Posted by: Robert Davis
Certified Information Systems Auditor, Certified Information Technology Professional, Certified Internal Auditor, Certified Internal Controls Auditor, Certified Public Accountant, External Audit, IAP, Information Assets Protection, Information Security Governance, Internal Audit, ISG, IT Audit
Failure of an entity to take proper safeguarding precautions can lead to major operational problems and substantial asset loss. Incidents recorded throughout the world continuously reiterate that entities should not ignore information assets protection (IAP) risks and the need for processes to ensure IAP requirements and risks are adequately redressed. Information security governance (ISG) is a key element in assisting entities in providing a superior IAP program. Therefore, due to IAP controls usually inscribed within ISG — including identity management, vulnerability management, threat management, and encryption management — this deployable management tool resists dismissal as an inconsequential framework, methodology, or technique.