€1.600,00 (€1.936,00 incl. VAT)
€1.200,00 (€1.452,00 incl. VAT)
€1.800,00 (€2.178,00 incl. VAT)
€1.400,00 (€1.694,00 incl. VAT)
30 November 2023 - 09:00
1 December 2023 - 17:00
Understanding & Auditing Business Processes’ risks related to IT
The primary objective of this training is to help internal auditors develop an understanding of IT and IT risks in business audits, and to identify applicable IT key controls, even if they are not IT specialists. The training is structured around 10 major IT general controls, especially access management, change management, third-party management, incident management, data management, and security management, which are presented in technical sheets. This training aims to place these IT general controls in a business risk perspective, requiring internal auditors to develop an understanding of Information Technology, business insights, and audit techniques.
• Internal auditors who deal with automated business processes,
• Internal auditors wanting to understand IT and IT risks in their business audits.
• IS/IT auditors,
• Auditors with practical IT audit experience
• IT staff who want to learn about the combined audit of processes and application systems.
Internal auditors with experience in operational environments
Auditors involved in auditing outsourced activities
Business people responsible for outsourcing activities
Any person involved with outsourcing Quality professionals
As internal auditors, you are required to understand basics of those risks, detect thema and identify applicable key controls even if you aren’t a technical IT specialists.
IT General Controls (ITGC) are controls that apply to all systems, components, processes, and data for a given organisation.
This training aims to place these ITGCs in a business risk perspective, which requires internal auditors to develop an understanding of Information Technology, business insights and audit techniques.
This training is based on 10 major IT general controls, presented in technical sheets:
- Access Management
- Change Management
- Project Management
- Application Management
- Service Level agreement
- Data Management
- Incident Management
- Continuity Management
- Security Management
- Privacy Management
- Performance Management
This advanced training requires a basic knowledge of IT and audit skills. The « Introduction to IT audit »training is highly recommended.