Essentials of IT Auditing for the Non-IT Auditor

In today’s technological world, businesses are in dire need of Information Technology (IT) to sustain business operations. As a result, IT has become a critical business enabler supporting the backbone of existence for businesses today which has increased the digital footprint of collecting, processing, storing, and reporting on data. The major emphasis for any business as it relates to IT systems and data is to implement the proper safeguards (controls) that will protect the three critical areas of IT systems and data which are confidentiality, integrity, and availability. The very basis of an IT Audit is to examine the controls implemented by management in response to preventing and/or detecting risks in the infrastructure and for the auditor to assess whether the controls implemented are working effectively as designed. 

This informative webinar will provide the non-IT Auditor with in-depth guidance on conducting technology audits and understanding the governance structure within IT including the line of reporting within an organization.  Terminology will be introduced and defined that will assist in the proper planning of IT Audits that will allow the non-IT Auditor to assess risks and controls. The main objective of this training is to provide baseline knowledge of auditing general and application controls within an IT environment to non-IT Auditors, entry-level IT Auditors, and committee members having oversight responsibilities. 

• Understand the importance of IT Governance within an organization.
• Learn IT terms to assist with audits. 
• Introduction to IT Audit best practices to apply in IT Audits.
• Learn the difference between general and application controls.
• Identify IT risks.
• Assess controls implemented to determine effectiveness.
• Insights into conducting audits of IT Governance, Business Continuity Disaster Recovery, and other areas.

• Introduction to IT Governance and its importance.
• Terminology introduced. 
• IT Audit best practices using globally recognized control frameworks.
• Assessing IT risks and planning the IT Audit.
• Auditing IT Governance.
• Auditing general controls.
• Auditing application controls.
• Auditing Business Continuity and Disaster Recovery.

In the rapidly evolving world of technology, where information systems form the backbone of modern organizations, the role of IT auditing has become increasingly vital. However, for non-IT auditors, understanding and navigating the complexities of IT systems, controls, and risks can be a formidable challenge. 

While traditional auditors may not be IT experts, their role in understanding and evaluating IT controls is pivotal. By exploring the essentials of IT auditing through the lens of non-IT auditors, this topic aims to empower professionals with the knowledge and skills needed to bridge the gap between traditional auditing practices and the intricacies of information technology.