Acknowledgments

This edition of the AAIR Review Manual is the result of the collective efforts of many volunteers. ISACA members from throughout the global IS risk management profession participated, generously offering their talent and expertise. This international team exhibited a spirit of selflessness with their contribution to this manual. Their participation and insight are truly appreciated.

Expert Reviewers

Oluwafemi Adeyemo Adeleke, CISA, CISM, CGEIT, CRISC, CDPSE, CCISO, 3DMA Technologies Ltd., UK
Umar Aftab, CISM, CRISC, AAISM, CISSP, PMP, SBP, Pakistan
Sanjiv Kumar Agarwala, CISA, CISM, CGEIT, CDPSE, CISSP, Oxygen Consulting Services Pvt Ltd., India
Kavin Anburaj, CISA, Meta Platforms, US
Arthur Hue Yeung Au, CISA, AAIA, Hong Kong
Helen Barber, CISA, AAIA, UK
Zeljka Benko, CISA, US
Amit Butail, CISA, CISM, CGEIT, CRISC, India
Anthony Butler, CISM, US
Pedro David, CISM, New Zealand
Adham Etoom, CISM, CGEIT, CRISC, FAIR, GCIH, GSTRT, PMP, Qatar
Katja Feldtmann, CISA, CISM, CRISC, CDPSE, CCSP, CISSP, ISO 27001 LA, New Zealand
Juliet Flavell, CISM, CRISC, UK
Shigeto Fukuda, CISA, CDPSE, Japan
Larisa Gabudeanu, CISA, CISM, CRISC, CDPSE, Romania
Nizaam Mohamed Ghouseuddin, CISA, CISM, CRISC, AAIA, AAISM, ISO 42001 LA, India
Al Gregor, CISM, CRISC, CIA, CPA, CRMA, Canada
Ankit Gupta, CISA, CISM, CRISC, AAISM, US
Haris Hamidovic, Ph.D., CISA, CISM, CDPSE, CC, CIA, ISO/IEC 27001 LA, Bosnia and Herzegovina
Timo Huebner, CISM, CGEIT, CDPSE, Germany
Hannah Hunt, CISM, CRISC, AIGP, ISO 27001 LA, ISO 27001 LI, Dark Armour, UK
Muhammad Aqib Khan, CISA, CISM, CGEIT, CRISC, CDPSE, CMA, PMP, Oxford Brookes University, UK
Phil Krämer, CISM, CRISC, Germany
Dimitrios Maketas, CISA, CDPSE, CISRCP, CRCMP, CRM, ISO 22301 CCM, ISO 27001 LA, ISO 27032 SLCM, ISO 42001 LA, Six Sigma LBB, Switzerland
Joshua McCray, AAISM, US
Ani Merkviladze, CISA, CC, CISSP, ECCS, Georgia
Wojciech Misiura, CISA, AAIA, CIA, CISSP, Poland
Shilpi Mittal, CISA, CISM, CRISC, US
Adel Abdel Moneim, CISA, CISM, CGEIT, CRISC, CDPSE, CLSSP, DORA SLM, ISO 22301 SLI/SLA, ISO 24762 LDRM, ISO 27005 LRM, ISO 27035 LIM, ISO 29100 Lead Privacy Implementer, ISO 38500 Lead IT Corporate Governance Manager, Master ISO 27001, Lead Forensic Examiner, Egypt
Geetha Murugesan, CISA, CISM, CGEIT, CRISC, CDPSE, ISO 22301:2019 LA, ISO 27001:2022 LA, ISO 33500, ISO 9000:2005 LA, India
Michelle Myers, CISA, CRISC, AAIA, US
Kane Porter, CISA, AAIA, AASB member, ABV, CA, CBV, CFF, CIA, CPA, PMP, Canada
Stefano Romagnoli, CRISC, Luxembourg
Maria Sette, Ph.D., CISA, CISM, CGEIT, CRISC, CDPSE, US
Naushad Siddiqui, CISA, CRISC, Pakistan
Anamika Singh, CISA, CISM, CGEIT, CRISC, India
Srihari Subudhi, CISA, CISM, CRISC, CISSP, India
Eddie T, CISA, CISM, CRISC, AAISM, Canada
Yogesh Thanvi, CISA, CDPSE, US
Thuy Tien Tran, CISA, AAIA, US
Richard Voegt, CISA, AAIA, Australia
Vinit Yagnik, CRISC, US
Xiaoyan (Abby) Zhang, CISA, CDPSE, New Zealand
Dusan Zikic, CISA, CISM, CGEIT, CRISC, CSX-P, CAPM, CFE, CISSP, ITIL4, Serbia