Risk Assessment Who is ISACA With more than 86000 constituents in more than 160 countries ISACA wwwisacaorg is a leading global provider of knowledge certifications community advocacy and education on information systems assurance ID: 809883
Download The PPT/PDF document "MS in IT Auditing, Cyber Security, and" is the property of its rightful owner. Permission is granted to download and print the materials on this web site for personal, non-commercial use only, and to display it on your personal computer provided you do not modify the materials and that you retain all copyright notices contained in the materials. By downloading content from our website, you accept the terms of this agreement.
Slide1
MS in IT Auditing,Cyber Security, andRisk Assessment
Slide2Who is ISACA?
With
more than 86,000 constituents in more than 160 countries, ISACA (
www.isaca.org) is a leading global provider of knowledge, certifications, community, advocacy and education on information systems assurance and security, enterprise governance of IT, and IT-related risk and compliance. Founded in 1969, ISACA sponsors international conferences, publishes the ISACA® Journal, and develops international information systems auditing and control standards. It also administers the globally respected Certified Information Systems Auditor™ (CISA®), Certified Information Security Manager® (CISM®) and Certified in the Governance of Enterprise IT® (CGEIT®) designations. - ISACA
Slide3Certified Information Systems Auditor (CISA)Certified Information Security Manager (CISM)Certified in the Governance of Enterprise IT (CGEIT)Certified in Risk and Information Systems Control (CRRISC)
ISACA Certifications
Slide4Globally Recognized
Costa Rica - Regulation on IT (SUGEF 14-09). Financial institutions must have an annual assessment of its IT management framework with an external auditor. This external auditor
must be a CISA
. India - The Securities Exchange Board requires biannual system audits of all mutual funds to be conducted by an independent auditor who is CISA/CISM-certified or equivalent.
Romania - Banks desiring to implement distance or electronic payment instruments, such as Internet and home banking, are required by law to be certified by auditors who
hold the CISA certification
.
Canada - Institute of Chartered Accountants (CICA) accredits ISACA as the
only body
whose designation leads to recognition as a CA-designated specialist in information systems audit, control and security.
Slide5Successful completion of the CISA examCode of Professional EthicsInformation Systems Auditing StandardsContinuing Professional Education Program
120 CPE contact hours every 3 years
Minimum of 5 years of experience
Substitute 120 credits for 2 yearsSubstitute master’s degree which enforces ISACA’s model curriculum for 1 yearCertified Information Systems Auditor (CISA)
Slide6To assist in the development of programs for aspiring IS assurance professionalsFirst released in 1998Revised in 2004
Task force of 15 full-time academics and IS professionals from 11 countries and 5 continents
Aligned with C
OBITRevised in 2008Aligned with CISA domains and knowledge areasISACA Model Curriculum
Slide7Slide8Target employers
Slide9Gramm-Leach-Bliley ActSarbanes-Oxley ActHealth Insurance Portability and Accountability ActPart 11
King 11
London Stock Exchange Combined Code
Foreign Corrupt Practices ActEU Directive 95/46/EC on the protection of personal dataWhat is driving the demand?
Slide10Temple audienceAccounting majors (satisfies CPA requirements)Finance majorsMIS majors
External audience
Auditors, risk managers, and cyber security practitioners looking for a promotion and certification
Career changers (out of work IT consultants)Target Audience
Slide11Examination of the controls within an IT infrastructure to obtain evidence to determine if the IT systems are:Safeguarding assetsMaintaining data integrity
Achieving the organization’s goals or objectives
What is the goal?
Slide12Proposed Program
Slide13Market
Slide14Bridge CourseFor undergraduate fox (non mis) majors
For undergraduate MIS majors
MIS5001
Provide an overview of IT systems and how they create value for organizationsACCT5001Introduction to both managerial and financial accounting
Slide15ACCT5125 – Accounting Information Systems
Slide16IS Audit Function KnowledgeFundamental Auditing ConceptsStandards & Guidelines for IS AuditingInternal Controls Concepts & Knowledge
Audit Planning Process
Audit Management
Audit Evidence ProcessAudit Reporting Follow-upITA5001 – IS Audit Process
Slide17IS PlanningInformation Management and UsageDevelopment, Acquisition & Maintenance of Information Systems
ITA5101 – Systems & Infrastructure Lifecycle Management 1
Slide18IS/IT ManagementIS/IT Strategic PlanningIS/IT Management IssuesSupport Tools & FrameworksTechniques
ITA5201 – IT Governance
Slide19Technical InfrastructureService Center Management
ITA5301 – IT Service Delivery and Support
Slide20Information Assets Security ManagementLogical IT SecurityApplied IT Security: High-technology ResourcesPhysical and Environmental Security
Protection of the IT Architecture and Assets: Disaster Recovery Planning
Insurance
ITA5401 – Protection of Information Assets/Business Continuity-Disaster Recovery
Slide21Managerial Communications & Public SpeakingInterviewing SkillsNegotiation SkillsBusiness WritingIndustrial Psychology & Behavioral Science
Project Management & Time Budgeting
Team Building and Team Leading
ITA5501 – Business Skills for the IT Auditor
Slide22Impact of IT on the Business Processes & SolutionsSoftware DevelopmentAudit & Development of Application Controls
ITA5102 – Systems and Infrastructure Lifecycle Management 2
Slide23ITA5901 – IT Auditing Capstone
Slide24https://www.isaca.orghttp://www.picpa.org/Content/38481.aspx#Ex4http://en.wikipedia.org/wiki/Information_technology_audit
References