There are internal controls and risks that are common to all IT environments in both large and small entities. There are also IT internal controls and risks that are unique to less complex, more complex, traditional, and emerging technologies. This seminar will cover these topics and others, including trust services associated with the internet and cloud computing, testing procedures, management controls, electronic evidence, COSO IT controls, and the most recently ranked top IT technologies.
DESIGNED FOR
Auditors, managers, and internal auditors in nonpublic companies, not-for-profits, and government agencies.
BENEFITS
- Identify the COSO internal control elements
- Explain IT general control concepts
- Explain the impact of weaknesses in general controls on various sized entities, specifically, smaller, less complex entities
- Describe the relationship between manual and IT application controls
- Outline key definitions, components, and risks relating to information technology environments
- Provide examples of common e-commerce risks and related controls
- Explain the three types of SOC reporting and the business needs of each
- Explain how risk assessment procedures are applied in the IT phase of the audit
- Describe risks related to cloud and mobile computing and methods to mitigate these risks
HIGHLIGHTS
- Types of IT controls
- IT application controls
- Information technology environments
- E-commerce and trust services
- SOC reports, cloud computing and AU-C Section 402
- IT risk assessment and other auditing procedures
- Cloud/mobile computing and other current topics
COURSE LEVEL
Intermediate
PREREQUISITES
Working knowledge of internal control and IT.
ADVANCE PREPARATION
None
ADDITIONAL NOTES
- *AICPA members deduct an additional $30 from applicable price.