Essentials of IT Auditing for the Non-IT Auditor test

Information Technology (IT) is a critical enabler of business. As computing power has advanced, enterprises have become increasingly dependent on technology to carry out their operational requirements and to collect, process, maintain and report essential data. This reliance on electronically encoded data and on the systems that affect managerial decisions are a major concern of audit professionals. Assuring an enterprise’s governance, including risk management and control processes, requires auditors to understand the role of IT within their organizations and to develop adequate knowledge and skills to audit IT systems as the line separating “IT,” and “non-IT” audits are beginning to disappear, except in the very technical IT domains.

Consequently, auditors examine the adequacy of controls in information systems and related operations to assure effectiveness and efficiency in business processes. In addition, among other assurance services, auditors evaluate the reliability of computer-generated data supporting financial statements and analyze specific programs and their processing results. To ensure maximum value delivery from audit area assessments, oversight committee members need an evaluation methodology that enables confidence in the work performed by auditors.

This course is designed to give non-IT auditors and beginning Information security professionals an overview of the various considerations and aides in audit planning to gain a greater understanding of how to evaluate defined audit areas.

• Information system (IS) audit concepts, risks, and concerns in the IT environment
• Globally recognized control frameworks for the audit of IT
• Basics of how to perform an IT audit
• Auditing IT Governance
• Auditing IS acquisitions, developments, and implementations
• Auditing Business Continuity and Disaster Recovery 
• Available IT/IS Audit tools

This webinar will assist those without technology experience in their pursuit of designing and executing audits which assess information security components. It is specially designed to meet the basic IT audit training needs of financial and operational auditors who assess IT risks, governance, management, and controls during their audits. The objective of this training is to provide the basic knowledge for non-IT auditors to allow them to perform a basic IT audit during a financial or an operational audit.

This course will also benefit the IT-auditors by enhancing their general and application controls understanding. During this webinar, you will acquire baseline knowledge for IT general and application control concepts and skills and their importance and relationship in your business processes. You will also learn the fundamentals of issues concerning IT controls, and the scope of addressable IT risks in today’s business environment.

• Financial, Operational and Information Technology auditors
• Audit management, Information Security and Risk Management professionals
• Audit Managers
• Financial Auditors
• Operational Auditors
• Business Process Auditors
• IT Professionals
• Risk Managers
• System administrators
• Directors of security
• Safety and continuity planning professionals
• Human Resource managers
• Financial officers (CFO, CAO)
• Senior management (CEO, CIO, COO, CSO)
• Chief Audit Executives
• IT/IS Directors and managers
• Accountants
• Procurement officers

Dr. Robert E. Davis obtained a Bachelor of Business Administration in Accounting and Business Law, a Master of Business Administration in Management Information Systems, and a Doctor of Business Administration in Information Systems Management from Temple, West Chester, and Walden University; respectively. Moreover, during his twenty years of involvement in education, Dr. Davis acquired Postgraduate and Professional Technical licenses in Computer Science and Computer Systems Technology. Dr. Davis also obtained the Certified Information Systems Auditor (CISA) certificate — after passing the 1988 Information Systems Audit and Control Association’s rigorous three hundred and fifty multiple-choice questions examination; and was conferred the Certified Internal Controls Auditor (CICA) certificate by the Institute for Internal Controls.

Since starting his career as an information systems (IS) auditor, Robert has provided data security consulting and IS auditing services to corporations as well as other organizations; in staff through management positions. Before engaging in the practice of IS auditing and information security consulting; Robert (as a corporate employee) provided inventory as well as general accounting services to Philip Morris, USA, and general accounting services to Philadelphia National Bank (Wells Fargo). Furthermore, he has prior experience as a freelance writer of IT audit and information security training material.

Dr. Davis received recognition as an accomplished, energetic auditor, author, and speaker with a sound mix of experience and skills in monitoring and evaluating controls. Based on his accomplishments, Temple University's Fox School of Business and Management Alumni Newsletter, as well as The Institute for Internal Controls e-newsletter featured Dr. Davis. Furthermore, he is an Advisory Board Member of The Institute for Internal Controls, the first and inaugural Temple University CISA in Residence and a founding Temple University Master of Science in IT Auditing and Cyber-Security Advisory Councilmen. Last, he accepted invitations to join Delta Mu Delta International Honor Society, the Golden Key International Honour Society, the Thomson Reuters' Expert Witness List, the IT Governance LTD expert panel, as well as the International Association of IT Governance Standards honorary membership group.