Skip to main content

Information Technology Auditing

Back to Course Schedule
Date(s): Jun 12, 2018
Time: 12:30PM - 4:30PM
Registration Fee: $129.00
Cancellation Date: Jun 05, 2018
Location: JOHN M. KEEL LEARNING CENTER
City: Austin

Course Description

This course is an introductory review of audit steps to be performed when auditing a technology driven operating system environment. A case study will be reviewed along with best practices in work paper preparation.


Potential CPE Credits: 4.0
Govt Hours: This class meets 4.0 hours of the 24-hour requirement for governmental CPE under Government Auditing Standards (yellow book), in most cases.
Technical Hours: This class meets 4.0 CPE credits of technical training in compliance with Texas Admin. Code Rule 523.102.

Instruction Type: Classroom
Experience Level: BEGINNING
Category: Auditing

Course Objectives

Upon completion of this course, participants will be able to:

  • Understand basics of auditing operating systems
  • Enhance technical proficiency to bring value to the audit process

 

Outline

1. IT Auditing Basics

2. What is an “Object-oriented” system?

3. System Configurations

4. System Authorities (Logical Access Security)

5. Sensitive Profiles

6. Default User IDs and Passwords

7. User/Group Profiles and Authorization Lists

8. Cases

9. Cyber risks


Prerequisites

No prerequisites required, however a general understanding of IT audit techniques and an understanding of operating system environments is assumed.


Instructors

Anders Erickson

Anders has more than 13 years of experience providing IT risk and control solutions within the private and public sector. His experience includes planning and executing assessments of IT security practices, risks, and controls against organizational, industry, and governmental standards. Anders is a Certified Information Systems Security Professional, Certified Information Systems Auditor as well as Certified in Risk and Information Systems Control.

 

Anders is a leader in the firm’s Risk Advisory Services group, which specializes in performing audits of information security technical, operational, and managerial controls; providing information security consulting services; and in conducting internal network vulnerability and external network penetration testing. Anders and his team service a broad range of clients across all industries, including public, private, and nonprofit sectors. Their experiences include audits of large enterprise systems, including Oracle, JD Edwards, and SAP. Many of the group members maintain relevant certifications including CISSP, CISM, and CISA.

Eric Pulse

Eric Pulse is the Director of Risk Advisory Services and has nearly 20 years in the public accounting and consulting industry. He provides information technology risk advisory and cyber security consulting services to a variety of industries, including health care, insurance, financial services, banking, credit union, retail, manufacturing, and governments. He performs IT audit, cyber security and control reviews, which includes business continuity planning, organizational and operational controls, systems development and change management controls, physical and logical access security, application and processing controls and compliance testing. Eric regularly presents on topics of data security, technology controls and cyber security. He also provided testimony to a U.S Senate Committee on Commerce, Science and Transportation hearing on "Confronting the Challenge of Cyber Security."

Eric is a Certified Information Systems Auditor, Certified Information Security Manager, Certified in Risk and Information Systems Control, GIAC Security Essentials Certification, and Certified Financial Services Auditor.


Additional Information

TAC Rule 523.142(g) requires the CPE Sponsor to monitor individual attendance and assign the correct number of CPE credits. Participants will be asked to document their time of arrival and departure in compliance with this Rule. Additionally, attendance will be monitored throughout the day and CPE certificates will reflect actual attendance of each participant.

If you are making travel plans to come to Austin, we recommend making "refundable" air and hotel reservations or waiting until 14 days before the class to actually book your reservations. Courses are occasionally canceled or rescheduled due to low enrollment. We determine whether a course has enough participants 16 days prior to the course date. If we cancel or reschedule, we will email the participant and his or her billing contact no later than 14 days before the original class date.

The course coordinator will contact you with parking information. Handicapped parking is free at the meters around the downtown area.

Vending machines with Coca-Cola products and various snack items are available. There is also a refrigerator and microwave in our coffee bar area. Feel free to bring in your own drinks and food if you prefer.

You might want to bring a light sweater or jacket, as room temperatures vary.

To see answers to our Frequently Asked Questions, visit http://www.sao.texas.gov/training/faq.html.


Back to Course Schedule