IT risks are increasingly recognized as critical factors in enterprise risk management. From preventing failures in regulatory compliance to helping avoid devastating harm to the reputation of the organization from headline-making security breaches, IT auditors have an obligation and value-adding opportunities to assess enterprise vulnerabilities through effective risk-based IT audit planning.
In this three-day seminar, attendees will explore the varied aspects of developing an effective risk-based IT audit plan and examine the use of risk-based standards and frameworks, including COSO ERM. We will review such risk elements in IT audit planning as regulatory compliance risks, IT governance risks, business information risks and IT infrastructure risks. We will also cover the increased risks introduced by outsourced IT operations and functions. Throughout this high-impact seminar, we will focus on developing an annual IT audit universe based on assessing enterprise information risks. Attendees will leave this intensive seminar with a proactive strategy that will help establish a comprehensive risk-based IT audit plan that will boost the efficiency and effectiveness of IT audits.