Alle episoder

Data classification is a key input to effective security and compliance auditing. In this episode, you’ll learn how to evaluate classification policie...

Resource management is foundational to IT governance, and the CISA exam tests your ability to evaluate how organizations allocate, monitor, and optimi...

Managing third-party risk is a key topic on the CISA exam, and this episode dives into how to audit vendor selection, onboarding, performance evaluati...

Audit success depends on knowing how to evaluate IT performance. This episode explains how key performance indicators (KPIs) and reports are used to m...

The CISA exam expects candidates to understand how IT quality is planned, implemented, and improved over time. This episode covers quality assurance p...

Domain 3 focuses on the controls and governance involved in acquiring and implementing IT solutions. This episode provides a strategic overview of pro...

Project governance ensures IT initiatives deliver value and align with business goals. This episode covers how auditors evaluate project oversight, mi...

Before a project begins, auditors must evaluate whether it’s justified. This episode focuses on auditing business case development, feasibility assess...

Understanding the traditional software development lifecycle is essential for CISA candidates. This episode explains each phase of the waterfall model...

Agile and DevOps are increasingly popular in IT development, and the CISA exam expects you to understand how to audit these environments. This episode...

Strong control design starts early in the system lifecycle. In this episode, you'll learn how auditors assess whether appropriate controls have been i...

Before a new system goes live, auditors must confirm that it’s ready for production. This episode explains how to evaluate readiness through testing, ...

Poor configuration control can lead to outages, vulnerabilities, and audit findings. In this episode, we cover how to evaluate release planning, versi...

CISA candidates must understand the risks and controls involved in moving systems and data. This episode explains how to audit system migrations, infr...

Once a system is deployed, the work isn’t over—auditors still need to assess whether objectives were achieved. This episode teaches you how to conduct...

Domain 4 shifts focus to the reliability and sustainability of IT operations. In this episode, you’ll gain an overview of operational controls, availa...

Understanding the elements that make up the IT environment is essential for audit readiness. This episode breaks down how to evaluate the hardware, so...

IT asset management is more than keeping an inventory—it’s about control, accountability, and lifecycle oversight. In this episode, you’ll learn how t...

This episode covers how auditors evaluate job scheduling systems, batch processing, and automated task workflows. You’ll learn how to assess controls ...

When systems talk to each other, auditors must ensure that the communication is controlled and secure. This episode explores interface types (manual a...

Shadow IT introduces risk outside the view of central IT. In this episode, you will learn how to identify and audit unauthorized tools, spreadsheets, ...

Auditors must verify that IT systems are designed and managed to meet performance demands. This episode explores how to evaluate availability strategi...

When things go wrong, incident management ensures that services are restored quickly and effectively. This episode explains how to audit detection pro...

Problem management focuses on eliminating the underlying causes of incidents. In this episode, you will learn how to audit problem detection, investig...

Effective change management minimizes disruption and maintains control over the IT environment. This episode walks you through change request procedur...

Configuration and patch controls are essential for system stability and security. In this episode, you will learn how to audit configuration baselines...

Logs provide critical evidence for detecting incidents and monitoring system health. This episode explains how to audit log collection, retention, ana...

Service level agreements define performance expectations between IT and the business. In this episode, you will learn how to audit SLA creation, monit...

Databases are central to most IT operations, and auditors must ensure they are managed securely and efficiently. This episode covers access controls, ...

Business resilience ensures that critical operations can continue through disruption. This episode introduces the core concepts of business continuity...