Upon completion of the course, participants will have a complete understanding of the following:
· Define the role/s of the IT Auditor
· Why do we have IT Audits, and why they are important?
· IT Risk Assessment/Strategies
· Course Overview Questions and Answers (Q&A)
What do Information Technology (IT) Auditors Do?
Lesson 1. Define the Roles and Responsibilities of an IT Auditor
· What is the role of an IT Auditor? An IT auditor is responsible for analyzing and assessing an organization’s technological infrastructure, to find problems with efficiency, risk management and compliance.
Lesson 2. Why do we have IT Audits, and why are they important (Not all inclusive)?
· The primary functions of an IT audit are to evaluate the systems that are in place to guard an organization's information.
· Information technology audits are used to evaluate the organization's ability to protect its information assets and to properly dispense information to authorized parties.
· To ensure that the IT systems and the data stored within are reliable and secure.
· Enables companies to know if their systems are working effectively and are achieving the goals and objectives of their organization.
· Evaluation of Internal Controls
· Improve processes and proficiencies
· Provides credibility
Lesson 3. IT Risk Assessment
· A high-level overview of your technology, controls, and policies/procedures to identify gaps and areas of risk.
· IT Audit Checklist Strategies
· Review IT organizational structure.
· Review IT policies and procedures.
· Review IT standards.
· Review IT documentation.
· Review the organization's Business Information and Audits (BIA).
· Interview the appropriate personnel.
· Observe the processes and employee performance.
· EXAMPLES of other IT Risk Assessment check lists (Explained during class).