IT AUDIT FUNDAMENTALS (IT AUDIT FUNDAMENTALS)

ISACA’s IT Audit Fundamentals certification course provides an in-depth overview of the fundamental skills needed to conduct effective IT audits . During the course, participants are introduced to IT audit concepts, IT risk assessment, audit planning and execution, and reporting results, with a focus on the importance of ensuring the security and reliability of corporate information systems through effective auditing.

In addition to preparing to take the ISACA IT Audit Fundamentals certification exam (optional), course participants will also learn to identify key audit areas ( such as regulatory compliance, cybersecurity, risk management, and IT governance) through in-depth knowledge of fundamental IT audit concepts and the application of practical tools and best practices. Furthermore, the course provides approaches and methodologies for conducting effective audits, including steps for risk analysis, impact assessment, and the development of recommendations, enabling IT auditors to improve their skills and ensure the security and reliability of corporate information systems.

An IT audit can provide a number of significant benefits for a company, including an objective and critical evaluation of IT controls and processes to identify potential risks, vulnerabilities, and inefficiencies. It also helps ensure regulatory compliance and data security , reducing the risk of breaches and fraud. It can also provide recommendations for improving operational efficiency, optimizing IT resources, and maintaining the integrity and availability of corporate information systems, contributing to the protection and success of the company in today’s digital landscape.

Through analysis of case studies and real-world scenarios, participants have the opportunity to apply the knowledge they have acquired and develop the skills necessary to conduct successful IT audits. Upon completion of the course, participants will have acquired a thorough understanding of the fundamental principles and practices of IT auditing and will be able to apply this knowledge to the day-to-day operations of their organizations.

Google 4.3/5 Average Rating
3,070+ Learners
Industry Recognized
Certification Body ISACA
Delivery Profice
Lowest price guaranteed
Live course + exam
€1730
Excl. VAT
Self Paced E-Learning + Exam
€1330
Excl. VAT
  • Exam voucher
  • Hands-on labs
  • Certificate
  • Lifetime support
  • Official courseware

Flexible payment — invoice, card or PayPal

Course Information

Course Code IT AUDIT FUNDAMENTALS
Duration 3 Days
Delivery Online Live, Self Paced
Exam Voucher Included
Certification Body ISACA
Certification IT Audit Fundamentals

What You Will Learn

The course, designed to guide participants toward the ISACA IT AUDIT FUNDAMENTALS certification , will combine theory with numerous sessions dedicated to practical applications and exercises. The IT Audit Fundamentals course will cover the following topics: - The Audit Function - Controls, Risks, and Audits - Conducting an Audit - The Audit Environment and Components - Specific Audit Subjects - Emerging Technologies

Course Curriculum

– Analysis of the IT Audit function and its contribution to the company’s mission and strategy
– Definition of the roles and responsibilities of the IT Audit function
– Relationships with governance and risk management
– Differences between internal and external auditing.
– In-depth analysis of the role of IT Audit within the company and how it collaborates with other auditors and experts.

– An in-depth look at establishing, managing, and monitoring internal and IT controls
– The purpose of IT internal controls and their contribution to achieving business objectives
– Identifying the different types of controls and distinguishing between IT risk and related controls
– Differences between preventive, detective, and corrective controls
– Evaluating controls and defining the benefits of a risk-based audit
– The Agile approach to auditing
– Defining audit risks and how to reduce them

– Conducting IT audits: the different types and related procedures, objectivity, and professional care
– Specialized assessments (e.g., vulnerability) and related scanning and testing activities (e.g., penetration).
– Audit Advisory, consulting roles, and services to improve the value, quality, and control of IT systems
– Purposes of independent third-party assurance or attestation and their use
– Planning and conducting IT audits in compliance with professional standards
– Collecting and evaluating different types of audit evidence
– Using data analysis tools to streamline audit processes
– Collecting reports, findings, and recommendations for stakeholders
– Audit follow-up and evaluating how risk has been addressed

– Description and assessment of the most common IT infrastructure components
– Identifying concerns related to hardware, software, operating systems, and networks
– Conducting periodic IT infrastructure reviews
– Evaluating database structures and their management
– Cloud Computing: characteristics, risks, and control
– Evaluating change, configuration, release, and patch management policies and practices
– Business Continuity, Disaster Recovery, and Data Backup

– Perimeter network security: protecting data, assets, and company information
– Risks and controls related to Windows and UNIX®/Linux operating systems
– Description of security vulnerabilities and risks of mobile (web) apps
– Security and risk assessment related to the use of Windows Active Directory and Oracle
– Analysis of corporate information security and privacy policies and practices
– Assessing the protection of corporate media and mobile devices

– AI (Artificial Intelligence): basic concepts, expert systems, and associated risks
– Big Data: technical/operational risks for the company and approaches for adequate risk management
– Blockchain: corporate use of methodologies and assessment of the blockchain technology control environment
– IoT: device types, value, and risks for the company
– Cybersecurity: key processes and associated controls.

Get the Full Syllabus as a PDF

Curriculum, exam format & everything included — sent straight to your inbox.

All You Need to Know

Who Should Attend

IT Auditors, Security Professionals, CISOs, Audit/Assurance professionals, IT Risk professionals, IT Risk Managers. The course is aimed at both those starting a career in IT Auditing and wishing to acquire a solid foundation of knowledge, as well as more experienced professionals wishing to expand their skills in the field.

Prerequisites

Attendance at the ISO 19011 and ISO17021 – AUDITING TECHNIQUES course is recommended for those who are not already certified Auditors / Lead Auditors.

Course Materials

The course fee includes only the electronic documentation supporting the lessons (course slides), but not the study materials described below, which can be purchased separately.

The cost of the materials includes:
– Practice exercises
– IT Audit Fundamentals Official Study Guide

Premium training, now at the lowest price.

Live course + exam €1730 excl. VAT
Self Paced E-Learning + Exam €1330 excl. VAT
4.3/5 Official ISACA partner Exam included 3,070+ alumni
Lowest price guaranteed Ready to enrol?

No payment now — reserve your seat and we'll send the invoice.

Under a minute · invoice, card or PayPal
How it works: 1 Submit your details 2 Receive your invoice 3 Pay & get access