Lora Goody's Blog

5 Domains of CISA

Lora Goody's photo
Lora Goody
·

1 min read

  1. Domain 1: Information Systems Auditing Process

    • This domain focuses on the fundamental principles and practices of information systems auditing. It covers the audit process, including planning, execution, reporting, and follow-up activities. Topics include audit planning and management, risk assessment, and various audit methodologies.

  2. Domain 2: Governance and Management of IT

    • This domain examines how IT governance and management practices impact an organization's ability to achieve its objectives. It covers topics such as IT governance frameworks (e.g., COBIT), IT organizational structure, IT policies and procedures, and management of IT resources.

  3. Domain 3: Information Systems Acquisition, Development, and Implementation

    • In this domain, you'll learn about the processes involved in acquiring, developing, and implementing information systems. This includes project management, requirements analysis, system design, coding, and testing. You'll also study the importance of controls in the systems development lifecycle.

  4. Domain 4: Information Systems Operations and Business Resilience

    • This domain focuses on the day-to-day operations of information systems and ensuring business continuity. Topics include IT service management (e.g., ITIL), incident management, problem management, change management, and disaster recovery planning.

  5. Domain 5: Protection of Information Assets

    • Domain 5 deals with safeguarding information assets from various threats. This includes understanding information security concepts, physical and logical access controls, cryptography, network security, and security policies and procedures.
educationtrainingcisaonline courses