Updated to reflect a new job practice analysis, the CISA Review Manual 2011 is a comprehensive reference guide designed to help individuals prepare for the CISA exam and understand the roles and responsibilities of an information systems (IS) auditor. The manual has been enhanced over the past editions and represents the most current, comprehensive, peer-reviewed IS audit, assurance, security and control resource available worldwide.
The 2011 manual is organized to assist candidates in understanding essential concepts and studying the following updated job practice areas:
- The Process of Auditing Information Systems
- Governance and Management of IT
- Information Systems Acquisition, Development and Implementation
- Information Systems Operations, Maintenance and Support
- Protection of Information Assets
The CISA Review Manual 2011also features an easy-to-use format. Each of the five chapters has been divided into two sections for focused study. Section one of each chapter contains the definitions and objectives for the five areas, as well as the corresponding tasks performed by IS auditors and knowledge statements (required to plan, manage and perform IS audits) that are tested on the exam. It also includes:
- A map of the relationship of each task to the knowledge statements
- A reference guide for the knowledge statements, including the relevant concepts and explanations
- References to specific content in section two for each knowledge statement
- Sample practice questions and explanations of the answers
- Suggested resources for further study
Section two of each chapter consists of reference material and content that supports the knowledge statements. The material enhances CISA candidates' knowledge and/or understanding when preparing for the CISA certification exam. In addition, the CISA Review Manual 2011 includes brief chapter summaries focused on the main topics and case studies to assist candidates in understanding current practices. Also included are definitions of terms most commonly found on the exam.
This manual is excellent as a stand-alone document for individual study and as a guide or reference for study groups and chapters conducting local review courses. It also serves as an effective desk reference for IS auditors