Information technology, long considered as only an enabler of an organization’s strategy, is now regarded as an integral part of this business strategy. Strategic alignment between Information Technology and enterprise objectives is one of the critical success factors. With the changing landscape concerning security, corporate governance, IT service delivery and systems reliability as well as regulatory requirements, the CISA course becomes vital for information technology line and senior managers.

The course molds information technology professionals into complete and competent individuals. The course covers the following current five Certified Information Systems Auditor (CISA) domain areas:

1. The Process of Auditing Information Systems (21%)

2. Governance and Management of IT (16%)

3. Information Systems Acquisition, Development and Implementation (18%)

4. Information Systems Operations, Maintenance & Service Management (20%)

5. Protection of Information Assets (25%)

COURSE OBJECTIVE:

The main objective of this course workshop is to provide a comprehensive understanding of Information Systems auditing. This course will equip participants with the knowledge and practical skills necessary to successfully perform a complete IS audit of any size of organization. This programme also adequately prepares the participant to successfully write the Certified Information Systems Auditor (CISA) certification exam.

COURSE OUTLINE

The following topics are presented and discussed to increase your understanding and abilities. Certified Information Systems Auditor (CISA) candidates are expected to have detailed understanding in each of these areas.

1. The Process of Auditing Information Systems

Provide audit services in accordance with IT audit standards to assist the organization with protecting and controlling information systems.

The auditing process covers IS auditing standards; Risk-based approach; Controls; Audit objectives, planning & scope; Cobit; Field Work; Identifying conditions & defining reportable findings; Review of work; Audit Results Communication;

2. Governance and Management of IT

Provide assurance that the necessary leadership and organizational structures and processes are in place to achieve objectives and to support the organization’s strategy.

IT governance structure, IT organizational structure and HR management; Evaluating IT Strategies; Evaluating IT policies, standards & procedures; IT Resource Investment; Evaluating Risk-management, monitoring and assurance practices;

3. Information Systems Acquisition, Development and Implementation

Provide assurance that the practices for the acquisition, development, testing, and implementation of information systems meet the organization’s strategies and objectives.

Evaluation approach, Project Management; Functional Requirements, Feasibility Analysis; System Design; System Development; System; Acquisition, Implementation, Post-Implementation;

4. Information Systems Operations, Maintenance and Support

Provide assurance that the processes for information systems operations, maintenance and support meet the organization’s strategies and objectives.

Service Level Management; Evaluating Systems Software; Evaluating Hardware Acquisition & Installation; Evaluating network infrastructure (voice & data); Evaluating change, configuration and release management; Capacity and Performance monitoring tools & techniques; Data Administration practices; Problem & Incident management practices.

5. Protection of Information Assets

This module discusses the organization’s security policies, standards, procedures and controls that ensure the confidentiality, integrity and availability of information assets.

  1. Evaluate the information security and privacy policies, standards and procedures for completeness, alignment with generally accepted practices and compliance with applicable external requirements.

  2. Evaluate the design, implementation, maintenance, monitoring and reporting of physical and environmental controls to determine whether information assets are adequately safeguarded.

  3. Evaluate the design, implementation, maintenance, monitoring and reporting of system and logical security controls to verify the confidentiality, integrity and availability of information.

  4. Evaluate the design, implementation and monitoring of the data classification processes and procedures for alignment with the organization’s policies, standards, procedures and applicable external requirements.

  5. Evaluate the processes and procedures used to store, retrieve, transport and dispose of assets to determine whether information assets are adequately safeguarded.

  6. Evaluate the information security program to determine its effectiveness and alignment with the organization’s strategies and objectives.

TARGET AUDIENCE AND PRE-REQUISITES:

Business and information systems management, audit, control and security professionals including the following:

  • Information systems professionals aspiring to build a career in information systems auditing
  • Internal and external auditors (both IT and financial)
  • Information security professionals
  • Finance/CPA professionals
  • Risk management professionals
  • Security managers / analysts
  • Software Managers
  • Infrastructure/Network Managers
DatesDurationLocation
23-08-2021 to 16-09-20214 WeeksOnline/Live
01-11-2021 to 03-12-20215 WeeksOnline/Live
07-02-2022 to 11-03-20225 WeeksOnline/Live

How do I register for CISA training at AFRALTI?

Registration for training is currently ongoing, to get enrolled in this course, please do the following:

1. Pay the full CISA tuition.

2. Email us the completed registration form together with payment confirmation details e.g. Bank payment slip or MPESA payment confirmation.

3. Get registration details  for the eLearning course and start pre-viewing the course content.

4. Attend the virtual training on the scheduled date.

Use this form to request for a CISA training program, select CISA as the course title and fill in the all the fields respectively for early processing.
reCAPTCHA
Download 2020-21 Calendar:
calendar

Training CalendarDownload

 

Registration Form in Excel
Tuition-Fee-Payment-Details