Initiation to IT auditing
IT audit is a specialization in the field of auditing internal controls related to Information Systems and Information Technology (IS-IT).
The objective of this training is to familiarize participants with the basics of computer science and the information technology (IT) audit process. A review of some IT concepts and a general overview of related concepts and processes will be the fundamentals of the audit. It will also enable participants to acquire a basic knowledge and understanding of the main concepts and aspects of this audit area.
The training will cover the various reference frameworks and standards for the audit of IS-IT (COSO, COBIT, ITIL, ISO2700) which will be used to define the audit criteria. The fundamental principles relating to processes, information systems and technologies will be addressed. They will include information system components, mainframe dependencies and operations, operating and application systems, data processing, change management. The main risks associated with the use of technology and general and application system controls will also be discussed.
This basic training course is intended for auditors who wish to acquire basic knowledge of IT-IS risks and controls.
- Duration: Two days