systematic access reviews for enhanced security and compliance.
