Browse Information Systems and Controls (ISC)
-
-
- 3.1 COSO Internal Control – Integrated Framework: Relevance to Information Systems
- 3.2 COSO ERM for IT: Risk Management Across Digital Environments
- 3.3 COBIT 2019 Overview: Governance System Principles and Components
- 3.4 Other Influential Standards and Regulations (e.g., PCI DSS, HIPAA, GDPR)
- 3.5 ITIL and IT Service Management Overviews
-
-
- 10.1 Change Control Concepts: Policies and Procedures
- 10.2 Environments and Testing (Development, QA/Staging, Production)
- 10.3 Patch Management: Risks and Controls
- 10.4 Continuous Integration and Continuous Deployment in Modern DevOps
- 10.5 Systems Development Life Cycle (SDLC): Waterfall vs. Agile/DevOps
-
-
-
-
-
Chapter 33: Standards, Frameworks, and Regulation Summaries
In this section
-
COBIT, NIST, GDPR, PCI DSS Key Takeaways
COBIT, NIST, GDPR, PCI DSS Key Takeaways. A thorough exploration of the essential frameworks and regulations that guide information systems governance, security, and compliance for CPAs practicing IT Audit, Risk Management, or Advisory. This comprehensive article covers high-level goals, practical compliance pointers, and real-world examples, equipping professionals to robustly evaluate organizational IT controls.
-
AICPA Professional Standards Related to IT Audits
Explore how various AICPA professional standards shape the conduct of IT audits, from financial statement audits to attestation engagements, ensuring compliance, reliability, and integrity in technology-driven environments.
-
Additional Reading and Reference Resources
Explore official guides, white papers, and academic journals to deepen your mastery of the ISC domain. This section provides curated references for frameworks, regulations, IT audit methodologies, cybersecurity, data management, SOC engagements, and more—enabling a robust, in-depth learning experience aligned with the CPA (AICPA®) ISC Blueprint.
