You may have read our suggestions on downloading GTAG and other supplementary materials to prepare for your Part 3 exam. Now, you may ask…
What is GTAG?
GTAG, which stands for Global Technology Audit Guide, is a user-friendly guide for internal auditors to understand information technology management, risk, control, and security.
Here is the list of current guides for your reference:
||Previous GTAG #
|Assessing Cybersecurity Risk: Roles of the Three Lines of Defense
|Auditing Application Controls
|Auditing IT Governance
|Auditing IT Projects
|Auditing Smart Devices: An Internal Auditor’s Guide to Understanding and Auditing Smart Devices
|Auditing User-developed Applications
|Business Continuity Management
|Change and Patch Management Controls: Critical for Organizational Success
|Continuous Auditing: Coordinating Continuous Auditing and Monitoring to Provide Continuous Assurance
|Data Analysis Technologies
|Developing the IT Audit Plan
|Fraud Prevention and Detection in an Automated World
|Identity and Access Management
|Information Security Governance
|Information Technology Outsourcing
|Information Technology Risk and Controls
|Management of IT Auditing
Can You Email Me These Copies?
I used to forward copies of GTAG to readers, but I now realize that the access is part of the privilege for IIA members and therefore, please understand that I can no longer do that.
For IIA members, these guides can be easily downloaded here. They are available in English, French for all parts, and occasionally also in other languages (e.g. Turkish, Polish) for some parts.
For non-members, they are available for purchase separately. Each guide is around US$25.
Do You Need Further Help in Part 3?
We have loads of guidance on how to tackle this most difficult part of the CIA exam, as well as many sound advice from readers. Many of them are recent takers who passed. If you have specific questions, that page is also the best place to get help. Good luck!