About the Book
CISA Exam Prep
Certified Information Systems Auditor Michael Gregg Your Complete Certification Solution! The Smart Way to Study(TM) In This Book You'll Learn How To:
- Approach the IS audit process from ISACA's view of IS auditing best practices
- Relate and apply information security and systems audit best practices to the six CISA job practice areas
- Understand the IS audit process and learn how to apply best practices to secure an organization's assets
- Evaluate IT governance to ensure that the organization has the structure, policies, and mechanisms in place to provide sufficient IS controls
- Minimize risk within an IT/IS environment by using sound security techniques and practices
- Assess systems and infrastructure lifecycle practices to determine their effectiveness in meeting security requirements and meeting organizational objectives
- Gain a deeper understanding of the business continuity and disaster recovery process to help minimize risk
- Protect key informational assets by examining the security architecture and evaluating controls designed for the protection of confidentiality, availability, and integrity
- Streamline your exam preparations with our exam insights, tips, and study strategies
WRITTEN BY A LEADING CISA EXAM EXPERT! Michael Gregg, founder and president of Superior Solutions, Inc., a Houston-based IT security consulting and auditing firm, has more than 20 years experience in information security and risk. He holds two associate degrees, a bachelor's degree, and a master's degree. He presently maintains more than a dozen certifications and is a nine-time winner of Global Knowledge's Perfect Instructor Award. Michael not only has experience in performing security audits and assessments, but also is the author of Que Publishing's Certified Ethical Hacker Exam Prep, CISSP Exam Cram, and is the co-author of Inside Network Security Assessment: Guarding Your IT Infrastructure by Sams Publishing.
Introduction
Study and Exam Prep Tips Part I: IT Governance and the Audit Process Chapter 1: The Audit Process Chapter 2: IT Governance Part II: System and Infrastructure Lifecycle Management Chapter 3: Lifecycle Management Chapter 4: System Infrastructure Control Part III: IT Service Delivery and Support Chapter 5: Information Systems Hardware and Architecture Chapter 6: Information Systems Used for IT Delivery and Support Part IV: Protection of Information Assets Chapter 7: Protection of Logical Assets Chapter 8: Physical Security Part V: Business Continuity and Disaster Recovery Chapter 9: Business Continuity and Disaster Recovery Part VI: Final Preparation Fast Facts Practice Exam Answers to Practice Exam Questions Glossary Index
www.examcram.com ISBN-13: 978-0-7897-3573-7 ISBN-10: 0-7897-3573-3
About the Author: As the founder and president of Superior Solutions, Inc., a Houston-based IT security consulting and auditing firm, Michael Gregg has more than 15 years of experience in information security and risk management. He holds two associate's degrees, a bachelor's degree, and a master's degree. Some of the certifications he holds include the following: CISA, CISSP, MCSE, CTT+, A+, N+, Security+, CNA, CCNA, CIW Security Analyst, CCE, CEH, CHFI, CEI, DCNP, ES Dragon IDS, ES Advanced Dragon IDS, and TICSA. Michael not only has experience in performing security audits and assessments, but he also is the co-author of
Inside Network Security Assessment: Guarding Your IT Infrastructure (ISBN 0672328097, Sams, 2005). Other publications he has authored include the
CISSP Exam Cram 2 (ISBN 078973446X, Que, 2005) and the
Certified Ethical Hacker Exam Prep 2 (ISBN 0789735318, Que, 2006). Michael is a site expert for TechTarget.com websites, including SearchSMB.com and SearchNetworking.com; he also serves on their editorial advisory board. His articles have been published on IT websites including CertMag.com, CramSession.com, and GoCertify.com. Michael has created security audit and assessment course material for various companies and universities. Although audits and assessments are where he spends the bulk of his time, teaching and contributing to the written body of IT security knowledge is how Michael believes he can give something back to the community that has given him so much. He is a member of the American College of Forensic Examiners and of the Texas Association for Educational Technology. When not working, Michael enjoys traveling and restoring muscle cars.
