Schaumburg, Ill. (June 25, 2020) — Managing risk and opportunity, including information and technology (I&T) risk, is a key strategic activity for enterprise success: which is even more relevant today during this time of disruption. ISACA has released new editions of risk IT resources to help guide enterprises: Risk IT Framework, 2nd Edition and Risk IT Practitioner Guide, 2nd Edition.
The updated Risk IT Framework offers guidelines and practices that optimize risk, opportunity, security and business value, and helps practitioners build consensus regarding risk IT decisions at all enterprise levels. Its companion guide, the Risk IT Practitioner Guide, 2nd Edition, gives practical guidance on how to accomplish the activities described in the Risk IT Framework, 2nd Edition. Both publications were updated to reflect new regulations, methods, and technology that have been introduced since the original editions were published. The second editions include a stronger focus on cybersecurity and align with the latest version of COBIT.
Risk IT offers a structured, systematic methodology that helps enterprises:
Both Risk IT Framework, 2nd Edition and Risk IT Practitioner Guide, 2nd Edition were created to assist in developing, implementing or enhancing the practice of risk management by:
"Risk management works best when integrated with the regular workflow of the staff and management rather than as an add-on activity," says Lisa Young, CISA, CISM, VP of Cyber Risk Engineering at Axio, and the lead developer for both publications. "As Risk IT shows, effective I&T risk management provides many benefits, including reduced or minimized losses, better oversight of organizational assets and increased ability (or capability) to manage risk in alignment with enterprise strategy."
The Risk IT Framework, 2nd Edition is offered in the digital format for free to members and costs $75 for non-members. In the print format, the framework costs $60 for members and $75 for non-members. The Risk IT Practitioner Guide, 2nd Edition costs $75 for members and $100 for non-members and is offered in both the print and digital format. To download the framework, visit www.isaca.org/bookstore/bookstore-risk-digital/ritf2. To download the practitioner guide, visit www.isaca.org/bookstore/bookstore-risk-digital/ritpg2. Find additional ISACA resources at www.isaca.org/resources.
For more than 50 years, ISACA (www.isaca.org) has advanced the best in technology. ISACA equips individuals with knowledge, credentials, education and community to progress their careers and transform their organizations. Through the CSX, COBIT and CMMI solutions, ISACA enables enterprises to train and build quality teams. ISACA is a global professional association and learning organization that leverages the expertise of its 145,000 members who work in information and cybersecurity, governance, assurance, risk and privacy to drive innovation through technology. It has a presence in 188 countries, including more than 223 chapters worldwide.