FR | NL | EN
   About us     Contact     Glossary index     Sitemap   
 
   HOME     AUDIT     ADVISORY     TRAINING     REFERENCES     JOB     NEWS     KNOWLEDGE   



Menu
IT AUDIT
IT ADVISORY
IT & AUDIT TRAINING
REFERENCES
ABOUT US
NEWS
KNOWLEDGE CENTER


   Home > Glossary index

Glossary index     Print

The index covers the governance, risk and control glossaries.

A | B | C | D | E | F | G | H | I | J | K | L | M | N | O | P | Q | R | S | T | U | V | W | X | Y | Z | 
 
»
 
   › 27000
         › ISO 27000 - Information Security Standards


 
A | B | C | D | E | F | G | H | I | J | K | L | M | N | O | P | Q | R | S | T | U | V | W | X | Y | Z | 
 
A
 
   › Acceptable_use_policy
         › Acceptable Use Policy (AUP)
 
   › Access_control
         › Access control
 
   › Accords
         › Basel II
 
   › Accountability
         › Accountability
         › Responsibility assignment matrix (RACI)
 
   › Accuracy
         › Accuracy
 
   › Acfa
         › Audit Committee of the Federal Administration (ACFA) | Belgium
 
   › Activities
         › Control activities
 
   › Adequate
         › Adequate control
 
   › Aeo
         › Authorised Economic Operator (AEO) | Europe
 
   › Afai
         › Association Française de l'Audit et du conseil Informatique (AFAI) | France
 
   › Agile_project_management
         › Agile Project Management
 
   › Alignability
         › Alignability Process Model
 
   › Alignability_process_model
         › Alignability Process Model
 
   › Analysis
         › Define, Measure, Analyse, Design, and Verify (DMADV)
         › Define, Measure, Analyse, Improve, Control (DMAIC)
 
   › Anonymisation
         › Anonymisation
 
   › Application
         › Application control
         › Open Web Application Security Project (OWASP)
 
   › Appropriateness
         › Appropriateness
 
   › As
         › AS/NZS4360 - Risk Management Process
 
   › Assessment
         › Guide to the Assessment of IT Risk (GAIT) series
         › ISO 15504 - Process capability assessment
 
   › Asset
         › Asset
         › ISO 19770 - Software Asset Management
         › Service assets
 
   › Association_française_de_l_audit_et_du_conseil_inf
         › Association Française de l'Audit et du conseil Informatique (AFAI) | France
 
   › Assurance
         › Assurance
 
   › Attack
         › Cyber attack
 
   › Audit
         › Audit
         › Audit brief
         › Audit charter
         › Audit code of ethics
         › Audit committee
         › Audit finding
         › Audit follow up review
         › Audit risk
         › Audit standard
         › Audit trail
         › Audit universe
         › Audit working papers
         › Global Technology Audit Guide (GTAG)
         › Internal audit
         › ISACA Belgium | Belgium
         › IT audit
         › Performance audit
         › Risk based auditing
         › SAS 70 - Outsourcing Service Audit
 
   › Auditor
         › Certified Internal Auditor (CIA)
 
   › Auditors
         › Institute of Internal Auditors (IIA) | World
         › Institute of Internal Auditors Belgium (IIABEL) | Belgium
         › Institute of Registered Auditors (IBR-IRE) | Belgium
 
   › Audit_committee
         › Audit committee
 
   › Audit_committee_of_the_federal_administration
         › Audit Committee of the Federal Administration (ACFA) | Belgium
 
   › Audit_evidence
         › Audit evidence
 
   › Audit_firm
         › Audit firm
 
   › Audit_opinion
         › Audit opinion
 
   › Aup
         › Acceptable Use Policy (AUP)
 
   › Authentication
         › Authentication
 
   › Authorised_economic_operator
         › Authorised Economic Operator (AEO) | Europe
 
   › Authority
         › Responsibility assignment matrix (RACI)
 
   › Availability
         › Availability


 
A | B | C | D | E | F | G | H | I | J | K | L | M | N | O | P | Q | R | S | T | U | V | W | X | Y | Z | 
 
B
 
   › Backup
         › Backup
 
   › Balanced
         › Balanced Scorecard (BSC)
 
   › Banking_finance_and_insurance_commission
         › Banking, Finance and Insurance Commission (CBFA) | Belgium
 
   › Basel
         › Basel II
 
   › Baseline
         › Control baseline
 
   › Bcm
         › BS 25999 - Business Continuity Management (BCM)
 
   › Bcp
         › Business Continuity Planning (BCP)
 
   › Belgium
         › Banking, Finance and Insurance Commission (CBFA) | Belgium
         › Corporate Governance Committee | Belgium
         › GUBERNA | Belgium
         › ISACA Belgium | Belgium
 
   › Benchmarking
         › Benchmarking
 
   › Benefits
         › ISO 10014 - Quality management - Guidelines for realizing financial and economic benefits
 
   › Best_practice
         › Best practice
 
   › Board
         › Board of Directors
 
   › Boardmembers
         › GUBERNA | Belgium
 
   › Bod
         › Board of Directors
 
   › Body
         › Governing Body
 
   › British_standard_institution
         › British Standards Institution (BSI) | UK
 
   › Bs
         › BS 25999 - Business Continuity Management (BCM)
 
   › Bs25999
         › BS 25999 - Business Continuity Management (BCM)
 
   › Bsc
         › Balanced Scorecard (BSC)
 
   › Bsi
         › British Standards Institution (BSI) | UK
 
   › Business
         › BS 25999 - Business Continuity Management (BCM)
 
   › Business_case
         › Business Case
 
   › Business_continuity_planning
         › Business Continuity Planning (BCP)


 
A | B | C | D | E | F | G | H | I | J | K | L | M | N | O | P | Q | R | S | T | U | V | W | X | Y | Z | 
 
C
 
   › Caf
         › Common Assessment Framework (CAF)
 
   › Capability_maturity_model_integration
         › Capability Maturity Model® Integration (CMMI)
 
   › Cbfa
         › Banking, Finance and Insurance Commission (CBFA) | Belgium
 
   › Ccor
         › Customer-Chain Operations Reference-model (CCOR)
 
   › Centre_of_excellence_in_information_and_communicat
         › Centre of Excellence in Information and Communication Technologies (CETIC) | Belgium
 
   › Certified
         › Certified Internal Auditor (CIA)
 
   › Certified_in_risk_and_information_systems_control
         › Certified in Risk and Information Systems Control (CRISC)
 
   › Certified_in_the_governance_of_enterprise_it
         › Certified in the Governance of Enterprise IT (CGEIT)
 
   › Cetic
         › Centre of Excellence in Information and Communication Technologies (CETIC) | Belgium
 
   › Cgeit
         › Certified in the Governance of Enterprise IT (CGEIT)
 
   › Chain
         › Supply-Chain Operations Reference (SCOR)
 
   › Chain_operations_reference
         › Customer-Chain Operations Reference-model (CCOR)
 
   › Change
         › Six Change Approaches - Kotter and Schlesinger
 
   › Charter
         › Audit charter
 
   › Cia
         › Certified Internal Auditor (CIA)
 
   › Cloud_computing
         › Cloud Computing
         › Cloud Security Alliance (CSA)
 
   › Cmmi
         › Capability Maturity Model® Integration (CMMI)
 
   › Cobit
         › CobiT Online
         › CobiT Quickstart
         › Control Objectives for Information and related Technology (CobiT)
         › Good practice
 
   › Cobit_4
         › CobiT domains and processes (COBIT 5 / 4.1)
         › CobiT Quickstart
 
   › Cobit_5
         › COBIT 5
         › COBIT 5 for Information Security
         › CobiT domains and processes (COBIT 5 / 4.1)
         › Risk IT
         › Val IT
 
   › Code
         › Audit code of ethics
         › ISACA code of professional ethics
 
   › Commission
         › Securities and Exchange Commission (SEC) | US
 
   › Commission_for_the_protection_of_privacy
         › Commission for the Protection of Privacy (CPP) | Belgium
 
   › Common_assessment_framework
         › Common Assessment Framework (CAF)
 
   › Common_security_framework
         › Common Security Framework (CSF)
 
   › Company
         › Company Secretary
 
   › Completeness
         › Completeness
 
   › Compliance
         › Compliance
         › Corporate governance, risk management and regulatory compliance (GRC)
 
   › Comply
         › Comply or explain
 
   › Confidentiality
         › Confidentiality
 
   › Conflict
         › Conflict of interest
 
   › Context
         › Context
 
   › Continuity
         › BS 25999 - Business Continuity Management (BCM)
 
   › Control
         › Adequate control
         › Application control
         › Control
         › Control activities
         › Control baseline
         › Control deficiency
         › Control environment
         › Control framework
         › Control objective
         › Control weakness
         › Corrective control
         › Define, Measure, Analyse, Improve, Control (DMAIC)
         › Detective control
         › General control
         › Global Risk and Control (GRC)
         › Key control
         › Preventive control
 
   › Controls
         › Directive controls
         › Disclosure controls
         › Internal Controls over Financial Reporting (ICFR)
         › IT controls
 
   › Control_process
         › Control process
 
   › Corporate
         › Corporate Governance
         › Corporate governance, risk management and regulatory compliance (GRC)
         › European Corporate Governance Institute (ECGI) | Europe
 
   › Corporate_governance_committee
         › Corporate Governance Committee | Belgium
 
   › Corrective
         › Corrective control
 
   › Cosmic
         › ISO19761 - COSMIC-FFP -- A functional size measurement method
 
   › Coso
         › COSO | US
         › Tone From the Top
 
   › Cpp
         › Commission for the Protection of Privacy (CPP) | Belgium
 
   › Crisc
         › Certified in Risk and Information Systems Control (CRISC)
 
   › Critical
         › Critical infrastructure
 
   › Critical_success_factors
         › Critical Success Factor (CSF)
 
   › Csf
         › Common Security Framework (CSF)
         › Critical Success Factor (CSF)
 
   › Customer
         › Customer-Chain Operations Reference-model (CCOR)
 
   › Cyber
         › Cyber attack
 
   › Cybersecurity
         › Cybersecurity


 
A | B | C | D | E | F | G | H | I | J | K | L | M | N | O | P | Q | R | S | T | U | V | W | X | Y | Z | 
 
D
 
   › Data
         › Data Governance
         › Data quality
 
   › De
         › De-identification
 
   › Defence
         › Three lines of defence (TLD)
 
   › Deficiency
         › Control deficiency
         › Operational deficiency
 
   › Definition
         › Define, Measure, Analyse, Design, and Verify (DMADV)
         › Define, Measure, Analyse, Improve, Control (DMAIC)
 
   › Deming_cycle
         › Deming cycle (PDCA)
 
   › Design
         › Define, Measure, Analyse, Design, and Verify (DMADV)
         › Six Sigma
 
   › Design_deficiency
         › Design deficiency
 
   › Detective
         › Detective control
 
   › Directive
         › Directive controls
 
   › Directors
         › Board of Directors
         › European Confederation of Directors' Associations (ecoDa) | Europe
         › GUBERNA | Belgium
 
   › Disclosure
         › Disclosure controls
 
   › Dmadv
         › Define, Measure, Analyse, Design, and Verify (DMADV)
 
   › Dmaic
         › Define, Measure, Analyse, Improve, Control (DMAIC)
 
   › Dsdm
         › Dynamic Systems Development Method (DSDM)
 
   › Dynamic_systems_development_method
         › Dynamic Systems Development Method (DSDM)


 
A | B | C | D | E | F | G | H | I | J | K | L | M | N | O | P | Q | R | S | T | U | V | W | X | Y | Z | 
 
E
 
   › Earned_value_management
         › Earned Value Management (EVM)
 
   › Ecgi
         › European Corporate Governance Institute (ECGI) | Europe
 
   › Ecoda
         › European Confederation of Directors' Associations (ecoDa) | Europe
 
   › Economic
         › Economic risk
 
   › Effective
         › Effectiveness
 
   › Effectiveness
         › Effectiveness
 
   › Efficiency
         › Efficiency
 
   › Efficient
         › Efficiency
 
   › Engagement
         › Engagement
 
   › Engagement_work_program
         › Engagement work program
 
   › Engineering_procurement_and_construction
         › Engineering, Procurement and Construction (EPC)
 
   › Engineering_procurement_and_construction_managemen
         › Engineering, Procurement and Construction Management (EPCM)
 
   › Enisa
         › European Network and Information Security Agency (ENISA) | Europe
 
   › Enterprise
         › COSO Enterprise Risk Management (ERM)
         › Enterprise Risk Management (ERM)
 
   › Environment
         › Control environment
 
   › Epc
         › Engineering, Procurement and Construction (EPC)
 
   › Epcm
         › Engineering, Procurement and Construction Management (EPCM)
 
   › Epegon
         › European People Governance Network (EPEGON) | Europe
 
   › Erm
         › COSO Enterprise Risk Management (ERM)
         › Enterprise Risk Management (ERM)
 
   › Error
         › Error
 
   › Ethics
         › Audit code of ethics
         › Ethics
         › ISACA code of professional ethics
 
   › Europe
         › European Confederation of Directors' Associations (ecoDa) | Europe
 
   › European
         › European Corporate Governance Institute (ECGI) | Europe
         › European People Governance Network (EPEGON) | Europe
 
   › European_network_information_security_agency
         › European Network and Information Security Agency (ENISA) | Europe
 
   › Evm
         › Earned Value Management (EVM)
 
   › Exchange
         › Securities and Exchange Commission (SEC) | US
 
   › Explain
         › Comply or explain
 
   › External
         › External risk


 
A | B | C | D | E | F | G | H | I | J | K | L | M | N | O | P | Q | R | S | T | U | V | W | X | Y | Z | 
 
F
 
   › Fidic
         › International Federation of Consulting Engineers (FIDIC) | World
 
   › Fiduciary
         › Fiduciary
 
   › Finance
         › ISO 10014 - Quality management - Guidelines for realizing financial and economic benefits
 
   › Financial
         › Financial reporting
         › Internal Controls over Financial Reporting (ICFR)
 
   › Financial_security_law
         › Financial Security Law of France (LSF) | France
 
   › Finding
         › Audit finding
 
   › Follow
         › Audit follow up review
 
   › Framework
         › Control framework
 
   › France
         › Club informatique des grandes entreprises (Cigref) | France
         › Institut de la Gouvernance des Systèmes d'Information (IGSI) | France
 
   › Fraud
         › Fraud
 
   › Functional
         › ISO19761 - COSMIC-FFP -- A functional size measurement method


 
A | B | C | D | E | F | G | H | I | J | K | L | M | N | O | P | Q | R | S | T | U | V | W | X | Y | Z | 
 
G
 
   › Gait
         › Guide to the Assessment of IT Risk (GAIT) series
 
   › General
         › General control
 
   › Global_network_of_director_institutes
         › Global Network of Director Institutes (GNDI) | World
 
   › Global_privacy_enforcement_network
         › Global Privacy Enforcement Network (GPEN) | World
 
   › Gndi
         › Global Network of Director Institutes (GNDI) | World
 
   › Good_practice
         › Good practice
 
   › Governance
         › Corporate Governance
         › Corporate governance, risk management and regulatory compliance (GRC)
         › Data Governance
         › European Corporate Governance Institute (ECGI) | Europe
         › European People Governance Network (EPEGON) | Europe
         › Governance
         › Governance risk
         › Institut de la Gouvernance des Systèmes d'Information (IGSI) | France
         › IT Governance Institute (ITGI)
 
   › Governing
         › Governing Body
 
   › Gpen
         › Global Privacy Enforcement Network (GPEN) | World
 
   › Grc
         › Corporate governance, risk management and regulatory compliance (GRC)
         › Global Risk and Control (GRC)
 
   › Grundschutz
         › BSI IT-Grundschutz
 
   › Gtag
         › Global Technology Audit Guide (GTAG)
 
   › Guberna
         › GUBERNA | Belgium
 
   › Guideline
         › Guideline


 
A | B | C | D | E | F | G | H | I | J | K | L | M | N | O | P | Q | R | S | T | U | V | W | X | Y | Z | 
 
H
 
   › Health_care
         › Personal Health Record (PHR)
 
   › Health_insurance_portability_and_accountability_ac
         › Health Insurance Portability and Accountability Act (HIPAA) | US
 
   › Hermes
         › HERMES
 
   › Hipaa
         › Health Insurance Portability and Accountability Act (HIPAA) | US


 
A | B | C | D | E | F | G | H | I | J | K | L | M | N | O | P | Q | R | S | T | U | V | W | X | Y | Z | 
 
I
 
   › Iaasb
         › International Auditing and Assurance Standards Board (IAASB) | World
 
   › Iapp
         › International Association of Privacy Professionals (IAPP) | World
 
   › Ibr
         › Institute of Registered Auditors (IBR-IRE) | Belgium
 
   › Icfr
         › Internal Controls over Financial Reporting (ICFR)
 
   › Identification
         › De-identification
 
   › Ifaci
         › Institut Français de l'Audit et du Contrôle Internes (IFACI) | France
 
   › Igsi
         › Institut de la Gouvernance des Systèmes d'Information (IGSI) | France
 
   › Iia
         › Institut Français de l'Audit et du Contrôle Internes (IFACI) | France
         › Institute of Internal Auditors (IIA) | World
         › Institute of Internal Auditors Belgium (IIABEL) | Belgium
 
   › Impact
         › Impact
         › Risk
 
   › Impairment
         › Impairment
 
   › Improvement
         › Define, Measure, Analyse, Improve, Control (DMAIC)
 
   › Incident
         › Incident
         › Incident management
 
   › Independence
         › Independence
 
   › Information
         › Information security
         › Information security management (ISM)
         › Institut de la Gouvernance des Systèmes d'Information (IGSI) | France
         › ISO 15801 - Recommendations for trustworthiness and reliability of information stored electronically
         › ISO 27000 - Information Security Standards
         › ISO 27002 - Best practice on information security management
 
   › Information_security
         › COBIT 5 for Information Security
 
   › Information_security_forum
         › Information Security Forum (ISF)
 
   › Information_systems_security_association
         › Information Systems Security Association (ISSA)
 
   › Information_technology_infrastructure_library
         › Information Technology Infrastructure Library (ITIL)
 
   › Infrastructure
         › Critical infrastructure
         › Infrastructure risk
 
   › Inspection
         › Inspection
 
   › Institute
         › European Corporate Governance Institute (ECGI) | Europe
         › Institut de la Gouvernance des Systèmes d'Information (IGSI) | France
         › Institute of Internal Auditors (IIA) | World
         › Institute of Internal Auditors Belgium (IIABEL) | Belgium
         › Institute of Registered Auditors (IBR-IRE) | Belgium
         › IT Governance Institute (ITGI)
 
   › Institut_français_de_l_audit_et_du_contrôle_intern
         › Institut Français de l'Audit et du Contrôle Internes (IFACI) | France
 
   › Integrity
         › Integrity
 
   › Intentional
         › Intentional risk
 
   › Interest
         › Conflict of interest
 
   › Internal
         › Institute of Internal Auditors (IIA) | World
         › Institute of Internal Auditors Belgium (IIABEL) | Belgium
         › Internal audit
         › Internal Controls over Financial Reporting (ICFR)
 
   › Internal_control
         › Internal control
 
   › International_association_of_privacy_professionals
         › International Association of Privacy Professionals (IAPP) | World
 
   › International_auditing_and_assurance_standard_boar
         › International Auditing and Assurance Standards Board (IAASB) | World
 
   › International_federation_of_consulting_engineers
         › International Federation of Consulting Engineers (FIDIC) | World
 
   › International_information_systems_security_certifi
         › International Information Systems Security Certification Consortium (ISC2) | World
 
   › International_organisation_for_standardisation
         › International Organization for Standardization (ISO) | World
 
   › International_organization_of_supreme_audit_instit
         › International Organization of Supreme Audit Institutions (INTOSAI) | World
 
   › International_standard_auditing
         › International Standards on Auditing (ISA)
 
   › Intosai
         › International Organization of Supreme Audit Institutions (INTOSAI) | World
 
   › Ire
         › Institute of Registered Auditors (IBR-IRE) | Belgium
 
   › Irregularity
         › Irregularity
 
   › Isa
         › International Standards on Auditing (ISA)
 
   › Isaca
         › ISACA Belgium | Belgium
         › ISACA code of professional ethics
         › ISACA | World
 
   › Isc2
         › International Information Systems Security Certification Consortium (ISC2) | World
 
   › Isf
         › Information Security Forum (ISF)
 
   › Ism
         › Information security management (ISM)
 
   › Isms
         › Information Security Management System (ISMS)
 
   › Iso
         › International Organization for Standardization (ISO) | World
         › ISO 10006 - Quality management in projects
         › ISO 10014 - Quality management - Guidelines for realizing financial and economic benefits
         › ISO 13335 - Information technology -- Security techniques
         › ISO 15504 - Process capability assessment
         › ISO 15801 - Recommendations for trustworthiness and reliability of information stored electronically
         › ISO 19770 - Software Asset Management
         › ISO 20000 - IT Service Management
         › ISO 27000 - Information Security Standards
         › ISO 27002 - Best practice on information security management
         › ISO 31000 - Risk management
         › ISO 38500 - IT Governance Standard
         › ISO19761 - COSMIC-FFP -- A functional size measurement method
 
   › Iso_27000
         › Good practice
 
   › Issa
         › Information Systems Security Association (ISSA)
 
   › It
         › ISO 20000 - IT Service Management
         › IT audit
         › IT controls
         › IT Governance Institute (ITGI)
         › IT risk
 
   › Itaf
         › IT Assurance Framework (ITAF)
 
   › Itgc
         › IT general controls (ITGC)
 
   › Itgi
         › IT Governance Institute (ITGI)
 
   › Itil
         › Good practice
         › Information Technology Infrastructure Library (ITIL)
         › Service assets
 
   › Itsm
         › IT Service Management (ITSM)
 
   › Itsmf
         › IT Service Management Forum (itSMF)
 
   › It_balanced_scorecard
         › IT Balanced Scorecard
 
   › It_club
         › Club informatique des grandes entreprises (Cigref) | France
 
   › It_general_controls
         › IT general controls (ITGC)
 
   › It_governance
         › ISO 38500 - IT Governance Standard
         › IT Governance
         › Val IT
 
   › It_service_management
         › IT Service Management (ITSM)
 
   › It_service_management_forum
         › IT Service Management Forum (itSMF)


 
A | B | C | D | E | F | G | H | I | J | K | L | M | N | O | P | Q | R | S | T | U | V | W | X | Y | Z | 
 
K
 
   › Key
         › Key control
 
   › Keys
         › Kobayashi’s 20 keys
 
   › Key_performance_indicators
         › Key Performance Indicators (KPI)
 
   › Kobayashi
         › Kobayashi’s 20 keys
 
   › Kpi
         › Key Performance Indicators (KPI)


 
A | B | C | D | E | F | G | H | I | J | K | L | M | N | O | P | Q | R | S | T | U | V | W | X | Y | Z | 
 
L
 
   › Large_entreprises
         › Club informatique des grandes entreprises (Cigref) | France
 
   › Lean
         › Lean Six Sigma
 
   › Lessons_learned
         › Lessons learned
 
   › Level
         › Level of risk
 
   › Likelihood
         › Likelihood
 
   › Lrc
         › Responsibility assignment matrix (RACI)
 
   › Lsf
         › Financial Security Law of France (LSF) | France


 
A | B | C | D | E | F | G | H | I | J | K | L | M | N | O | P | Q | R | S | T | U | V | W | X | Y | Z | 
 
M
 
   › Maintainability
         › Maintainability
 
   › Management
         › BS 25999 - Business Continuity Management (BCM)
         › Corporate governance, risk management and regulatory compliance (GRC)
         › COSO Enterprise Risk Management (ERM)
         › Enterprise Risk Management (ERM)
         › Incident management
         › Information security management (ISM)
 
   › Management_of_risk
         › Management of Risk (M_o_R)
 
   › Manager
         › Service manager
 
   › Managing_successful_programmes
         › Managing Successful Programmes (MSP)
 
   › Material
         › Material weakness
 
   › Maturity
         › Portfolio, Programme & Project Management Maturity Model (P3M3™)
 
   › Measurement
         › Define, Measure, Analyse, Design, and Verify (DMADV)
         › Define, Measure, Analyse, Improve, Control (DMAIC)
         › ISO19761 - COSMIC-FFP -- A functional size measurement method
 
   › Model
         › Customer-Chain Operations Reference-model (CCOR)
 
   › Msp
         › Managing Successful Programmes (MSP)
 
   › M_o_r
         › Management of Risk (M_o_R)


 
A | B | C | D | E | F | G | H | I | J | K | L | M | N | O | P | Q | R | S | T | U | V | W | X | Y | Z | 
 
N
 
   › Network
         › European People Governance Network (EPEGON) | Europe
 
   › Nist
         › National Institute of Standards and Technology (NIST) | US
 
   › Nzs4360
         › AS/NZS4360 - Risk Management Process


 
A | B | C | D | E | F | G | H | I | J | K | L | M | N | O | P | Q | R | S | T | U | V | W | X | Y | Z | 
 
O
 
   › Objective
         › Control objective
 
   › Objectivity
         › Objectivity
 
   › Oceg
         › Open Compliance and Ethics Group (OCEG)
 
   › Oecd
         › Organisation for Economic Co-operation and Development (OECD) | World
 
   › Of
         › Institute of Registered Auditors (IBR-IRE) | Belgium
 
   › Office_of_government_commerce
         › Office of Government Commerce (OGC) | UK
 
   › Ogc
         › Office of Government Commerce (OGC) | UK
 
   › Online
         › CobiT Online
 
   › Open_compliance_ethics_group
         › Open Compliance and Ethics Group (OCEG)
 
   › Operational
         › Operational deficiency
 
   › Operational_risk
         › Operational risk
 
   › Operation_and_development
         › Organisation for Economic Co-operation and Development (OECD) | World
 
   › Organisation_for_economic_co
         › Organisation for Economic Co-operation and Development (OECD) | World
 
   › Outsourcing
         › Outsourcing
         › SAS 70 - Outsourcing Service Audit
 
   › Owasp
         › Open Web Application Security Project (OWASP)


 
A | B | C | D | E | F | G | H | I | J | K | L | M | N | O | P | Q | R | S | T | U | V | W | X | Y | Z | 
 
P
 
   › Papers
         › Audit working papers
 
   › Payment_card_data_security_standard
         › Payment Card Industry Data Security Standard (PCI DSS)
 
   › Pcaob
         › Public Company Accounting Oversight Board (PCAOB) | US
 
   › Pci_dss
         › Payment Card Industry Data Security Standard (PCI DSS)
 
   › Pdca
         › Deming cycle (PDCA)
 
   › People
         › European People Governance Network (EPEGON) | Europe
 
   › People_governance
         › People Governance
 
   › Performance
         › Performance
         › Performance audit
 
   › Performance_management
         › Performance management
 
   › Personally_identifiable_information
         › Personally Identifiable Information (PII)
 
   › Personal_health_record
         › Personal Health Record (PHR)
 
   › Phr
         › Personal Health Record (PHR)
 
   › Pii
         › Personally Identifiable Information (PII)
 
   › Pmbok
         › Project Management Body of Knowledge (PMBOK)
 
   › Pmi
         › Project Management Institute (PMI) | World
 
   › Policy
         › Policy
 
   › Portfolio
         › Portfolio, Programme & Project Management Maturity Model (P3M3™)
 
   › Preventive
         › Preventive control
 
   › Prince_2
         › PRINCE2
 
   › Privacy
         › Privacy
 
   › Prmia
         › Professional Risk Managers' International Association (PRMIA) | World
 
   › Process
         › Alignability Process Model
         › Define, Measure, Analyse, Improve, Control (DMAIC)
         › Six Sigma
 
   › Process_capability
         › ISO 15504 - Process capability assessment
 
   › Professional
         › ISACA code of professional ethics
 
   › Professional_risk_managers_international_associati
         › Professional Risk Managers' International Association (PRMIA) | World
 
   › Program
         › Portfolio, Programme & Project Management Maturity Model (P3M3™)
 
   › Project
         › ISO 10006 - Quality management in projects
         › Portfolio, Programme & Project Management Maturity Model (P3M3™)
         › Project
 
   › Project_management
         › Project management
 
   › Project_management_body_of_knowledge
         › Project Management Body of Knowledge (PMBOK)
 
   › Project_management_institute
         › Project Management Institute (PMI) | World
 
   › Project_methodology
         › PRINCE2
 
   › Public_company_accounting_oversight_board
         › Public Company Accounting Oversight Board (PCAOB) | US
 
   › Public_research_centre_henri_tudor
         › Public Research Centre Henri Tudor | Luxemburg


 
A | B | C | D | E | F | G | H | I | J | K | L | M | N | O | P | Q | R | S | T | U | V | W | X | Y | Z | 
 
Q
 
   › Qualified_audit_opinion
         › Qualified Audit Opinion
 
   › Quality
         › Data quality
         › ISO 10006 - Quality management in projects
         › ISO 10014 - Quality management - Guidelines for realizing financial and economic benefits
 
   › Quickstart
         › CobiT Quickstart


 
A | B | C | D | E | F | G | H | I | J | K | L | M | N | O | P | Q | R | S | T | U | V | W | X | Y | Z | 
 
R
 
   › Raci
         › Responsibility assignment matrix (RACI)
 
   › Raci_matrix
         › RACI (Responsible, Accountable, Consulted, Informed) Matrix
 
   › Ram
         › Responsibility assignment matrix (RACI)
 
   › Reasonable_assurance
         › Reasonable assurance
 
   › Recommendation
         › Recommendation
 
   › Recovery
         › Recovery
 
   › Registered
         › Institute of Registered Auditors (IBR-IRE) | Belgium
 
   › Regulatory
         › Corporate governance, risk management and regulatory compliance (GRC)
 
   › Reliability
         › ISO 15801 - Recommendations for trustworthiness and reliability of information stored electronically
         › Reliability
 
   › Reporting
         › Financial reporting
         › Internal Controls over Financial Reporting (ICFR)
 
   › Residual_risk
         › Residual risk
 
   › Resilience
         › Resilience
 
   › Responsability
         › Responsibility assignment matrix (RACI)
 
   › Response
         › Response
 
   › Risk
         › Audit risk
         › Corporate governance, risk management and regulatory compliance (GRC)
         › COSO Enterprise Risk Management (ERM)
         › Economic risk
         › Enterprise Risk Management (ERM)
         › External risk
         › Global Risk and Control (GRC)
         › Governance risk
         › Guide to the Assessment of IT Risk (GAIT) series
         › Infrastructure risk
         › Intentional risk
         › IT risk
         › Level of risk
         › Response
         › Risk
         › Risk tolerance
         › Strategy risk
 
   › Risk_appetite
         › Risk appetite
 
   › Risk_evaluation
         › Risk evaluation
 
   › Risk_it
         › Risk IT
 
   › Risk_management
         › ISO 31000 - Risk management
         › Management of Risk (M_o_R)
         › Risk management
 
   › Risk_treatment
         › Risk treatment


 
A | B | C | D | E | F | G | H | I | J | K | L | M | N | O | P | Q | R | S | T | U | V | W | X | Y | Z | 
 
S
 
   › Safe_harbor
         › Safe_Harbor | US
 
   › Sarbanes_oxley_act
         › Sarbanes-Oxley Act (SOX) | US
 
   › Sas_70
         › SAS 70 - Outsourcing Service Audit
 
   › Scce
         › Society of Corporate Compliance and Ethics (SCCE) | World
 
   › Scor
         › Supply-Chain Operations Reference (SCOR)
 
   › Scorecard
         › Balanced Scorecard (BSC)
 
   › Secretary
         › Company Secretary
 
   › Securities
         › Securities and Exchange Commission (SEC) | US
 
   › Security
         › Cloud Security Alliance (CSA)
         › Information security
         › Information security management (ISM)
         › ISO 13335 - Information technology -- Security techniques
         › ISO 27000 - Information Security Standards
         › ISO 27002 - Best practice on information security management
         › Open Web Application Security Project (OWASP)
         › Security
 
   › Security_policy
         › Security policy
 
   › Segregation_of_duties
         › Segregation of duties (SoD)
 
   › Sensitivity
         › Sensitivity
 
   › Service
         › Service
         › Service manager
 
   › Serviceability
         › Serviceability
 
   › Service_management
         › ISO 20000 - IT Service Management
         › Service assets
 
   › Sfia
         › Skills Framework for the Information Age (SFIA) | UK
 
   › Should
         › Should
 
   › Six_sigma
         › Define, Measure, Analyse, Design, and Verify (DMADV)
         › Define, Measure, Analyse, Improve, Control (DMAIC)
         › Lean Six Sigma
         › Six Sigma
 
   › Skills_framework_for_the_information_age
         › Skills Framework for the Information Age (SFIA) | UK
 
   › Society_of_corporate_compliance_and_ethics
         › Society of Corporate Compliance and Ethics (SCCE) | World
 
   › Sod
         › Segregation of duties (SoD)
 
   › Sox
         › Sarbanes-Oxley Act (SOX) | US
 
   › Stakeholder
         › Stakeholder
 
   › Standard
         › Audit standard
         › ISO 27000 - Information Security Standards
         › Standard
 
   › Standards
         › National Institute of Standards and Technology (NIST) | US
 
   › Statutory_audit
         › Statutory audit
 
   › Statutory_auditor
         › Statutory auditor
 
   › Strategy
         › Strategy
         › Strategy risk
 
   › Sufficiency
         › Sufficiency
 
   › Supply
         › Supply-Chain Operations Reference (SCOR)
 
   › Systems
         › Institut de la Gouvernance des Systèmes d'Information (IGSI) | France


 
A | B | C | D | E | F | G | H | I | J | K | L | M | N | O | P | Q | R | S | T | U | V | W | X | Y | Z | 
 
T
 
   › Technology
         › Global Technology Audit Guide (GTAG)
         › National Institute of Standards and Technology (NIST) | US
 
   › The_open_group_architecture_framework
         › The Open Group Architecture Framework (TOGAF)
 
   › Tipa
         › Tudor's IT Process Assessment (TIPA) | Luxemburg
 
   › Togaf
         › The Open Group Architecture Framework (TOGAF)
 
   › Tolerance
         › Risk tolerance
 
   › Tone_from_the_top
         › Tone From the Top
 
   › Total_productive_maintenance
         › Total Productive Maintenance (TPM)
 
   › Tpm
         › Total Productive Maintenance (TPM)
 
   › Trail
         › Audit trail
 
   › Trusted_third_party
         › Trusted Third Party (TTP)
 
   › Trustworthiness
         › ISO 15801 - Recommendations for trustworthiness and reliability of information stored electronically
 
   › Ttp
         › Trusted Third Party (TTP)
 
   › Tudor_itsm_process_assessment
         › Tudor's IT Process Assessment (TIPA) | Luxemburg


 
A | B | C | D | E | F | G | H | I | J | K | L | M | N | O | P | Q | R | S | T | U | V | W | X | Y | Z | 
 
U
 
   › Universe
         › Audit universe
 
   › Unqualified_audit_opinion
         › Unqualified audit opinion
 
   › Up
         › Audit follow up review


 
A | B | C | D | E | F | G | H | I | J | K | L | M | N | O | P | Q | R | S | T | U | V | W | X | Y | Z | 
 
V
 
   › Validity
         › Validity
 
   › Value
         › Value
 
   › Value_stream_mapping
         › Value Stream Mapping (VSM)
 
   › Val_it
         › Val IT
 
   › Verification
         › Define, Measure, Analyse, Design, and Verify (DMADV)
 
   › Vsm
         › Value Stream Mapping (VSM)
 
   › Vulnerability
         › Risk
         › Vulnerability


 
A | B | C | D | E | F | G | H | I | J | K | L | M | N | O | P | Q | R | S | T | U | V | W | X | Y | Z | 
 
W
 
   › Weakness
         › Control weakness
         › Material weakness
 
   › Web
         › Open Web Application Security Project (OWASP)
 
   › Working
         › Audit working papers

<<<
QAP © 2010 | advice[at]qap.eu | audit[at]qap.eu
   Audit     Advisory     Training     Change     Disclaimer     Copyright   
pen4web