Event Details
Focus and Features
This course will provide insight and learning on how to develop and execute audits of application controls on a periodic basis to determine if they are designed appropriately and operating effectively.
At the end of the Course, the participants shall be able to:
- Have an understanding of what application controls are, their benefits and the role of the auditors
- Knowledge on how to assess application control risks Learn application review scoping, approaches and other consideration to take note when performing evaluation of system controls
- Attain the appropriate competencies required by the IPPF and mapped with The IIA GCF
What You Will Learn
Introduction
A. Defining Application Controls
B. Application Controls Versus IT General Controls
C. Benefits of Relying on Application Controls
D. The Role of Internal Auditors
Risk Assessment
A. Assess Risk
1. Identity and Access Management Process
2. Entitlement Management
B. Application Control: Risk Assessment Approach
Application Review
A. Scoping of Application Control Reviews
1. Business Process Method
2. Single Application Method
3. Access Controls
B. Application Review Approaches and Other Considerations
1. Planning
2. Need for Specialized Audit Resources
3. Business Process Method
4. Documentation Techniques
5. Testing
6. Computer-assisted Audit Techniques
B. Audit Activity
1. Simulation of auditing Application Controls through auditing exercises and examples
2. Discussion on Test Scripts
3. Review of sample Application and Access Audit Program