Untitled Document
Print Page   |   Contact Us   |   Report Abuse   |   Sign In   |   Register
Community Search
IT Auditing for Non-I.T. Auditors (Basics of I.T. Auditing) (BITA) 9-11 December 2019
Tell a Friend About This EventTell a Friend
 

2019/12/09 to 2019/12/11
When: 9-11 December 2019
Registration starts at 8am
Where: Leadership Academy for Guardians of Governance
71 on 7th Avenue
Hanover Square, Block B
Edenvale, Gauteng  1609
South Africa
Contact: Project Coordinator: CPD and Events
011 615 0355


Online registration is closed.
« Go to Upcoming Event List  

Presenter/s:

TM Consulting

Duration:

3 Days

CPD Hours:

24

Fees

ex VAT

incl VAT

 

Member:

R 7 268.70

R  8 359.00

 

Non-Member:

R 8 811.30

R 10133.00

Course Objective

 

This training course is aimed at internal audit professionals without specific expertise in IT auditing and provides them with the tools to start conducting IT and Security audits in their organisations. The course focuses on internationally-recognised auditing standards and frameworks including CobIT, ITIL, COSO and ISO27002. The training agenda covers extensive knowledge of the controls required when auditing currently installed systems, new systems under development, andvarious activities within the information technology department. The course participants will learn techniques for auditing automated systems and the management of application transaction activity, controls, and procedures. Delegates will master techniques that can be applied to mainframe, distributed processing, and client/server-based applications. They will gain field-tested tools for identifying, recording, assessing, and evaluating application controls and procedures.

 

Course Content

 

Fundamentals of IT Auditing

· What is IT auditing?

· What is the role of an IT auditor?

· IIA standards related to an IT audit

· Key components of IT

· Centralised vs distributed systems

· On-line vs batch systems

· Network concepts

· Databases

· Operating systems

General Control

· General security concepts

· Access management concepts

· Access management principles

· Common access management controls

· Incident Management and the Service Desk

· Service Level Management

· Change and Patch Management

· Elements of a typical change process

· Aspects of the SDLC

· SDLC phases

· Business Continuity Management (BCM)

· Disaster Recovery (DR)

· Backup processing

Application Controls

· Application control concepts

· Input controls

· Processing controls

· Output controls

· Interface controls

· Audit trails

· Application security

Cloud Computing and Service Organization Control (SOC) Reports

· Cloud computing

· SOC reports

Emerging Technology Impacting IT Auditing

· 4th Industrial Revolution

· Artificial Intelligence

· Big Data

· Robotics

· Internet of Things (IOT)

Auditing key information systems controls

· Procedures to audit the adequacy and effectiveness of each of the key information controls identified:

o Perform a walkthrough

o Defining the population to be tested for control effectiveness

o Test procedures

Audit of data files - use of CAATs

· Purpose of CAATs

· Understanding data and meta data

· Formulating the CAAT specification

· Development, testing and implementation of CAATs

Case studies

A case study on identifying application and IT general controls will be completed.

 

Course Outcome

 

Upon successful completion of the training, internal audit professionals will develop knowledge of basic IT audit concepts that can be used to facilitate integrated audit efforts within their organization. They will also gain the knowledge and understanding relating to the following key information systems control that can be applied in day-to-day audit assignments: Human resources and payroll processes • Procure to pay processes • Order to cash processes • Financial statement close process • Logical information security • Segregation of duties • User account management • Application layer security • Physical and environmental controls • Controls over IT service management processes (ITIL) • Systems development lifecycle controls.

 

Who should attend?

 

 

Level 2

Internal auditors who are already practicing internal audit and have a basic understanding of the subject

 

A 10% discount applies if 2 or more participants from the same company attend this course.
Please be advised of the event terms and conditions.
Delegates are also requested to review the content and the levels of the courses presented before booking, to ensure they are attending the right course.

more Latest News
There are currently no news items posted.
Online Surveys
Membership Management Software Powered by YourMembership  ::  Legal