|Certified Information System Auditor/CISA|
|Instructor||Certified American Academy Instructor|
|Descriptions||The credential of a professionals I.S auditor is valuable. This course delves into the unique challenges of managing an audit and the knowledge necessary to complete the task.Information system auditors take up where the financial auditors do not tread-into the design and implementation effectiveness and operation effectiveness of information system. The course will focus on general computer control, application level control auditing as well introducing of risk based management approach.The course is also designed to help candidates familiar with IT audit concepts and rules for regulatory compliance under Sarbanes-Oxely (corporations), Gramm-Leach-Biley and FFIEC (both financial), FISMA (government), HIPAA (medical records), SCADA (utilities) and other regulators.
The course will also help you to become a true management consultant in IT audit filed and will help you well prepared for the American Academy examination, which offered by American I.S Audit and control Association.
The instructor-led classroom training covers the CISA body of knowledge to build a working understanding of the material.
The training course will cover topics such as auditor responsibilities, scope, audit charter, technical material, privacy requirements, for CISA exam preparation. The course has updated the contens to reflect the new subject material of the CISA exam.
|Objectives||At the completion of this course, the participants shall have comprehensive undertandingand knowledge in Information System and Technology Audit and encompassing such as:· Participants shall obtain an expanded understanding the role of IT auditors in evaluating IT-related operational and control risk and in assessing the appropriateness and adequacy of management control practices and IT-related controls inside participants’ organization:
|Module 1: IS Audit Process||Course Contents and Descriptions|
|Module 2: IT Governance||The class session will focus on IT audit concepts and processes, which includes: review of some of the key fundamentals of IT auditing, including general auditing standards, risk-based auditing, pre-audit objectives, determining scope and audit objectives, and the process of performing an IT audit.The class session will include discussion on IT performance, controls, control self-assessment, risk analysis, and the objectives of the IT audit or assurance report.|
|Module 3: System and Infrastructure Life Cycle||The class session shall describe on practical methodology in conducting the effective and efficient IT audit, expand upon the need for appropriate controls and assurance processes for business and IT environment. The participants will be geared toward gaining a working understanding of the content and value of the management guidelines and assurance methodology.Discussion will focus on the importance of measurement in achieving organizational and IT objectives. The session will also focus on the business and IT environments subject to operational and control assessments (audit).|
|Module 4: IT Service Delivery and Support||Provide assurance that the IT service management practices will ensure delivery of the level of service required to meet the organization’s objectives. The module describes as follows:· Evaluate service level management practices to ensure that the level of service from internal and external service providers is defined and managed:
|Module 5: Protection of Information Assets|| Provide assurance that the security architecture policies, standards, procedures and controls) ensures the confidentiality, integrity and availability of information assets. The module descriptions are as follows:· Evaluate the design, implementation and monitoring of logical access controls to ensure the confidentiality, integrity, availability and authorized use of information assets:
|Module 6: Business Continuity Plan||Provide assurance that in the event of a disruption the business continuity and disaster recovery processes will ensure the timely resumption of IT service, while minimizing the business impacts. The module covers as described below:· Evaluate the adequacy of backup and restore provisions to ensure the availability of information required to resume processing:
|Case Studies||Case-based discussions will be conducted with topics related to the subjects of training. Exam exercises and questions evaluation.|
DURASI TRAINING: 3 Hari
TEMPAT TRAINING :
- HSP Academy Training Center (Dengan peserta maksimal 18 orang)
- Hotel POP BSD, Grand Zuri BSD atau Fame Hotel Gading Serpong (Dengan peserta diatas 18 orang)
- Biaya Training : Rp. 5,500,000,- (Lima Juta Lima Ratus Ribu Rupiah)
- Biaya Sertifikasi AAPM: USD. 300,- (Tiga Ratus US Dollar)
HSP Academy Training Center
Ruko Graha Boulevard Blok D 26 Gading Serpong – Tangerang
Tlp. (021) 55686090 atau 55686097
Hand Phone: 0822 9980 1099 atau 0812 1990 1006 atau 0812 8190 8009