Information Systems Audit

Information Systems Audit – Part I 

The Grand Serela Hotel , bandung | 19 – 21  Agustus 2013 | 7.499.000,-/peserta
The Grand Serela Hotel , bandung | 27 – 29 November 2013 | 7.499.000,-/peserta



This package course will equip you to handle IS audit assignments through intensive training on the most important topics in IS auditing. Through lecture and workshops, the course provides you with audit and control methodologies that you can apply immediately to any IS audit and system control situation. A highly successful seminar because of its comprehensiveness, low-cost and its practical and modern risk-analysis oriented methodologies.

Part I of this packaged course focuses on IS Audit foundation that covers (among others) IS control design, assessment and testing, basic application system audits, data center audits and organizing IS audit function.

1. Information Technology Exposures

  • Data & asset concentration
  • Firm’s exposure and auditor’s risk
  • Computer Security and IS Audit – key components and their differences

2. Design of Internal Control by Risk Analysis

  •  Internal Control Models (COSO, Cobit)
  •  Risk analysis structured methodology
  • Control zones, control points, control objectives setting (what) & control selection (how)
  • Controls justification and documentation

3. How to Asses and Test Internal Controls and Prepare IS Audit Plans

  • Control characteristics if various systems
  • How to document and assess internal controls
  •  Six approaches to test controls
  • Type of testing (compliance, substantive, intrinsic, etc.)
  • 65 Tools and techniques for testing internal controls
  •  Methodology to prepare detailed Audit/Test Plans

4. Auditing Existing and Basic Application Systems

  •  Three segment audit (manual, computerized, environment)
  •  Audit of programs, files and embedded
  • controls
  • Techniques: audit software, test decks. Control point flow charts

5. Data Centers and IS Function Audit

  • Scope
  • Control point/control objectives and controls for data centers
  • Audit approaches (checklist, in-depth and surprise)
  • Preparing a detailed Audit Plan
  • Audit modules (physical security, organization, logical security, contingency planning, operations standards, change control, library controls, etc.)

6. Organizing an Effective IS Audit Function

  • Function scope
  • Key program components:
  1.  Initiation,
  2. Directional strategy
  3. Organization and charter
  4. Staffing and training
  5. IS audit standards
  6. Audit projects work plan
  7.  Sizing up staff priority setting


M. Fairuzabadi. S. Kom., M.Kom


Waktu           : 08.30-16.30 WIB
Tempat         : The Grand Serela Hotel bandung
Tanggal        :

  • 26 – 28 Februari 2013
  • 15 – 17 Mei  2013
  •  19 – 21  Agustus 2013
  •  27 – 29 November 2013


  • IDR 7.499.000,-/participant non residensial.
  • For send 3 participant discount 10 %.


  • Meeting Room Hotel ****
  • Training KIT
  • Souvenir
  • Sertifikat
  • 2 X Coffe Break + Lunch

Posted in: Audit, Bandung, IT & Telecom

About the Author:

Post a Comment