ISACA Journal - 2011 Volume 4

• Read IT Control Objectives for Cloud Computing.
www.isaca.org/Bookstore
• Read Cloud Computing: Business Benefits With
Security, Governance and Assurance Perspectives.
www.isaca.org/whitepapers
• Learn more and collaborate on Cloud Computing and
Risk Assessment
www.isaca.org/knowledgecenter
Risk IT
Reference
No. High-level Risk Scenarios

3 Technology selection

16 Selection/performance of third-party suppliers

27 Logical attacks

28 Information media

31 Data(base) integrity

32 Logical trespassing

34 Contractual compliance Source: ISACA, The Risk IT Practitioner Guide, USA, 2009, www.isaca.org/riskit.pdf, figure 40

Plan and
Organize (PO)

PO3.2 PO5.5

Acquire and
Implement (AI)

AI1.2 AI5.2 AI2.4

Deliver and
Support (DS)
Monitor and
Evaluate (ME)

DS2.4

DS5.3, DS5.10

DS5.11

DS11.6

DS5.4, DS5.5

About this publication

fullscreen

Join

article text for page

< previous story | next story >

add comment | read comments

Share this page with a friend
Save to “My Stuff”
Subscribe to this magazine
Search
Help