Students review and analyze selected CISA and CRISC audit and assessment function domains. Utilizing their domain knowledge, students complete case study audit and assessment tasks. Students will also prepare for the CISA certification.
Learning Objectives
Develop and implement a risk-based IT audit strategy in compliance with IT audit standards. Evaluate the effectiveness of the IT governance structure to ensure alignment with the organization's objectives. Review the business case for proposed investments in information systems acquisition, development, maintenance, and subsequent retirement. Conduct periodic reviews of information systems and evaluate operational and business resilience. Evaluate the effectiveness of information protection measures, including confidentiality, integrity, and availability. Identify and manage IT risks, ensuring they remain within acceptable levels. Understand and apply relevant laws, policies, and standards related to information systems. Evaluate IT management frameworks and practices to ensure the organization's control processes meet its needs.
Framework Connections
The materials within this course focus on the NICE Framework Task, Knowledge, and Skill statements identified within the indicated NICE Framework component(s):
Competency Areas
Feedback
If you would like to provide feedback on this course, please e-mail the NICCS team at NICCS@mail.cisa.dhs.gov. Please keep in mind that NICCS does not own this course or accept payment for course entry. If you have questions related to the details of this course, such as cost, prerequisites, how to register, etc., please contact the course training provider directly. You can find course training provider contact information by following the link that says “Visit course page for more information...” on this page.