ISACA Audit Methodology
Master IT audit methodology using ISACA standards — COBIT, CISA, CRISC, and ITGC. Each stage simulates a real audit engagement at a major institution, from risk assessment to audit reporting.
Certificate Paths
These stages map to Network+, Security+, ISC² CC, and CySA+ exam domains →
This module references ISACA® frameworks including COBIT® 2019, CISA®, and CRISC®, which are registered trademarks of ISACA. Additional references include NIST SP 800-series publications (public domain), PCI DSS® (PCI Security Standards Council), SOX Section 404 (U.S. federal law), HIPAA (U.S. federal law), GDPR (EU regulation), ITIL® (PeopleCert), and CIS Benchmarks™ (Center for Internet Security). All content is used for educational purposes. Learn more ↗Commercial frameworks — educational fair use
ISACA Global Headquarters
The Governance Framework
Federal Reserve Board
Risk in the Vault
New York Stock Exchange
General Controls on the Trading Floor
CIA Headquarters
Need to Know
NASA Johnson Space Center
No Unauthorized Changes
FEMA National Response Center
When Systems Fail
CISA Headquarters
Incident Response Readiness
The Pentagon
The Supply Chain Threat
European Data Protection Board
The Right to Be Forgotten
NIST Campus
Rules of Engagement
SEC Headquarters
The Evidence Chain
ISACA Chicago Chapter
The Final Report