Certified Information Systems Auditor

Day 1:

Introduction to Information Systems Auditing

• Role of an information systems auditor.

• Overview of IT audit and assurance.

• Fundamental audit concepts and methodologies.

• Industry standards and guidelines.

Day 2:

Information Systems Governance and Management

• IT governance and framework.

• IT strategy and alignment.

• IT governance models.

• Risk management and control frameworks.

Day 3:

Information Systems Acquisition, Development, and Implementation

• System development life cycle.

• Project management and control.

• Application controls.

• Testing and quality assurance.

Day 4:

Information Systems Operations and Business Resilience

• IT service management.

• Business continuity and disaster recovery.

• Security policies and procedures.

• Incident management and response.

Day 5:

Information   Systems Maintenance and Support

• IT service desk and support.

• Change management.

• Problem management.

• Hardware and software asset management.

Day 6:

Information Systems Audit Process

• Audit planning and risk assessment.

• Audit standards and procedures.

• Evidence collection and evaluation.

• Audit reporting and follow-up.

Day 7:

Protection of Information Assets

• Information security concepts.

• Access control and identity management.

• Security policies, standards, and procedures.

• Security awareness and training.

Day 8:

Control and Audit of IT Operations

• IT service delivery and support.

• Performance monitoring and reporting.

• IT resource management.

• IT job scheduling and production.

Day 9:

Business Continuity and Disaster Recovery

• Business impact analysis.

• Disaster recovery planning.

• Testing and maintenance of continuity plans.

• Insurance and outsourcing.

Day 10:

Review 

• Review of key concepts.

• Mock audit scenarios and exercises.

• Question and answer session.

• Course completion and certification details.