Unit 18 of the 2021 CMA Part 1 course focuses on Control Procedures and Information Security, which are essential for safeguarding organizational assets and ensuring reliable financial reporting. This unit equips CMA candidates with the knowledge needed to design, evaluate, and monitor effective control systems.

The unit begins with Control Procedures, explaining preventive, detective, and corrective controls used to reduce errors, fraud, and operational inefficiencies. Students learn how authorization, documentation, segregation of duties, and reconciliation support strong internal control environments.

Next, the course addresses Information Security, emphasizing the importance of protecting financial and operational data from unauthorized access, cyber threats, and system failures. Key concepts such as confidentiality, integrity, and availability (CIA triad) are discussed in detail.

The final section focuses on Systems and Security Measures, including access controls, encryption, firewalls, backups, and disaster recovery planning. Candidates also gain insight into IT governance and how technology controls support business continuity and compliance.

By completing Unit 18, CMA candidates develop a solid understanding of internal control procedures and information security practices—critical topics for both the CMA exam and real-world management accounting roles.