offers CPA exams, accounting degree training, CPE, and professional development for accountants and CPAs
Course/Product Description

How To Perform An IT General Controls Review

Format: In-Person Seminar
Find A Class Near You: View Dates And Locations For This Seminar

How To Perform An IT General Controls Review

IT risks are increasingly recognized as critical factors in enterprise risk management.

From preventing failures in regulatory compliance to helping avoid devastating harm to the reputation of the organization from headline-making security breaches, auditors have an obligation as well as value-adding opportunities to assess enterprise vulnerabilities through effective risk-based IT audit planning.

In this three-day seminar attendees will examine the IT general control areas that must be addressed to ensure the confidentiality, integrity and availability of information assets.

The seminar will concentrate on determining risks in critical areas of the IT environment and the key controls that can reduce those enterprise risks. We will explore critical aspects of the IT environment, including IT governance, user access controls IT infrastructure controls, information security, physical security, disaster recovery, production change management and network perimeter security.

You will learn how to develop strategies for assessing the key controls in your information systems infrastructure.

1. It Risk Assessment

  • IT Risk Definitions
  • IT Risks And Exposures
  • Linking IT Risks To Business Risks
  • IT Risk Assessment Strategy
  • IT Infrastructure Risks
2. IT Control Standards And Frameworks
  • Coso Internal Control Framework
  • COBIT®
  • ISO 27001, ISO 27002
  • ISACA IT Risk Framework
3. IT Governance And Operations Management
  • Using COBIT® To Assess IT Governance
  • IT Organizational Structure
  • Policies And Procedures
  • Strategic Planning
  • Risk Management
  • IT Human Resources Practices
  • Quality Management
  • Separation Of Duties
  • Outsourcing
  • Audit Steps
4. Hardware And Software Infrastructure
  • Hardware Infrastructure
  • Centralized Vs. Distributed Processing
  • Hardware Acquisition
  • Hardware Inventories
  • Hardware Audits
  • Software Infrastructure
  • Operating System Components
  • Virtualization
  • Patch Management
  • Privileged Administrative Access
  • Vulnerability Assessments
  • Log Management
  • Database Management System (DBMS)
  • Database Terminology
  • Database Risks And Key Controls
  • System Software Audit Steps
5. Logical Access Controls
  • Access Control Components
  • Authentication
  • Password Controls
  • Tokens, Smart Cards, Biometrics
  • Authorization
  • Managing User Accounts
  • Access Control Systems
  • Audit Trail
  • Security Monitoring
  • Remote Access
  • Sensitive Data On Pcs And Workstations
  • Mobile Device Security
  • Single Sign-On (SSO)
  • Access Controls Best Practices
6. Physical And Environmental Controls
  • Exposures, Risks And Controls
  • Audit Steps
7. Network Perimeter Security
  • Network Security Threat/Risk Analysis
  • Network Security Strategy
  • Data Communication Software
  • OSI Model
  • TCP/IP
  • Firewalls/DMZ
  • Intrusion Detection Systems
  • Remote Access
8. Change Management
  • Change Management Risks
  • Change Management Process
  • Change Requests
  • Testing Changes
  • Program Migration
  • System Documentation
  • Emergency Changes
  • Changes To Vendor Supplied Source Code
  • Library Control Software
  • Audit Steps
9. Disaster Recovery And Business Continuity Planning
  • Disasters And Disruptive Events
  • Disaster Recovery/Business Continuity Planning
  • Business Impact Analysis (BIA)
  • Disaster Recovery Strategy
  • Business Continuity Strategy
  • Disaster Recovery Teams
  • Off-Site Storage
  • Data Backup And Recovery
  • Telecommunications Networks
  • Testing The Recovery Plan
  • Continuity Plan Maintenance
  • Contract Requirements
  • Audit Steps
10. Auditing System Development Projects
  • Business Risks
  • Audit’s Primary Goals
  • Getting Involved … How, When, Who?
  • Audit’s Coverage
  • Communicating Audit’s Roles And Results
  • Positioning Audit
  • Audit Staffing
  • Audit Resources
11. Planning And Executing General Control Reviews
  • Audit Strategy And Planning
  • Planning Memo
  • Key Documents For Audit Planning
  • Developing Audit Programs
  • Testing Controls
  • Documenting The Audit
Who Should Attend?
​IT, Financial, Operational, Business Applications, and External Auditors; Audit Managers and Directors; others who have compliance responsibilities
Prerequisite: None
Learning Level: Basic

Dates & Times
Classes start on the date(s) posted herein, and run from 8:30am to 5pm daily, except for the last day of class, which ends at 3pm.

Licenses / Designations / Educational Credits:CPE
All US States: 24
About The Provider: Founded in 1978, MIS Training Institute is the international leader in audit and information security training, with offices in the USA, UK, and Asia. MIS' expertise draws on experience gained in training more than 200,000 delegates across five continents.

Helping audit and infosecurity professionals stay at the top of their game has always been at the core of MIS' mission. To that end, MIS has developed and focused its seminars, conferences, and symposia on the wide-ranging needs of internal and IT auditors and information security practitioners who are charged with controlling complex systems and business environments.

MIS' unparalleled course curriculum covers the most up-to-the-minute topics, provides proven audit and security practices, and delivers the information needed to be successful in today's organizations.

All MIS programs are led by industry experts…hands-on pros who have been in the field and who practice what they teach. Attendees of MIS Training Institute events benefit from unbiased practices, proven strategies, and lessons learned in the real-world.

MIS Training Institute is registered with the National Association of State Boards of Accountancy (NASBA) as a sponsor of continuing education on the National Registry of CPE Sponsors. NASBA Sponsor Number: 103321

Cancellation/Refund Policy

A full refund less a $100 administrative fee will be given for cancellations received 15 days or more before the event. Tuition is non-refundable for cancellations made 14 days or less before the event. You may, however, transfer your tuition to another MIS Training Institute event, less a $195 administrative fee. Transfers are valid for 12 months from the time of initial cancellation. Substitutions are welcome at any time.

Those who do not cancel before the event date and who do not attend are responsible for the full non-refundable, non-transferable tuition.
Price: $2,195.00
More Info: Contact Us For More Information
Share This: Share on Facebook

Share on Twitter

Share on Google+

Currently Scheduled Dates For This Seminar
There currently are no scheduled dates for this seminar. Please click here to search for another course.

Sales &Use Tax Workshop
Sales &Use Tax Workshop

Inpats &Expats: Payroll Compliance Tips
Inpats &Expats: Payroll Compliance Tips

1040 Training
1040 Training

Comprehensive Income Tax Course with Career Package
Comprehensive Income Tax Course with Career Package

Certified Tax Specialist  (CTS™)
Certified Tax Specialist (CTS™)

The Controller′s Workshop
The Controller′s Workshop

Project Management Workshop
Project Management Workshop

Retirement Plan Training Courses
Retirement Plan Training Courses

Series 6 - Live &OnDemand Online Course
Series 6 - Live &OnDemand Online Course

Peachtree Seminars
Peachtree Seminars

Fundamentals Of Internal Auditing
Fundamentals Of Internal Auditing

Advanced Auditing For In-Charge Auditors
Advanced Auditing For In-Charge Auditors

How To Do A Payroll Audit - Former Auditor′s Expert Advice
How To Do A Payroll Audit - Former Auditor′s Expert Advice

Certified Payroll Administrator
Certified Payroll Administrator

Multi-State Payroll Tax Compliance
Multi-State Payroll Tax Compliance

Guidelines For Taxing Gifts, Awards, &Other Fringe Benefits
Guidelines For Taxing Gifts, Awards, &Other Fringe Benefits 5755 North Point Parkway, Suite 228 | Alpharetta, GA 30022 | 770-410-9941 |
Copyright 2017 | Web Site Development by OTAU