Information Systems Auditing

The purpose of this course is to introduce students to concepts, strategies and best practices in information systems governance, audit and control. This course provides theory and practice of information systems auditing, systems development and computer-based system controls. Topics include IS audit process, IT infrastructure and operations, information protection, disaster recovery and business continuity, IT service delivery and support, business application systems and project management.

Learning Outcomes:

• Develop and executive an IA audit strategy in accordance with the IS audit standards and guidelines.
• Effectively communicate potential issues, risks, and audit findings to stakeholders.
• Evaluate the effectiveness of information systems governance structure.
• Evaluate the IT strategies, information security policies, procedures, and practices.
• Evaluate the design, implementation and monitoring of various controls to ensure that information assets are safeguarded.
• Critically analyze the security audit case.

Course Topics:

• Information systems (IS) audit process
  • IT environment and the role of IS auditor
  • Standards and guidelines for IS auditing
• Governance and management of IT
• IS acquisition, development and implementation
  • Systems development life cycles process
  • Change and release management process
  • Source code and production control
• Computer operations, maintenance and service management
  • Hardware and software management
  • Disaster recovery
  • Data management systems
• Information security management
  • Logical access
  • Network Infrastructure security
  • Auditing IS management framework

Course Number: BUSA-41015
Credit: 4.00 unit(s)
Related Certificate Programs: Accounting