From the course: ISACA Certified in Risk and Information Systems Control (CRISC) Cert Prep
Join today to access over 25,300 courses taught by industry experts.
Control testing
From the course: ISACA Certified in Risk and Information Systems Control (CRISC) Cert Prep
Control testing
- [Instructor] So once a control is designed, we want to make sure that it's implemented within the system correctly. I want to make sure that we're clear on ISACA terminology here. They are talking about control testing in a similar way of system testing. We are not talking about control testing if you and your organization go in after a control is implemented and check to make sure that it's actually performing or that people are executing it. They call that control monitoring, and we're going to talk about that in a couple slides. So control testing means are we sure that we're implementing the controls correctly? If we make a change to the environment, are the controls that are in place already still functioning? And when we generally combine systems with code, so we merge that code into production, how is the control going to function? So without the controls actually being implemented in the same way that they…
Download courses and learn on the go
Watch courses on your mobile device without an internet connection. Download courses using your iOS or Android LinkedIn Learning app.
Contents
-
-
-
-
-
-
(Locked)
Risk response options and selection8m 16s
-
(Locked)
Third-party risk and control8m 53s
-
(Locked)
Risk action plans3m 29s
-
(Locked)
Control standards, frameworks, and types of controls7m 6s
-
(Locked)
Control design and selection13m 30s
-
(Locked)
Control testing7m 30s
-
(Locked)
Data collection and reporting8m 44s
-
(Locked)
Metrics5m 46s
-
(Locked)
Monitoring, reporting and associated techniques9m 13s
-
(Locked)
Issues, findings and exceptions8m 14s
-
(Locked)
-
-