The National Association of State Auditors, Comptrollers Treasurers Search Site Map Feedback Privacy Policy Contact Us

About NASACT
Washington Connection
NASACT Roster
News Center
Technical Updates
Information Security Audit
Members Only
Online Resources
NASACT Community
Conferences & Seminars
Home

Calendar of Events
Staff Directory
Survey Central
NASACT BookStore


NASACT Phase II Teams

The Mission and Objectives team prepared a white paper, dated September 7, 2002, to assist audit communities at all levels of government in their efforts to plan and implement strategies to perform information security audits. In particular, this white paper presents several examples of government audit organizations that are in various stages of development of their IS audit capability.

The Legal and Reporting Issues team identified legal and reporting issues associated with doing IT security audits. In 2002, the federal, state and local audit community was surveyed to identify current IT audit activities, requirements, limitations, and practices. Based on analysis of the survey results and additional research, a white paper was drafted that discusses the team's findings, observations, and recommendations. The white paper was released in September 2003.

The Filling Skills Gaps team is addressing a skills gap tool, possibly a web based questionnaire, and a resource-sharing framework. It was intended that this work would facilitate a national training agenda and inter-organizational resource sharing.

The Training and Course Delivery team developed a framework for course delivery, in June 2002, that identified the types of training courses and certifications available for the curriculum in the Management Planning Guide for Information Systems Security Auditing.

The Information Sharing team is ongoing from phase I and resulted in the development of this website which is still under development.