ISACA’s expert guidance gives professionals and enterprises the tools, 管理IT风险的技术和理解.
人工智能革命的希望与危险
AI is rapidly sweeping through our businesses and our world. The need for CISOs, IT risk managers, executives and IT senior management to keep pace with the rapidly evolving risk landscape is urgent.
运用风险承受能力支持澳门赌场官方下载战略
Effective enterprise risk management requires all stakeholders to understand and communicate risk terminology consistently.
风险场景工具包
The use of risk scenarios can enhance the risk management effort by helping the risk team understand and explain risk to business process owners and other stakeholders.
风险场景入门包
This toolkit, free to ISACA members, includes 10 sample risk scenarios that practitioners can use and tailor to their specific context within their enterprises. Risk scenarios facilitate communication in risk management by constructing a narrative that can inspire people to take action.
Risk Starter Kit
ISACA created the IT Risk Starter Kit to help users develop an IT Risk Program at their organization. 通过详细的模板和指南,您将能够:
- Establish a consistent, disciplined, and integrated approach to risk management.
- Formalize a governance structure for risk oversight which includes the policies, processes, and control systems that support risk-related decision making.
- And More...
Digital Operational Resilience in the EU Financial Sector: A Risk-Based
The 2008 financial crisis was one of the most devastating and far-reaching global recessions in modern history. While the reforms that followed strengthened the resilience of the financial sector, they only indirectly addressed information and communications technology (ICT) and did not fully address digital operational resilience.
优化风险应对
Risk is a part of everyday life, from transportation and travel to business and financial decisions. 数字世界也不例外. While information and technology have driven innovation and created new opportunities for businesses worldwide, 它们并非没有危险.
IT风险基础研究指南
A comprehensive study aid that will help to prepare learners for the IT风险基础证书 exam. The course offers foundational knowledge of IT- related risk management and the methodology that includes risk identification, evaluation, and response.
Risk IT Framework
The Risk IT Framework fills the gap between generic risk management concepts and detailed IT risk management. 它提供了端到端, comprehensive view of risks related to the use of IT and a similarly thorough treatment of risk management, 从高层的语气和文化, to operational issues. In summary, the framework will enable enterprises to understand and manage significant IT risk types, building upon the existing risk related components within the current ISACA frameworks.
风险资讯科技从业人员指南
The 风险资讯科技从业人员指南 provides practical guidance for risk professionals. The guide includes a large variety of practical risk management techniques that can be implemented immediately.
Advance your expertise and add to your career potential or enterprise skillset with training developed and delivered by the experts in IT Risk.
IT风险基础证书
Ideal for professionals who wish to learn about risk and information and technology (I&T)-related risk, 他们目前与风险专家有互动, or are new to risk and interested in working as a risk or IT Risk profession. Affirm your foundational knowledge of risk that is related to I&T.
IT Risk Videos
The IT Risk Management Essentials Video enables you to gain critical foundational knowledge of IT risk concepts, 对IT和业务的实践和影响. 这是IS/IT和业务经理的基本入门, practitioners and anyone interested in a risk management career is accessible on-demand, anywhere. IT Risk Assessment Video will help you further your IT Risk learning with the IT Risk Assessment Video. 这是对信息系统/信息技术和业务经理的学习增强, practitioners and anyone interested in a risk management career is accessible on-demand, anywhere.
(CRISC)获得风险和信息系统控制认证
ISACA’s Certified in Risk and Information Systems Control (CRISC)® certification indicates expertise in identifying and managing enterprise IT risk and implementing and maintaining information systems controls. Gain instant recognition and credibility with CRISC and boost your career.
按需CPE:风险管理
The 按需CPE:风险管理 collection provides timely, 对IT审计有价值的见解, Security, 和风险专业人士, and enables you to learn on your schedule while earning up to 5.5 ISACA CPEs. Access to the entire collection of recordings - each recorded at ISACA’s North America CACS 2020 Conference - is unlimited for a 90-day period and includes downloadable presentation decks.
When you want guidance, insight, tools and more, you’ll find them in the resources ISACA offers.
COBIT关注领域:信息 & Technology Risk
COBIT关注领域:信息 & Technology Risk 提供有关信息和技术的指导&T)风险以及如何将COBIT应用于I&T risk practices.
开始风险管理
Our FREE white paper, 开始风险管理, explores the careful balance that must be achieved while addressing any unique factors that may exist in your organization. 制定商业战略, the enterprise may decide to accept some level of risk in exchange for pursuing business goals and objectives. 本文讨论了各种选择和注意事项.
弥合数字风险差距
To help improve communication and effectiveness between Risk management and IT professionals, ISACA和RIMS合作发布了一份免费白皮书, 弥合数字风险差距, which outlines best practices for integrating these professionals into an overall digital strategy team to create value and counterbalance unwanted risks and outcomes.
供应链弹性和连续性
With each major disaster we confront—including the current pandemic—business continuity management must continue to evolve. Learn how in the new free white paper: 供应链弹性和连续性: Closing Gaps Exposed in a Global Pandemic.
CMMI网络成熟度平台
CMMI网络成熟度平台 features custom risk profiling, assessments, gap analyses, and roadmap functions, and is in use across multiple sectors including financial services, 医疗保健和制造业. It addresses industry concerns and organizational challenges, including confidence in cybersecurity initiatives and prioritizing security programs. The platform gives businesses real-time knowledge of best cybersecurity practices, so organizations can make evidence-based decisions on how to improve cybersecurity programs.
查看风险管理出版物和资源
Gain additional insight and guidance on leveraging the IT Risk framework to create and maintain the most effective 管理IT风险的技术和理解.