IT Auditing And Controls
|Find A Class Near You:
||View Dates And Locations For This Seminar
This intensive, three-day seminar outlines the concepts of information technology you need to know in order to understand the audit concerns in the IT environment.
You will learn the necessary controls for application systems - the session pinpoints specific controls to evaluate when auditing currently installed systems, new systems under development, and the various activities within the information technology department.
In addition, you will learn techniques for auditing automated systems and examine the impact of Sarbanes-Oxley on IT audit.
You will leave this session with a solid foundation in the basics of information technology as they apply to audit and security concerns. (Note: This seminar covers topics found in Chapters 1, 4, 5, and 6 of the CISA Review Manual.)
Prerequisite: This course assumes limited or no prior IT experience.
Learning Level: Basic
1. Introduction to IT Risks & Controls
2. Planning IT Audits
- Role of IT
- Risk Definitions
- Risk Assessment
- Information Security Objectives
- IT Controls Cost / Risk Balance
- Internal Control Overview
- Accountability & Auditability
- Integrated Auditing
3. Audit & Control Frameworks and Standards
- Definition of Internal Audit
- IT Audit Planning
- Audit Universe / IT Audit Universe
- Risk Criteria
- Audit Engagement Planning
- IT Control Categories
- Mapping Risk and Control Categories
4. Basics of Information Technology
- Maintaining Objectivity
- What is a Standard?
- GAO Green Book
- IIA Global Technology Audit Guides
- ISO 27002 Security Standard
5. Database Technology and Controls
- Computer Hardware
- Central Processing Unit / Memory
- Operating Systems (OS)
- Client/Server Technology
- Virtualization / Virtual Servers
- Batch and Interactive Models
6. Network Technology and Controls
- Managing Information
- Database Terminology
- Database Management Systems (DBMS)
- Hierarchical Databases
- Relational Databases
- Database Risks
- Database Audits
7. IT Governance
- Networking Risks
- What is a “Network”?
- OSI Model
- Local Area Networks (LANs)
- Wide Area Networks (WANs)
- Network Devices
- Intrusion Detection Systems (IDS / IPS)
- Virtual Private Networks (VPNs)
- The Internet
- Cloud Computing
8. IT General Controls
- Audit’s Role in IT Governance
- IIA Professional Practices Framework - Governance
- Linking Business and IT Strategies
- IT Governance Objectives
- COBIT® 5 - IT Governance / Management
- IIA GTAG - Auditing IT Governance
- Separation of Duties
- Assessing Outsourced IT Functions
9. Business Application Controls
- Logical Security
- Change Management
- Business Continuity / Disaster Recovery
- Operation Controls
- Physical Security
- Environmental Exposures
- System Development
- Business Application Control Categories
- Business Application Risks
- What is a Transaction?
- Transaction Life Cycle
- Business Application Audit Objectives
- Business Application Controls
- The Future of Applications
You will receive a copy of MIS' Information Technology & Audit Acronym Dictionary, defining hundreds of IT terms and acronyms.
Dates & Times
Classes start on the date(s) posted herein, and run from 8:30am to 5pm daily, except for the last day of class, which ends at 3pm.
|About The Provider:
||Founded in 1978, MIS Training Institute is the international leader in audit and information security training, with offices in the USA, UK, and Asia. MIS' expertise draws on experience gained in training more than 200,000 delegates across five continents.
Helping audit and infosecurity professionals stay at the top of their game has always been at the core of MIS' mission. To that end, MIS has developed and focused its seminars, conferences, and symposia on the wide-ranging needs of internal and IT auditors and information security practitioners who are charged with controlling complex systems and business environments.
MIS' unparalleled course curriculum covers the most up-to-the-minute topics, provides proven audit and security practices, and delivers the information needed to be successful in today's organizations.
All MIS programs are led by industry experts…hands-on pros who have been in the field and who practice what they teach. Attendees of MIS Training Institute events benefit from unbiased practices, proven strategies, and lessons learned in the real-world.
MIS Training Institute is registered with the National Association of State Boards of Accountancy (NASBA) as a sponsor of continuing education on the National Registry of CPE Sponsors. NASBA Sponsor Number: 103321
A full refund less a $100 administrative fee will be given for cancellations received 15 days or more before the event. Tuition is non-refundable for cancellations made 14 days or less before the event. You may, however, transfer your tuition to another MIS Training Institute event, less a $195 administrative fee. Transfers are valid for 12 months from the time of initial cancellation. Substitutions are welcome at any time.
Those who do not cancel before the event date and who do not attend are responsible for the full non-refundable, non-transferable tuition.
||Contact Us For More Information
||Share on Facebook
Share on Twitter
Share on Google+
|Keywords For This Course:|
IT Auditing And Controls
|Currently Scheduled Dates For This Seminar|
|IT Auditing And Controls||San Diego, CA||6/5/2017|
|IT Auditing And Controls||Boston, MA||7/17/2017|
|IT Auditing And Controls||Washington DC, DC||8/7/2017|
|IT Auditing And Controls||Orlando, FL||9/18/2017|
|IT Auditing And Controls||Chicago, IL||10/11/2017|
|IT Auditing And Controls||Orlando, FL||12/4/2017||
Become an ′America First′ Certified Business
Garnishments, Child Support Orders, And Other Levies
Sales &Use Tax Workshop
Project Management Workshop
How To Use QuickBooks
Certified Payroll Administrator
FMLA Training &Certification Program
The Controller′s Workshop
SOX Requirements For Payroll
Defined Benefit Training &Certification Program
Series 6 - Live &OnDemand Online Course
Certified Tax Specialist (CTS™)
Board Certified In Estate Planning (BCE)
Specialized Industry GAAP