Applied IS Risk, Control and Audit™ – Foundations

Program Overview

This hands-on program is designed to provide an initial understanding of the IS Auditing process, how it fits within the overall environment of an organisation and to cover the most common reviews that an IS auditor will face in their work. It will also provide an overview of a series of new technologies and the risks associated with them.

The program contains a very strong focus on hands-on learning. During the two days, students will spend 30-40% of their time performing practical tasks or taking part in gamification or role-playing scenarios.

As a result of the practical reinforcement, attendees will be able to understand the concepts they’ve learned much quicker, retain them for longer and apply them immediately in day-to-day activities.

Software for practical exercises will be provided during the course.

Testimonials

Learning Outcomes

Upon completion of this program, participants will be able to:

  • Understand risk universe and audit budgeting process
  • Plan and perform audits of Operating Systems, Networks, Databases and Applications
  • Review Business Continuity/Disaster Recovery
  • Apply data analytics as part of the audit process
  • Articulate the risks associated with Big Data, Blockchain, Internet of Things and Artificial Intelligence

Intended Audience

  • Chief Audit Executives
  • External Auditors
  • Internal audit directors
  • Risk managers
  • Internal auditors
  • Assurance professionals
  • Risk and governance professionals
  • Internal audit managers and supervisors
  • Finance professionals

Program Level and Pre-requisites for Attending

Foundation level, no pre-requisites

 

Program Duration

  • Online – 3 sessions * 4:30 hrs 
 

Number of Attendees

Maximum 20 attendees

 

Training Methodology

A distinguishing feature of our programs is their practical aspect and the gamification of content and delivery. At the end of each module there is a practical exercise designed to reinforce the concepts of the module and to give participants a chance to “get their hands dirty”. The exercises are either scenarios where participants work in groups or individual tasks executed within a specially prepared software environment.

At the same time, gamification is extensively used throughout all of the content. The gamification is done on two levels: full course and individual modules. The full course gamification is based on a gamified storyline across all modules. It increases the levels of engagement, by introducing a mild competitive element, while providing consistent environment for participants.

On the other hand, small gaming activities are present in all modules. Examples include crosswords – based on the content; games like “Hangman” – using terms from the training program, etc. Their purpose is to reinforce learning, while simultaneously applying the principles of Neuropsychology and letting the brain rest every 15-20 mins for a short period of time. The 15-20-minute rests are key to efficient learning, since 20 minutes is the maximum the hippocampus, a part of the brain that takes in learning, can hold.

A specific module of the programs is devoted to creating pilot projects, which ties all of the content together and which the participants will be able to use as a blueprint in their teams for real-life initiatives.

At the start of the course, each participant will receive access to a fully configured software environment that is used for the practical work throughout the course. Participants will retain access after the course and will be allowed to use the software in their work in the following 30 days.

Program Outline

  • Introduction
  • Overview and the Role of Audit
  • The Audit Department
  • The Audit Committee
  • The IS Audit Unit
  • Stakeholders and Audit Relationships
  • Gamified Exercise
  • Scenario Work
  • Audit Planning
  • Overview
  • Risk Universe
  • Gamified Exercise
  • Budgeting and Resource Planning
  • Practical Work
  • Verbal Communication and Audit Report Writing
  • Overview
  • Verbal Communication – objectives, styles and considerations
  • Gamified Exercise
  • Written Communication – objectives, styles and considerations
  • Report methodology and structure
  • Practical Work
  • Auditing Operating Systems
  • Overview
  • Risk and Vulnerabilities
  • Gamified Exercise
  • Methodology
  • Practical Work
  • Auditing Networks
  • Overview
  • Risk and Vulnerabilities
  • Gamified Exercise
  • Methodology
  • Practical Work
  • Auditing BCP/DR
  • Overview
  • Risk and Vulnerabilities
  • Gamified Exercise
  • Methodology
  • Role-Playing Scenario
  • Auditing Application Controls
  • Overview
  • Risk and Vulnerabilities
  • Gamified Exercise
  • Methodology
  • Role-Playing Scenario
  • Auditing Databases
  • Overview
  • Risk and Vulnerabilities
  • Gamified Exercise
  • Methodology
  • Practical Work
  • Data Analytics in Risk, Control and Audit
  • Overview and Characteristics
  • Data Analytics Types – Benefits and Disadvantages
  • Gamified Exercise
  • Data Analytics – Planning and Implementation
  • Practical Work
  • New Technologies
  • Big Data – Overview, Associated Risks
  • Blockchain – Overview, Associated Risks
  • Internet of Things (IoT) – Overview, Associated Risks
  • Artificial Intelligence (AI) / Machine Learning (ML) – Overview, Associated Risks
  • Program Review, Q&A, Comments

Other courses you may be interested in

Want to know more?

Please fill the form below if you would like to talk to us about this course and your needs. We will get back to you within 24 hours.

First Name*
Last Name*
Email*
Tel No*
City
Country*
Leave a message