Information Systems Audit and Control Association (ISACA) has issued a new customisable audit program to help enterprises address the challenges associated with social media governance.
ISACA is a global provider of knowledge, certifications, community, advocacy and education on information systems (IS) assurance and security, enterprise governance and management of IT, and IT-related risk and compliance.
The organisation notes the importance of social media governance for enterprises that aim to strike a right balance between transparency and control of these tools.
ISACA's new audit program is available at www.isaca.org/auditprograms and focuses on effective policies, training and awareness, and monitoring.
Guidelines and direction
Enterprises can use the audit programs as a road map to complete a specific process as these provide guidelines and direction for the practice of IT audit and assurance.
Although this guidance was developed for IT audit and assurance practitioners, it will also help security and business professionals to apply the control objectives and audit steps to make scope areas more robust.
"These audit programs are templates designed to be starting points and can be easily customised to fit a specific operating environment," said Norm Kelson, CISA, CGEIT, CPA, lead author of the programs. "Developed by a global team of experienced assurance professionals, they represent the latest expertise, and are peer-reviewed for added value."
Members of ISACA can get all these audit programs for free. ISACA is charging US$45 for non-members.
ISACA has published additional audit programmes including:
• Apache Web Services Server Audit/Assurance Program
• MySQL Server Audit/Assurance Program
• VMware Server Virtualization Audit/Assurance Program
• Microsoft Internet Information Services (IIS) 7 Web Services Server Audit/Assurance
• Windows Active Directory Audit/Assurance Program
• Mobile Computing Security Audit/Assurance Program
• Cloud Computing Management Audit/Assurance Program
Join the CIO New Zealand group on LinkedIn. The group is open to CIOs, IT Directors, COOs, CTOs and senior IT managers.