The manual features detailed descriptions of the tasks performed by IS auditors and the knowledge required to plan, manage and perform IS audits. The new edition also features new case studies to assist a candidate's understanding of current practices. Also included are definitions of terms most commonly found on the exam, practice questions similar in content to what has previously appeared on the exam and references to additional study materials on specific topics. This manual can be used as a stand-alone document for individual study or as a guide or reference for study groups and chapters conducting local review courses. The 2007 edition has been developed and is organized to help prepare the CISA candidate in studying the following job practice areas: ? The IS audit process ? IT governance ? Systems and infrastructure life cycle management ? IT service delivery and support ? Protection of information assets ? Business continuity and disaster recovery