This is a past event. Registration is closed. View other The Institute of internal Auditors Philippines, Inc. events.
Focus & Features
Digital transformation, single sign-on, block-chain. These are just some information technology (IT) initiatives implemented by various companies. To some extent, they are used as marketing tools to build trust with customers.
With the ever increasing complexities in IT, IT risks have become more and more challenging to manage. Regulators, government agencies and various stakeholders demand that Companies implement robust IT risk management commensurate to its operating environment. As internal auditors, we are challenged to understand the intricacies of IT risk management and how we can add greater value.
What You Will Learn
Introduction
- Definition
- Importance
- Benefits
- IT Governance
- Local laws and regulations
- Three lines of defense
- Synergy of IT Risk with ERM
- Synergy of IT Risk and Internal Audit Department
IT Risk Identification
- Threat and IT Risk Scenario Analysis
- IT risk appetite and tolerance
- IT risk profile
- IT risk register
- IT risk criteria
- Risk ownership
- IT risk heat map
IT Risk Assessment
- IT risk scenario analysis
- Controls assessment
- Gap assessment
IT Risk Response
- Risk responses
- Risk mitigation plans
- IT risk register updates
- Risk response validation
- Documentation
IT Risk and Control Monitoring and Reporting
- Key risk and lagging indicators (KRI & KLI)
- Monitoring and analysis of KRI
- Board of Directors and Senior Management Reporting
- Emerging risks
- Review of controls and risk mitigation plans assessment
Group works are expected on which internal auditors will be asked to develop audit programs on how to audit sections of IT risk management.
Who Should Attend
This seminar is ideal for IT or Integrated Auditors (Operational and Performance) at all levels.
This will help them understand better how IT risk management works in order to cover it as one of the auditable units
