{"id":12403,"date":"2024-05-17T20:01:00","date_gmt":"2024-05-17T20:01:00","guid":{"rendered":"https:\/\/aiia.al\/?p=12403"},"modified":"2025-04-08T09:58:51","modified_gmt":"2025-04-08T09:58:51","slug":"it-audit-and-the-role-ofinternal-auditors","status":"publish","type":"post","link":"https:\/\/aiia.al\/index.php\/2024\/05\/17\/it-audit-and-the-role-ofinternal-auditors\/","title":{"rendered":"IT AUDIT AND THE ROLE OFINTERNAL AUDITORS"},"content":{"rendered":"\n

Introduction<\/strong><\/p>\n\n\n\n

Whether you are in IT area or not, you often hear about Cloud computing, Cybersecurity, Internet of Things, and all sorts of tech trending terms, wondering what they exactly mean. As the rapid moving world of information and technology encompasses every business process, it is inevitable to not get triggered and involved by its dynamic.<\/p>\n\n\n\n

Information Technology is a critical enabler of business. In today\u2019s world, company operation is no longer possible without the use of IT. Assuring an enterprise\u2019s governance, including risk management and control processes, requires auditors to understand the role of IT within their organizations and to develop adequate knowledge and skills to audit IT systems as the line separating \u201cIT,\u201d and \u201cnon-IT\u201d audits are beginning to dissolve.<\/p>\n\n\n\n

Course objective<\/h2>\n\n\n\n

Participants will become familiar with IT audit function, IT frameworks, most relevant IT processes and particular audit tests. Moreover, they will become aware of current key risks and how to address them, focusing mainly in cybersecurity.<\/p>\n\n\n\n

Target audience<\/h2>\n\n\n\n

This course has been designed for Non-IT Auditors who are willing to execute a list of basic tasks and know their definition like IT Governance (e.g. IT Projects, Resource and Portfolio Management) or IT Security (User Access Review, Incident Management, BCM\/DR, IT Risk Management), Agile Management (Manifest breakdown).<\/p>\n\n\n\n

Content<\/h2>\n\n\n\n

Day 1<\/u><\/strong><\/strong><\/p>\n\n\n\n

IT Audit function<\/h4>\n\n\n\n
    \n
  • Terminology<\/li>\n\n\n\n
  • Objectives<\/li>\n\n\n\n
  • Qualifications<\/li>\n\n\n\n
  • IT Audit methods<\/li>\n\n\n\n
  • IT Audit Universe<\/li>\n<\/ul>\n\n\n\n

    Regulations, Standards & Best Practices (IT & IT Security)<\/h4>\n\n\n\n
      \n
    • GDPR<\/li>\n\n\n\n
    • NIS 2 or DORA<\/li>\n\n\n\n
    • EBA Guidelines<\/li>\n\n\n\n
    • ITIL<\/li>\n\n\n\n
    • ISO<\/li>\n\n\n\n
    • COBIT<\/li>\n\n\n\n
    • NIST etc.<\/li>\n<\/ul>\n\n\n\n

      IT Processes & Basic Audit Tests<\/h4>\n\n\n\n
        \n
      • Selection of IT Processes<\/li>\n\n\n\n
      • Basic Audit Tests<\/li>\n<\/ul>\n\n\n\n

        Day 2<\/u><\/strong><\/strong><\/p>\n\n\n\n

        IT Risks 2023<\/strong><\/p>\n\n\n\n

          \n
        • Current research results<\/li>\n\n\n\n
        • Risk outlook<\/li>\n<\/ul>\n\n\n\n

          Process of an attack & examples<\/h2>\n\n\n\n
            \n
          • Structure of an attack<\/li>\n\n\n\n
          • Techniques<\/li>\n\n\n\n
          • 3 examples<\/li>\n<\/ul>\n\n\n\n

            IT Security Controls & Basic Audit tests<\/h4>\n\n\n\n
              \n
            • Selection of IT Security Controls<\/li>\n\n\n\n
            • Basic Audit Tests<\/li>\n<\/ul>\n\n\n\n

              INSTRUCTOR BIO<\/h2>\n\n\n\n
              \"\"<\/figure>\n\n\n\n

              Gerhard Schreihans is Head of Audit IT & Data Analytics at UNIQA Insurance Group AG and previously held the same position at UniCredit Bank Austria AG.<\/p>\n\n\n\n

              In addition to this he founded the IT Audit Consulting Company Aubotics to provide tailor-made IT & cybersecurity trainings as well as consulting services for Internal Audit functions. Gerhard has an<\/p>\n\n\n\n

              academic background in business informatics and holds certifications like CISA, CISSP, CRISC and CDPSE.<\/p>\n","protected":false},"excerpt":{"rendered":"

              Introduction Whether you are in IT area or not, you often hear about Cloud computing, Cybersecurity, Internet of Things, and all sorts of tech trending terms, wondering what they exactly mean. As the rapid moving world of information and technology encompasses every business process, it is inevitable to not get triggered and involved by its […]<\/p>\n","protected":false},"author":2,"featured_media":12405,"comment_status":"closed","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"pmpro_default_level":"","_themeisle_gutenberg_block_has_review":false,"footnotes":""},"categories":[66],"tags":[],"_links":{"self":[{"href":"https:\/\/aiia.al\/index.php\/wp-json\/wp\/v2\/posts\/12403"}],"collection":[{"href":"https:\/\/aiia.al\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/aiia.al\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/aiia.al\/index.php\/wp-json\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"https:\/\/aiia.al\/index.php\/wp-json\/wp\/v2\/comments?post=12403"}],"version-history":[{"count":1,"href":"https:\/\/aiia.al\/index.php\/wp-json\/wp\/v2\/posts\/12403\/revisions"}],"predecessor-version":[{"id":12406,"href":"https:\/\/aiia.al\/index.php\/wp-json\/wp\/v2\/posts\/12403\/revisions\/12406"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/aiia.al\/index.php\/wp-json\/wp\/v2\/media\/12405"}],"wp:attachment":[{"href":"https:\/\/aiia.al\/index.php\/wp-json\/wp\/v2\/media?parent=12403"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/aiia.al\/index.php\/wp-json\/wp\/v2\/categories?post=12403"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/aiia.al\/index.php\/wp-json\/wp\/v2\/tags?post=12403"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}