A Risk-Based Approach to Auditing and Implementing Internal Controls
(Three days; 24 CPE Hours)t, IT Audit Training, IT Auditing, IT Auditor, IT Audit, IT Audit Training, IT Auditing, IT Auditor, IT Audit, IT Audit Training, IT Auditing, IT Auditor, IT Audit, IT Audit Training, IT Auditing, IT Auditor, IT Audit, IT Audit Training, IT Auditing, IT Auditor, IT Audit, IT Audit Training, IT Auditing, IT Auditor, IT Audit, IT Audit Training, IT Auditing, IT Auditor, IT Audit, IT Audit Training, IT Auditing, IT Auditor, IT Audit, IT Audit Training, IT Auditing, IT Auditor, IT Audit, IT Audit Training, IT Auditing, IT Auditor

For the new age of corporate governance, legal compliance, and internal auditing.

This course is a business information systems management course specifically designed to give executive managers, operations managers, IT managers, service organization and contract managers, and security managers the knowledge, skills, and task lists they need to immediately improve data and business process controls according to business and regulatory compliance needs.  The techniques in this class are intended to be of interest to IS auditors and financial auditors alike, audit managers, audit committee members, senior managers in charge of critical computing systems, as well as senior executives and board members.

What you will learn.

Regardless of your level of experience with information security and controls, Certified Information Security can provide the concise, yet powerful, transfer of skills and knowledge you need.  Delivered by renowned subject matter expert Allen Keele, this course delivers an enormous amount of knowledge over an intensive three days of instructor-led class.  While course highlights are described below, the class is exhaustively described in CIS’ separate detailed course outline.

R Learn how IT audits support financial audits.

R Learn about legal and ethical issues facing IT auditors.

R Learn how to identify and assess risk from the systems auditor’s perspective.

• General IT risks and controls

• IT deployment risks

• IT management risks

• Networking and telecommunications risks

R Learn how to comply with new information security laws and standards.

• BS 7799 / ISO17799

• US and international implications of the Sarbanes-Oxley Act

• Canada's Multi-Lateral Instrument 52-109

• Payment Card Industry's Data Security Standard (PCI DSS)

R Learn how to use computer-assisted audit tools and techniques to make the IS audit go faster, while improving the quality of the audit. 

R Learn how to conduct the IT audit.

• Get an overview of AICPA SAS standards 94 and 70.

• Get an overview using CobiT to structure an IS audit.

R Learn about implementing the complete IS audit lifecycle, including planning, risk assessment, evidence collection, audit opinions, and follow-up.

R Learn about fraud and forensic auditing.

R Learn how systems administrators and IT management can stay ahead of the audit instead of always trying to remediate to audit findings.

Systems Auditing versus Financial Auditing.

The Sarbanes-Oxley Act and the U.K's Turnbull reporting put these together for a "comprehensive audit" requirement.  Many financial audits now require thorough systems auditing too!  This course will give you a basic understanding of how formal IT audits such as SAS 94 and SAS 70 audits affect your business, as well as your relationships with your service organization vendors. 

• "CPA's in Coders Clothing: Auditors Breach IT's Inner Sanctum"
  The introduction of accounting standard SAS 94 in recent years, followed by Sarbanes-Oxley (SOX), highlights the growing invasion of accountants into the IT space...
  Read more.

Who should attend this course?

R Do you help manage a company (CEO/COO/CFO/CIO/CISO)?  Are you responsible for guiding corporate governance and ensuring compliance with new laws that impact the way you do business?
Learn more.

R Are you an accountant, financial auditor, or systems auditor?
Learn more.

R Are you responsible for aligning IT with your business goals, maximizing the benefit of IT to your business functions, and minimizing the associated risks that come with IT or how IT facilitates your business?
Learn more.

R Do you manage service contracts and vendors for outsourced services? 
Learn more.

R Has your organization performed an IT audit specifically aimed at documenting compliance with the new Sarbanes-Oxley financial legislation enacted around the world since the Enron and Worldcom fiascos?
Learn more.

Course Pricing, Scheduling, and Registration

Our courses are offered at various locations across the United States and around the world.  Please visit our online event schedule for a current listing of course times and locations, or to request course pricing or other information.