Skip to Content

GTAG: Auditing Cyber Incident Response and Recovery, 
2nd Edition

Global Technology Audit Guides The IIA Oct 29, 2024

gpg-auditing-cyber-incident-response-and-recovery-2nd-edition-cover.pngCyberattacks have grown dramatically over time with increasing severity, and cybersecurity risks consistently rank among organizations’ most significant concerns.

This GTAG, updated to align with the Global Internal Audit Standards, covers risks and controls that correspond to the NIST CSF “respond” and “recover” functions and gives an overview of the relevant risks and controls to help an internal audit function plan and scope audit engagements. The guide’s references to external control frameworks can help internal auditors develop insightful testing approaches.

This guidance supersedes the previous edition published in 2022.

The IIA

The Institute of Internal Auditors