the industry calendar
Course/Product Description

IT Auditing And Controls

Format: In-Person Seminar
Find A Class Near You: View Dates And Locations For This Seminar

IT Auditing And Controls
This intensive, three-day seminar outlines the concepts of information technology you need to know in order to understand the audit concerns in the IT environment.

You will learn the necessary controls for application systems - the session pinpoints specific controls to evaluate when auditing currently installed systems, new systems under development, and the various activities within the information technology department.

In addition, you will learn techniques for auditing automated systems and examine the impact of Sarbanes-Oxley on IT audit.

You will leave this session with a solid foundation in the basics of information technology as they apply to audit and security concerns. (Note: This seminar covers topics found in Chapters 1, 4, 5, and 6 of the CISA Review Manual.)

Prerequisite: This course assumes limited or no prior IT experience.
Learning Level: Basic
Field: Auditing


1. Introduction to IT Risks & Controls

  • Role of IT
  • Risk Definitions
  • Risk Assessment
  • Information Security Objectives
  • IT Controls Cost / Risk Balance
  • Internal Control Overview
  • Accountability & Auditability
  • Integrated Auditing
2. Planning IT Audits
  • Definition of Internal Audit
  • IT Audit Planning
  • Audit Universe / IT Audit Universe
  • Risk Criteria
  • Audit Engagement Planning
  • IT Control Categories
  • Mapping Risk and Control Categories
3. Audit & Control Frameworks and Standards
  • Maintaining Objectivity
  • What is a Standard?
  • COSO
  • GAO Green Book
  • IIA Global Technology Audit Guides
  • COBIT®
  • ISO 27002 Security Standard
4. Basics of Information Technology
  • Computer Hardware
  • Central Processing Unit / Memory
  • Operating Systems (OS)
  • Mainframe
  • Client/Server Technology
  • Virtualization / Virtual Servers
  • Batch and Interactive Models
5. Database Technology and Controls
  • Managing Information
  • Database Terminology
  • Database Management Systems (DBMS)
  • Hierarchical Databases
  • Relational Databases
  • Database Risks
  • Database Audits
6. Network Technology and Controls
  • Networking Risks
  • What is a “Network”?
  • OSI Model
  • Local Area Networks (LANs)
  • Wide Area Networks (WANs)
  • Network Devices
  • Firewalls
  • Intrusion Detection Systems (IDS / IPS)
  • Virtual Private Networks (VPNs)
  • Wireless
  • The Internet
  • Cloud Computing
7. IT Governance
  • Audit’s Role in IT Governance
  • IIA Professional Practices Framework - Governance
  • Linking Business and IT Strategies
  • IT Governance Objectives
  • COBIT® 5 - IT Governance / Management
  • IIA GTAG - Auditing IT Governance
  • Separation of Duties
  • Assessing Outsourced IT Functions
8. IT General Controls
  • Logical Security
  • Change Management
  • Business Continuity / Disaster Recovery
  • Operation Controls
  • Physical Security
  • Environmental Exposures
  • System Development
9. Business Application Controls
  • Business Application Control Categories
  • Business Application Risks
  • What is a Transaction?
  • Transaction Life Cycle
  • Business Application Audit Objectives
  • Business Application Controls
  • The Future of Applications
You will receive a copy of MIS' Information Technology & Audit Acronym Dictionary, defining hundreds of IT terms and acronyms.

Dates & Times
Classes start on the date(s) posted herein, and run from 8:30am to 5pm daily, except for the last day of class, which ends at 3pm.
About The Provider: Founded in 1978, and with offices in the USA, UK, and Asia, MIS Training Institute - aka MISTI - is the international leader in audit and information security training.

Helping audit and infosecurity professionals stay at the top of their game has always been at the core of MISTI's mission. To that end, MISTI has developed and focused its seminars, conferences, and symposia on the wide-ranging needs of auditors and information security practitioners who are charged with controlling complex systems and business environments.

All MISTI training classes are led by industry experts. MISTI training classes are delivered by professionals who have been in the field and practice what they teach. Additionally, MISTI training's unparalleled course curriculum covers the most up-to-the-minute topics, provides proven audit and security practices, and delivers the information needed to be successful in today's organizations.

MIS Training Institute is registered with the National Association of State Boards of Accountancy (NASBA) as a sponsor of continuing education on the National Registry of CPE Sponsors. NASBA Sponsor Number: 103321

Cancellation/Refund Policy: MIS Training Institute

A full refund less a $100 administrative fee will be given for cancellations received 15 days or more before the event. Tuition is non-refundable for cancellations made 14 days or less before the event. You may, however, transfer your tuition to another MIS Training Institute event, less a $195 administrative fee. Transfers are valid for 12 months from the time of initial cancellation. Substitutions are welcome at any time.

Those who do not cancel before the MISTI event date and who do not attend are responsible for the full non-refundable, non-transferable tuition.
Price: $1,833.00
More Info: Contact Us For More Information
Share This: Share on Facebook

Share on Twitter

Keywords For This Course:

it auditing and controls course, it auditing and controls seminar, it auditing and controls training, it auditing and controls

Currently Scheduled Dates For This Seminar
There currently are no scheduled dates for this seminar. Please click here to search for another course.
Webinars HR Payroll Safety Workers' Comp Bank/Mortgage CPA/Accounting In-Person Seminars HR Payroll Safety Workers' Comp Bank/Mortgage CPA/Accounting Online/Self-Study HR Payroll Safety Workers' Comp Bank/Mortgage CPA/Accounting
The Industry Calendar | 5755 North Point Parkway, Suite 228
Alpharetta, GA 30022
Copyright 2020
Web site development by OTAU