(Information Systems Audit and Control Association) A membership association
dedicated to information systems auditing and security. ISACA provides the
widely recognized certifications CISA and CISM.
of Internal Auditors
"The Institute of Internal Auditors (IIA) is an international professional
association of more than 122,000 members with global headquarters in the
United States." They also provide information on IT Audit, including
their online publication 'ITAudit'
Computer Emergency Response Team
The Committee of Sponsoring Organizations of the Treadway Commission
SANS (SysAdmin, Audit, Network, Security). Provides training, also much
useful information on the web site.
Formerly the General Accounting Office
Have a web page targeted at auditing and accountability: www.gao.gov/aac.html
Information Security Forum
Federation of Accountants
Information Security Audit Forum
The National Association of State Auditors, Comptrollers and Treasurers
is an organization for state officials who deal with the financial management
of state government.
The International Information Systems Security Certification Consortium.
Certification body for security professionals. Certified Information Systems
Security Professional (CISSP) is the most recognised one. Other certifications
include ISSAP, ISSMP, ISSEP; CAP and SSCP.
Develops references on IT-enabled business systems governance, including
COBIT and Val IT.
Standing Committee on IT Audit
"INTOSAI is the professional organization of supreme audit institutions
(SAIs) in countries that belong to the United Nations or its specialist
agencies. SAIs play a major role in auditing government accounts and operations,
and in promoting sound financial management and accountability in their
the IT Audit Committee is the arm of INTOSAI dedicated to
supporting the development of knowledge and skills in the use and audit
of information technology, and to encouraging bilateral and regional co-operation
between its members