2012 ISACA Fact Sheet ISACA is the single international source for information technology controls. ISACA helps its members and their employers ensure trust in, and value from, information systems.ISACAISACA_e5670eac-37eb-11e2-b118-f0081803c70bA nonprofit, independent membership association, ISACA is a leading global provider of knowledge, certifications, community, advocacy and education on information systems assurance, control and security, enterprise governance of IT, and IT-related risk and compliance. Founded in 1969 as the EDP Auditors Association, ISACA helps its members and their employers ensure trust in, and value from, information systems.ISACA MembersISACA -- formerly the Information Systems Audit and Control Association -- has more than 100,000 constituents in more than 180 countries in Asia, Latin America, Europe, Africa, North America and Oceania. Its members include internal and external auditors, CEOs, CFOs, CIOs, educators, information security and control professionals, business managers, students, and IT consultants.AsiaLatin AmericaEuropeAfricaNorth AmericaOceaniaAuditorsCEOsCFOsCIOsEducatorsInformation Security ProfessionalsInformation Control ProfessionalsBusiness ManagersStudents IT ConsultantsISACA LeadershipGreg Grocholski2012-2013 International President -- CISAKen Vander WalImmediate Past President -- CISA, CPASusan M. CaldwellChief Executive OfficerKristen KessingerISACA ContactJoanne DufferISACA Contact_e56710d2-37eb-11e2-b118-f0081803c70bHelp our members and their employers ensure trust in, and value from, information systems._e56711b8-37eb-11e2-b118-f0081803c70bTrustCertificationsDevelop and administer certifications._e567126c-37eb-11e2-b118-f0081803c70b1Information Systems AuditorsInformation Security ManagersIT ProfessionalsDeveloped and administers four industry-leading certifications:* Certified Information Systems Auditor (CISA), a globally respected designation for experienced IS audit, control and security professionals. More than 90,000 have earned the CISA designation since its inception in 1978.* Certified Information Security Manager (CISM), a groundbreaking designation for leaders who manage an organization’s information security. More than 18,000 have earned the CISM designation since it was established in 2002. * Certified in the Governance of Enterprise IT (CGEIT), for professionals who manage, provide advisory and/or assurance services, and/or who otherwise support the governance of an enterprise’s IT. More than 4,800 professionals have earned the CGEIT designation since it was established in 2007. * Certified in Risk and Information Systems Control (CRISC), for IT professionals who have experience with risk identification, assessment and evaluation; risk response; risk monitoring; IS control design and implementation; and IS control monitoring and maintenance. More than 16,000 professionals have been certified since inception in 2010. _e5671316-37eb-11e2-b118-f0081803c70bConferencesSponsor technical and management conferences._e56713e8-37eb-11e2-b118-f0081803c70b2Sponsors technical and management conferences on five continents each year to ensure professionals have access to the latest global education:* INSIGHTS, held in a different geographic region each year* Computer Audit, Control and Security (CACS) conferences, held on five continents* Training Courses, held in multiple locations * IT Governance Risk & Compliance (IT GRC) Conference* Information Security and Risk Management (ISRM) Conference, North America, Europe and Latin America* COBIT Training* Certification Review Courses* Online Learning, including monthly ISACA webinars, eSymposia and virtual conferences _e56714a6-37eb-11e2-b118-f0081803c70bTechnical DocumentationDevelop and continually update [technical documentation]._e5671582-37eb-11e2-b118-f0081803c70b3COBITProvide a comprehensive IT governance, management, control and assurance model._e567164a-37eb-11e2-b118-f0081803c70b3.1COBIT, now in version 5, is a complete, internationally accepted process framework for IT that supports business and IT executives and management in their definition and achievement of business goals and related IT goals by providing a comprehensive IT governance, management, control and assurance model. Available as a complimentary download at www.isaca.org/cobit, COBIT 5 is used by organizations worldwide.Val ITAddress assumptions, costs, risks and outcomes related to a balanced portfolio of IT-enabled business investments._e567171c-37eb-11e2-b118-f0081803c70b3.2Val IT: Based on COBIT, now in version 2.0, is a framework with supporting publications that address assumptions, costs, risks and outcomes related to a balanced portfolio of IT-enabled business investments, including guidance to help global organizations maximize the value of IT investments. Val IT is available as a free download at www.isaca.org/valit.Risk ITHelp enterprises increase their return on investment by managing risks._e56717f8-37eb-11e2-b118-f0081803c70b3.3Risk IT: Based on COBIT, is a framework that helps enterprises increase their return on investment by managing risks effectively, rather than trying to eliminate them completely. The Risk IT Framework is available as a free download at www.isaca.org/riskit.ITAFProvide guidance on the design, conduct and reporting of IT audit and assurance assignments._e56718de-37eb-11e2-b118-f0081803c70b3.4IT Assurance Framework (ITAF) provides guidance on the design, conduct and reporting of IT audit and assurance assignments, and establishes standards that address IT audit and assurance professional roles and responsibilities; a free download at www.isaca.org/itaf.BMISProvide a view of information security program activities within the context the larger enterprise._e56719c4-37eb-11e2-b118-f0081803c70b3.5Business Model for Information Security (BMIS) provides a view of information security program activities within the context the larger enterprise to integrate the disparate security program components into a holistic system of information protection; a free download at www.isaca.org/bmis. Publications_e5671ac8-37eb-11e2-b118-f0081803c70b4ISACA JournalPublish ISACA Journal._e5671bcc-37eb-11e2-b118-f0081803c70b4.1Publishes ISACA Journal, a bimonthly magazine with peer-reviewed technical and managerial content on IS audit, control, security and governance.Research & GuidancePublish research and guidance._e5671cc6-37eb-11e2-b118-f0081803c70b4.2Publishes industry-leading research and guidance.Standards, Guidelines, Tools & TechniquesProvide professional standards, guidelines and tools and techniques._e5671e24-37eb-11e2-b118-f0081803c70b5Provides professional standards, guidelines and tools and techniques for the IS audit and control professions._e5671f3c-37eb-11e2-b118-f0081803c70bIT Governance Institute[Maintain] the IT Governance Institute._e567204a-37eb-11e2-b118-f0081803c70b6IT Governance InstituteThe IT Governance Institute (ITGI) was established in 1998 in recognition of the increasing criticality of information technology to enterprise success. In many organizations, success depends on the ability of IT to enable achievement of business goals. In such an environment, governance over IT is as critical a board and management discipline as corporate governance or enterprise governance. Effective IT governance helps ensure that IT supports business goals, maximizes business investment in IT, and appropriately manages IT-related risks and opportunities.ITGI conducts research on global practices and perceptions of governance of IT for the business community. ITGI aims to help enterprise leaders understand how effective governance can make IT successful in supporting the enterprise's mission and goals. Established its research affiliate, the IT Governance Institute (ITGI), (www.itgi.org) in 1998._e5672176-37eb-11e2-b118-f0081803c70b2012-11-26http://www.isaca.org/About-ISACA/Press-room/Pages/ISACA-Fact-Sheet.aspxOwenAmburOwen.Ambur@verizon.net