Davis CISA Study System

About the Author


Robert E. Davis

Robert E. Davis, MBA, CISA, CICA

Robert E. Davis is an independent management audit consultant (currently associated with Robert Half Management Resources) and a Boson Software, Inc. author and instructor, as well as Pleier Corporation author.  His IT audit specializations include Control Objectives for Information and related Technology, Sarbanes-Oxley Act, and the Foreign Corrupt Practices Act.  Regarding information security and privacy, Robert is available to provide International Organization for Standardization-27000, Gramm-Leach-Bliley Act, and Basel II consulting.  His primary computer technology research interests are databases, operating systems, and distributed information systems processing. 

Since starting his career as an IT auditor, Robert has provided data security consulting and IT auditing services (from staff through senior management positions) to the United States Enrichment Corporation, Raytheon Company, United States Interstate Commerce Commission, Dow Jones & Company, Fidelity/First Fidelity (Wachovia) Corporations, and other organizations.

Some of his professional IT software and hardware experience includes MVS, UNIX, Windows, Oracle, Clarity, the International Money Management System, PERL, COBOL, PASCAL, DEC, IBM, Tandem, Compaq, and DELL.  

Prior to engaging in the practice of IT auditing and information security consulting, Robert provided inventory and general accounting services to Philip Morris USA and general accounting services to Philadelphia National Bank (Wachovia).

Robert graduated from Temple University and West Chester University of Pennsylvania with a Bachelor of Business Administration and Master of Business Administration degree, respectively.  While attending Temple University, his major areas of study were Business Law and Accounting.  He successfully completed the requirements for a Management Information Systems subject major at West Chester University.  

Robert obtained the Certified Information Systems Auditor (CISA) certificate, after passing the 1988 Information Systems Audit and Control Association’s rigorous three hundred and fifty multiple-choice questions examination and was conferred the Certified Internal Controls Auditor (CICA) certificate by the Institute for Internal Controls.  

During his twenty-year professional involvement in education, Robert acquired postgraduate and professional technical licenses in computer science and computer systems technology.  

Robert has authored "Did IT Auditing Forget the Foreign Corrupt Practice Act" and "How Does Management Support Deploying IT Governance?" articles for IT AUDIT magazine and IT Governance, LTD; respectively.

Robert is a former ISACA-Philadelphia Chapter Board of Directors member and College Relations Chairman.  Robert has provided instruction to an Internet CISA study group, the Data Processing Management Association, and the ISACA-Philadelphia Chapter CISA Review course.
 
Robert is a member of The Institute of Internal Auditors, ISACA, American Association of University Professors, and The Institute for Internal Controls.  He is also a college computer science and mathematics instructor, having previously taught at Cheyney University and Bryant & Stratton College.   

Robert’s IT audit publications include “Information Systems Auditing: The IS Audit Planning Process”, “Information Systems Auditing: The IS Audit Study and Evaluation of Controls Process”, “Information Systems Auditing: The IS Audit Testing Process”, and “Information Systems Auditing: The IS Audit Reporting Process” electronic monographs.  A consolidated and enhanced version of these monographs is available through Pleier Corporation as "IT Auditing: An Adaptive Process".

For those preparing for the CISA or Certified Information Security Manager (CISM) examination, Robert has authored knowledge diagnostic tests that are also available at http://www.boson.com/Product/64.html.

Based on his accomplishments, Robert has been featured in Temple University's Fox School of Business Alumni Newsletter and The Institute for Internal Controls e-Newsletter.  Furthermore, he is a lifetime member of the Madison Who's Who Registry of Executives and Professionals.

Additional references and information are available at Have CISA - Will Travel.
Computer CISA
 CISA Case

Davis CISA Review Course

Robert has consolidated in this CD-ROM publication the knowledge he acquired in obtaining CISA certification, providing instruction to CISA study groups, and authoring CISA knowledge diagnostic tests.

The CISA Exam consists of 200 questions to answer in four hours.  To learn about the requirement for taking the exam and the requirements for becoming a CISA review the material on the ISACA web site -  click here.   

On the ISACA web site you will learn a great deal about both the exam and certification including the fact that more than 60,000 professionals have earned the CISA since inception, so clearly many people agree: earning the CISA is a good career move.

You will also learn that the US Department of Defense (DoD) 8570.01-M "Information Assurance Workforce Improvement Program" manual names ISACA’s Certified Information Systems Auditor (CISA) certification among those approved for DoD information assurance (IA) professionals. The directive requires up to 80,000 professionals to earn one of 13 certifications including the CISA.

In addition to the prestige of the CISA as a stand alone certification, there is an advantage to those who plan to pursue The Institute of Internal Auditors' Certified Internal Auditor certification since The Institute of Internal Auditors will allow a person possessing a CISA certification to apply the CISA certification toward Part 4 of the CIA Exam - Business Management Skills - see The Institute of Internal Auditors web site for details .

The Davis CISA Study System covers all 6 domains of the CISA Exam and consists of the following 6 CD-ROM's containing in total 2405 animated PowerPoint slides with slide notes, 49-page instructor's (administrator's) guide pages, and 213 participant's guide pages - includes 72 sample CISA exam questions and 54 related case studies.  These facilitate both group and individual study.  These are described in detail below.  These CD-ROM titles are also sold separately:

1) “IT Auditing: The Process” contains 450 PowerPoint slides, 49-page instructor's guide, and 28-participant's guide.

2) "IT Auditing: IT Governance” contains 307 PowerPoint slides, 89-page instructor's guide, and 33-page participant's guide.

3) “IT Auditing: Systems and Infrastructure Lifecycle Management" contains 370 PowerPoint slides, 82-page instructor's guide, and 39-participant's guide.

4) "IT Auditing: IT Service Delivery and Support" contains 384 PowerPoint slides, 65-page instructor's guide, and 33-page participant's guide.

5) “IT Auditing: Information Assets Protection" contains 567 PowerPoint slides, 107-page instructor's guide, and 48-page participant's guide.

6) "IT Auditing: Business Continuity and Disaster Recovery" contains 327 PowerPoint slides, 65-page instructor's guide, and 32-page participant's guide.

Auditors and Audit Departments that purchase these electronic publications on CD can duplicate, on paper or file, the enclosed Administrator’s and Participant’s Guides royalty free for training of individual auditors in that department and for in-house group training.

Organizations including schools that purchase these publications on CD-ROM can duplicate the enclosed workbooks and use that material to conduct training by mailing a royalty fee of $20 by credit card at www.pleier.com for each copy of the workbooks produced on paper or file.

Your feedback, concerning this product, should be sent to pleier@pleier.com.

For details about any of the 6 individual CD-ROM titles in the Davis CISA Study System click any link below or scroll down this page.

For details about “IT Auditing: The Process” see http://www.pleier.com/itatp.htm

For details about “IT Auditing: IT Governance” see http://www.pleier.com/itagov.htm

For details about “IT Auditing: Systems and Infrastructure Life Cycle Mangement" see http://www.pleier.com/sysinfraweb.htm

For details about “IT Auditing: IT Service Delivery and Support” see http://www.pleier.com/itadsweb.htm

For details about “IT Auditing: Information Assets Protection (IAP)” see http://www.pleier.com/itaiap.htm

For details about "IT Auditing: Business Continuity and Disaster Recovery" see http://pleier.com/itabcdrweb.htm


Order Online


computer and CD
IT Auditing: The Process


This self-paced PowerPoint presentation with accompanying material is organized to provide initial training of IT auditors as well as continuing training of IT auditors, auditors, and auditor managers.  The “Administrator’s Guide” provides tools for group and individual self-paced training. 

Utilizing the enclosed PowerPoint slides, in conjunction with the “Participant’s Guide,” can ensure adequate understanding of the entire IT audit process including audit engagement requirements.  Furthermore, participant attentiveness to the material and completion of the eight exercises in the guide can enhance auditor professionalism in corresponding job responsibilities. 

Participants who  complete this course will be adequately prepared to take the Information Systems Audit and Control Association’s (ISACA’s) Certified Information Systems Auditor – The IS Audit Process examination section and to perform competent IT Auditing.

Upon completion of this training the participant will be able to:

  1. Develop and/or implement a risk-based IT audit strategy and objectives in compliance with generally accepted audit standards to ensure that the organization's information technology and business processes are adequately controlled, monitored, and assessed, and are aligned with the organization's business objectives.
  2. Plan specific audits to ensure that the IT audit strategy and objectives are achieved.
  3. Obtain sufficient, reliable, relevant, and useful evidence to achieve the audit objectives.
  4. Analyze information gathered to identify reportable conditions and reach conclusions.
  5. Review the work performed to provide reasonable assurance that objectives have been achieved.
  6. Communicate audit results to key stakeholders.
  7. Facilitate the implementation of risk management and control practices within the organization.

IT Auditing: The Process addresses managerial responsibilities for audit managers.


IT Auditing: The Process Presentation


“IT Auditing: The Process” contains over 450 PowerPoint slides offering a practical method for performing adaptive IT auditing.  Furthermore, the PowerPoint slides content allows presentation and participation in either a group or individual self-paced training format.

“IT Auditing: The Process” Presentation – module 1

Module 1 sets the framework for learning about the IT Auditing Process as well as offering suggestions how to use this CD in a self-study or group training mode addressing specifically:

Introduction
Objectives
Introductions (if a group)
Appropriate IT Auditor Training
An 18-question Diagnostic Test with answers       
IT Audit Training agenda
Suggested Training Schedule
IT Audit Methodology
4 Types of Standards relevant to IT Auditing        
Overview of IT Audit Process
IT Audit Planning
Audit Objectives
Audit Findings Form
Business Objectives       
Organizational Practices
Audit Department Scope Limitations
Working Papers Documentation

“IT Auditing: The Process” Presentation – module 2

Module 2 continues the learning about the IT Auditing Process addressing specifically:

Audit Risk Assessment       
Internal Control Assessment        
Audit Plan       
Engagement Letter       
Opening Conference       
Study of Internal Controls       
Study of External Controls       
Design Materiality       
Control Objectives       
Evaluation of Internal Controls

“IT Auditing: The Process” Presentation – module 3

Module 3 continues the learning about the IT Auditing Process addressing specifically:
Evaluation of External Controls (continued)        
Illegal and Irregular Acts       
Working Papers       
Audit Evidence       
Reassessing Risk       
Assessing Testing
Sarbanes-Oxley Compliance
FCPA Compliance       
Testing Objectives
Testing Materiality       
Testing Design       
Testing Methodologies

IT Auditing: The Process” Presentation – module 4

Module 4 continues the learning about the IT Auditing Process addressing specifically:
       
Statistical Testing Methodologies       
Non-Statistical Testing Methodologies       
Sampling Size Selection       
Sampling Methodologies       
Conducting Testing       
CAAT Testing       
Testing Evaluation         
Test Documentation       
Assessing Audit Findings        
Audit Report Materiality       
Cost-Benefit Analysis        
Draft Audit Report


IT Auditing: The Process Administrator's Guide


"IT Auditing: The Process Administrator's Guide"

The 49-page administrator / instructor guide is correlated to the IT Auditing: The Process PowerPoint presentation and provides answers for course participant exercises. Beneficially, the administrator guide documents researched answers, with additional reference sources available on the Internet.   

In self-study mode the participant should use the Participant’s Guide and then check the accuracy of answer with the Administrator’s Guide.

IT Auditing: The Process Participant’s Guide

"IT Auditing: The Process Participant’s Guide"

Using the Participant's Guide encourages active learning of the IT auditing process.  This 28-page workbook allows application of presented material and demonstration of the information system audit methodology, using various formats.  Additionally, practice variety also is incorporated through group or individual exercise assignments.

The Participant’s Guide contains a glossary of terms that participant might want to reference throughout the PowerPoint presentation.

Order Online
Computer and CD image 

 IT Auditing: IT Governance 


This self-paced PowerPoint presentation with accompanying material is organized to provide initial training of IT auditors as well as continuing training of IT auditors, auditors, and auditor managers.  The “Administrator’s Guide” provides tools for group and individual self-paced training. 

Utilizing the enclosed PowerPoint slides, in conjunction with the “Participant’s Guide,” can ensure adequate understanding of the entire IT audit process including audit engagement requirements.  Furthermore, participant attentiveness to the material and completion of the twelve exercises in the guide can enhance auditor professionalism in corresponding job responsibilities. 

Participants who  complete this training will be adequately prepared to take the Information Systems Audit and Control Association’s (ISACA’s) Certified Information Systems Auditor – IT Governance examination section and to perform competent IT Auditing of IT Governance.


 
IT Auditing: IT Governance Presentation


IT Auditing: IT Governance contains over 300 PowerPoint slides with slide notes, Administrator's Guide, and Participant's Guide offering a practical method for performing IT governance audits. Furthermore, the PowerPoint slides content allows presentation and participation in either a group or individual self-paced training format.

“IT Auditing: IT Governance Presentation – module 1"

Module 1 sets the framework for learning about IT Auditing: IT Governance as well as offering suggestions how to use this CD in a self-study or group training mode addressing specifically:
 
Introduction
Objectives
Introductions (if a group)
Appropriate IT Auditor Training
An 18-question Diagnostic Test with answers       
IT Audit Training Agenda
Suggested Training Schedule
IT Audit Methodology
8 Types of IT Audits        
Overview of IT Governance
IT Governance Program Management
IT Governance Organizational Practices
IT Strategic Alignment Requirements
IT Value Delivery Significance

“IT Auditing: IT Governance Presentation – module 2"


Module 2 continues the learning about IT Auditing: IT Governance addressing specifically:

Business Risk Management Principles
IT Risk Management Principles
Control Selection Interaction Model
IT resource Criticality
COBIT
IT Performance Measurement
IT Performance Monitoring     
IT Audit and Review Planning Issues
IT Audit and Review Management      
Auditable Units Bidirectional Linkages

“IT Auditing: IT Governance Presentation – module 3"


Module 3 continues the learning about IT Auditing: IT Governance addressing specifically:
 
Audit and Review Risk Assessment        
Management Information Systems
Mission Statements
Documentation Availability
IT Tools and Techniques
Key Auditable Units
Risk-Control Methodology
IT Security Management
Performance Management
Evaluating Outsourced Activities


IT Auditing: IT Governance Administrator's Guide

"IT Auditing: IT Governance Administrator's Guide"

The 69-page "Administrator's Guide" provides the administrator / seminar leader with an excellent guide to offer quality training correlated to the "IT Auditing: IT Governance" PowerPoint presentation and provides answers for course participant exercises. Beneficially, the "Administrator's Guide" documents researched answers, with additional reference sources available on the Internet.

In a self-study mode the participant should use the "Participant's Guide" and then check the accuracy of an answer with the "Administrator's Guide".

IT Auditing: IT Governance Participant's Guide

"IT Auditing: IT Governance Participant's Guide"

The 33-page "Participant's Guide" encourages active learning about IT Governance associated with IT audits and reviews.  This workbook allows application of presented material and demonstration of the IT audit methodology, using various formats. Additionally, practice variety also is incorporated through group or individual exercise assignments.

The "Participant's Guide" contains a glossary of terms that participant might want to reference throughout the PowerPoint presentation.

Order Online

CD and computer  

IT Auditing: Systems and Infrastructure Life Cycle Management


IT Auditing: Systems and Infrastructure Life Cycle Management contains 370 PowerPoint slides with slide notes offering a practical method for performing IT audits and reviews addressing Systems and Infrastructure Life Cycle Management.  Furthermore, the PowerPoint slides content allows presentation and participation in either a group or individual self-paced training format.

This “IT Auditing: Systems and Infrastructure Life Cycle Management” course can be offered in a 3 day period as outlined in the PowerPoint slides, in any timeframe to meet an organization's needs, or in a self-paced mode for individuals.

To view each of the 3 PowerPoint presentations click the blue link for that module such as the one that follows.  Click View Slide if necessary.  Click the left mouse button each time you are ready to advance to the next item or to check an answer throughout this presentation.  To continue a presentation at a specific slide while viewing slideshow right click the mouse, select Go To Slide, and select a specific slide number.

CD and computer
IT Auditing: Systems and Infrastructure Life Cycle Presentation



“IT Auditing: Systems and Infrastructure Life Cycle Management Presentation – module 1"

Module 1 sets the framework for learning about Systems and Infrastructure Life Cycle Management associated with IT audits and reviews, as well as offering suggestions on how to use this CD in a self-study or group training mode, specifically addressing: 

Overview of Audit Methodology
IT Auditing Glossary
Types of IT Audits
IT Audit Standards
Overview of Systems and Infrastructure Life Cycle Management
IT Governance
IT Governance Framing
IT Governance Program Construction
IT Governance Project Management
IT Governance Systems and Infrastructure Development Life Cycle
Control Environment
Control Environment Design Considerations
Control Environment Deployment Considerations
Control Environment Composition
Control Environment Techniques & Tools


“IT Auditing: Systems and Infrastructure Life Cycle Management Presentation – module 2"

Module 2 continues the learning about Systems and Infrastructure Life Cycle Management associated with IT audits and reviews specifically addressing:

Entity Management
Entity Management Responsibilities
Entity Management Financial Management
Entity Management Change Management
Entity Management Release Management
Entity Management Asset Management
Entity Employees Expectation Assessments
Entity Employees Monitoring and Evaluating
IT Audits and Reviews



“IT Auditing: Systems and Infrastructure Life Cycle Management Presentation – module 3"

Module 3 continues the learning about Systems and Infrastructure Life Cycle Management associated with IT audits and reviews specifically addressing:
 
IT Audits and Reviews Planning
Control Environment Considerations
IT Audits and Reviews Study and Evaluation of Controls
Systems and Infrastructure Methodologies
Systems and Infrastructure Tools and Techniques 
IT Audits and Reviews Testing and Evaluating Controls
Primary IT Audits and Reviews Tests 
IT Audits and Reviews Reporting
IT Audits and Reviews Follow-up
Training Evaluation
Where to Get More Information



IT Auditing: Systems and Infrastructure Life Cycle Administrator's Guide


"IT Auditing: Systems and Infrastructure Life Cycle Management Administrator's Guide"

The 82-page "Administrator's Guide" provides the administrator / seminar leader with an excellent guide to offer quality training correlated to the "IT Auditing: Systems and Infrastructure Life Cycle Management" PowerPoint presentation and provides answers for course participant exercises. Beneficially, the "Administrator's Guide" documents researched answers, with additional reference sources available on the Internet.

The "Administrator's Guide" includes 12 Course Exercises with an Answer Key for each exercise.

In a self-study mode the participant should use the "Participant's Guide" and then check the accuracy of an answer with the "Administrator's Guide".

To access the Administrator's Guide click the blue link above. 


IT Auditing: Systems and Infrastructure Life Cycle Participant's Guide


"IT Auditing: Systems and Infrastructure Life Cycle Management Participant's Guide"

The 39-page "Participant's Guide" encourages active learning about Systems and Infrastructure Life Cycle Management associated with IT audits and reviews. This workbook allows application of presented material and demonstration of the IT audit methodology, using various formats. Additionally, practice variety also is incorporated through group or individual exercise assignments.

The "Participant's Guide" includes 12 Course Exercises.  The answer for each exercise is contained in the "Administrator's Guide".

To access the Participant's Guide click the blue link above. 

Order Online

Cd and computer image  

IT Auditing: IT Service Delivery and Support


IT Auditing: IT Service Delivery and Support contains 384 PowerPoint slides with slide notes offering a practical method for performing IT audits and reviews addressing potential IT Service Delivery and Support risks.  Furthermore, the PowerPoint slides content allows presentation and participation in either a group or individual self-paced training format.

This “IT Auditing: IT Service Delivery and Support” course can be offered in a 3 day period as outlined in the PowerPoint slides, in any timeframe to meet an organization's needs, or in a self-paced mode for individuals.

To view each of the 3 PowerPoint presentations click the blue link for that module such as the one that follows.  Click View Slide Show if necessary.  Click the left mouse button each time you are ready to advance to the next item or to check an answer throughout this presentation.  To continue a presentation at a specific slide while viewing slideshow right click the mouse, select Go To Slide, and select a specific slide number.


“IT Auditing: IT Service Delivery and Support Presentation – module 1"

Module 1 sets the framework for learning about IT Service Delivery and Support associated with IT audits and reviews, as well as offering suggestions on how to use this CD in a self-study or group training mode, specifically addressing: 

Introduction
Objectives
Introductions (if a group)
Appropriate IT Auditor Training
An 18-question Diagnostic Test with answers
IT Audit Training Agenda
Suggested Training Schedule
IT Audit Methodology
IT Audit Glossary
8 Types of IT Audits
IT Audit Standards
Overview of IT Audit Service Delivery and Support
IT Governance Issues
Control Environment Criteria

“IT Auditing: IT Service Delivery and Support Presentation – module 2"

Module 2 continues the learning concerning IT Audit Service Delivery and Support with IT audits and reviews specifically addressing:

IT Management
IT Management Responsibilities
IT Service Support
IT Employees
Operational Management
Primary Guidelines
IT Audit or Review Issues
IT Audits and Reviews Planning

“IT Auditing: IT Service Delivery and Support – module 3"

Module 3 continues the learning concerning IT Audit Service Delivery and Support with IT audits specifically addressing:
 
Studying and Evaluating Controls
Protocol Reference Models
Terminology and Definitions
Protocols
Internet Issues
Integrity Management
Change Management
Operational Management
Incident Management
Problem Management
Quality Issues
Testing and Evaluating Controls
Reporting
Follow-up
Additional References


 IT Auditing: IT Service Delivery and Support Adminstrator's Guide

"IT Auditing: IT Service Delivery and Support" Administrator's Guide"

The 65-page "Administrator's Guide" provides the administrator / seminar leader with an excellent guide to offer quality training correlated to the "IT Audit Service Delivery and Support" PowerPoint presentation and provides answers for course participant exercises. Beneficially, the "Administrator's Guide" documents researched answers, with additional reference sources available on the Internet.

In a self-study mode the participant should use the "Participant's Guide" and then check the accuracy of an answer with the "Administrator's Guide".

To access the Administrator's Guide click the blue link above. 

 IT Auditing: IT Service Delivery and Support Participant's Guide

"IT Auditing: IT Service Delivery and Support" Participant's Guide

The 33-page "Participant's Guide" encourages active learning about IT Audit Service Delivery and Support associated with IT audits and reviews. This workbook allows application of presented material and demonstration of the IT audit methodology, using various formats. Additionally, practice variety also is incorporated through group or individual exercise assignments.

The "Participant's Guide" contains a glossary of terms that a participant might want to reference throughout the PowerPoint presentation.

To access the Participant's Guide click the blue link above.

Order Online

Computer and CD image  

IT Auditing: Information Assets Protection (IAP)

This self-paced PowerPoint presentation with accompanying material is organized to provide initial training of IT auditors and security professionals as well as continuing training of auditors, security professionals, audit managers, and security managers.  The “Administrator’s Guide” provides tools for group and individual self-paced training. 

Utilizing the enclosed PowerPoint slides, in conjunction with the “Participant’s Guide,” can ensure adequate understanding of IT audits and reviews related to information assets protection.  Furthermore, participant attentiveness to the material and completion of the eighteen exercises in the Guide can enhance auditor professionalism in corresponding job responsibilities.

Participants who complete this training will be adequately prepared to perform competent Information Assets Protection Audits and Reviews.
IT Auditing: Information Assets Protection Presentation


IT Auditing: Information Assets Protection contains over 560 PowerPoint slides with slide notes offering a practical method for performing IT audits and reviews addressing potential information assets protection risks.  Furthermore, the PowerPoint slides content allows presentation and participation in either a group or individual self-paced training format.

This “IT Auditing: Information Assets Protection” course can be offered in a 5 day period as outlined in the PowerPoint slides, in any timeframe to meet an organization's needs, or in a self-paced mode for individuals.

To view each of the 5 PowerPoint presentations click the blue link for that module such as the one that follows.  Click View Slide if necessary.  Click the left mouse button each time you are ready to advance to the next item or to check an answer throughout this presentation.  To continue a presentation at a specific slide while viewing slideshow right click the mouse, select Go To Slide, and select a specific slide number.

“IT Auditing: Information Assets Protection Presentation – module 1"

Module 1 sets the framework for learning about information assets protection associated with IT audits and reviews, as well as offering suggestions on how to use this CD in a self-study or group training mode, specifically addressing: 
Introduction
Objectives
Introductions (if a group)
Appropriate IT Auditor Training
An 18-question Diagnostic Test with answers
IT Audit Training Agenda
Suggested Training Schedule
IT Audit Methodology
8 Types of IT Audit Expertise
Overview of Information Assets Protection
Information Security Governance
Control Environments
Information Assets Protection Management

“IT Auditing: Information Assets Protection Presentation – module 2"

Module 2 continues the learning concerning information assets protection associated with IT audits and reviews specifically addressing:

Information Assets Protection Management
Planning Information Assets Protection
Enterprise Risk Management
Entity-Centric Risk Assessments
Risk Assessment Methodologies
Expanded Risk Analysis Model
Quantitative Risk Analysis
Qualitative Risk Analysis
Information Asset Valuation
Information Asset Identification
Information Asset Classification

“IT Auditing: Information Assets Protection Presentation – module 3"

Module 3 continues the learning concerning information assets protection associated with IT audits and reviews specifically addressing:
Information Assets Protection Management
Threat Analysis
Opportunities Analysis
Vulnerabilities Analysis
Risk Evaluation
Countermeasures
Control Evaluation
Inherent Risks
Control Risks
Residual Risks
Risk Analysis Action Plan

“IT Auditing: Information Assets Protection Presentation – module 4"

Module 4 continues the learning concerning information assets protection associated with IT audits and reviews specifically addressing:
Entity Employees
Privacy
Illegal Acts
IT Audits and Reviews
Access Controls
Logical Access Controls
Confidentiality
Integrity
Identification
Authentication
Accountability

“IT Auditing: Information Assets Protection Presentation – module 5"

Module 5 continues the learning concerning information assets protection associated with IT audits and reviews specifically addressing:
IT Audits and Reviews
Non-repudiation
Cryptographic Key Management
Trusted Third Parties
Network Infrastructure Security
Networking Protocols
Public Key Infrastructure
Availability
Physical Access Controls
IAP Risk Analysis
Environmental Controls
Confidential Information Life Cycle


IT Auditing: Information Assets Protection Administrator's Guide

"IT Auditing: Information Assets Protection Administrator's Guide"

The 108-page "Administrator's Guide" provides the administrator / seminar leader with an excellent guide to offer quality training correlated to the "IT Auditing: Information Assets Protection" PowerPoint presentation and provides answers for course participant exercises. Beneficially, the "Administrator's Guide" documents researched answers, with additional reference sources available on the Internet.

In a self-study mode the participant should use the "Participant's Guide" and then check the accuracy of an answer with the "Administrator's Guide".

To access the Administrator's Guide click the blue link above. 


IT Auditing: Information Assets Protection Participant's Guide

"IT Auditing: Information Assets Protection Participant's Guide"

The 48-page "Participant's Guide" encourages active learning about information assets protection associated with IT audits and reviews. This workbook allows application of presented material and demonstration of the IT audit methodology, using various formats. Additionally, practice variety also is incorporated through group or individual exercise assignments.

The "Participant's Guide" contains a glossary of terms that a participant might want to reference throughout the PowerPoint presentation.

To access the Participant's Guide click the blue link above. 


Order Online

CD and computer  

IT Auditing: Business Continuity and Disaster Recovery

IT Auditing: Business Continuity and Disaster Recovery contains over 320 PowerPoint slides with slide notes offering a practical method for performing IT audits and reviews addressing Business Continuity and Disaster Recovery.  Furthermore, the PowerPoint slides content allows presentation and participation in either a group or individual self-paced training format.

This “IT Auditing: Business Continuity and Disaster Recovery” course can be offered in a 3 day period as outlined in the PowerPoint slides, in any timeframe to meet an organization's needs, or in a self-paced mode for individuals.

To view each of the 3 PowerPoint presentations click the blue link for that module such as the one that follows.  Click View Slide if necessary.  Click the left mouse button each time you are ready to advance to the next item or to check an answer throughout this presentation.  To continue a presentation at a specific slide while viewing slideshow right click the mouse, select Go To Slide, and select a specific slide number.


“IT Auditing: Business Continuity and Disaster Recovery Presentation – module 1"

Module 1 sets the framework for learning about Business Continuity and Disaster Recovery associated with IT audits and reviews, as well as offering suggestions on how to use this CD in a self-study or group training mode, specifically addressing: 

Introduction
Objectives
Introductions (for group training)
Appropriate IT Auditor Training
An 18-question Diagnostic Test with answers
IT Audit Training Agenda
Suggested Training Schedule
Standards
Overview of Audit Methodology
IT Auditing Glossary
Audit Related Certifications
Overview of Business Continuity and Disaster Recovery
IT Governance
Control Environment


“IT Auditing: Business Continuity and Disaster Recovery Presentation – module 2"

Module 2 continues the learning concerning Business Continuity and Disaster Recovery associated with IT audits and reviews specifically addressing:

IT Management Roles & Responsibilities
IT Management Planning
Entity Employees Training & Awareness
Entity Employees File Back-Up
Entity Employees Incident Response
Entity Employees Periodic Testing
Entity Employees Analyzing Test Results


“IT Auditing: Business Continuity and Disaster Recovery Presentation – module 3"

Module 3 continues the learning concerning Business Continuity and Disaster Recovery associated with IT audits and reviews specifically addressing:
 
IT Audits and Reviews
IT Audits and Reviews Issues
IT Audits and Reviews Planning
Studying and Evaluating Controls
Testing and Evaluating Controls
Reporting
Follow-up
Training Evaluation
Where to Get More Information



IT Auditing: Business Continuity and Disaster Recovery Administrator's Guide 


"IT Auditing: Business Continuity and Disaster Recovery Administrator's Guide"

The 65-page "Administrator's Guide" provides the administrator / seminar leader with an excellent guide to offer quality training correlated to the "IT Auditing: Business Continuity and Disaster Recovery" PowerPoint presentation and provides answers for course participant exercises. Beneficially, the "Administrator's Guide" documents researched answers, with additional reference sources available on the Internet.

The "Administrator's Guide" includes 10 Course Exercises with an Answer Key for each exercise.

In a self-study mode the participant should use the "Participant's Guide" and then check the accuracy of an answer with the "Administrator's Guide".

To access the Administrator's Guide click the blue link above. 


IT Auditing: Business Continuity and Disaster Recovery Participant's Guide


"IT Auditing: Business Continuity and Disaster Recovery Participant's Guide"

The 32-page "Participant's Guide" encourages active learning about Business Continuity and Disaster Recovery associated with IT audits and reviews. This workbook allows application of presented material and demonstration of the IT audit methodology, using various formats. Additionally, practice variety also is incorporated through group or individual exercise assignments.

The "Participant's Guide" includes 10 Course Exercises.  The answer for each exercise is contained in the "Administrator's Guide".

To access the Participant's Guide click the blue link above. 


Purchase Individual CD-ROM Titles and Other Resources

If you like the quality of this CD-ROM publication check http://www.pleier.com for additional resources.

Current Publications - Click the link to preview:


Print Order Form - PDF
Print Order Form - Word Document
Order Online

ADM PLUS Audit Management Systems for managing an Audit Department help auditors manage better.
  • Review information about this software
  • Download and try this client-server software with no risk at http://www.pleier.com.

    • Please tell other Audit Professionals during your sharing about these resources.
     
    Thank you.
    Joseph R Pleier
    President
    Pleier Corporation