Auditing: IT Governance
Robert E. Davis, MBA, CISA, CICA
Robert E. Davis is an independent management audit consultant,
currently associated with Robert Half Management Resources, as well as
author. His IT audit specializations include Control Objectives
Information and related Technology, Sarbanes-Oxley Act, and the Foreign
Corrupt Practices Act. Regarding information security and
Robert is available to provide International Organization for
Standardization ISO-17799, Graham-Leach-Bliley, and Basel II
His primary computer technology research interests
databases, operating systems, and distributed information systems
Since starting his career as an IT auditor, Robert has provided data
security consulting and IT auditing services from staff through
management positions to the United States Enrichment
Corporation, Raytheon Company, United States Interstate Commerce
Commission, Dow Jones & Company, Fidelity/First Fidelity (Wachovia)
Corporations, and other organizations.
Some of his professional IT software and hardware experience includes
MVS, UNIX, Windows, Oracle, the International Money Management System,
PERL, COBOL, PASCAL, DEC, IBM, Tandem, Compaq, and DELL.
Prior to engaging in the practice of IT auditing and information
security consulting, Robert provided inventory and general accounting
services to Philip Morris USA and general accounting services to
Philadelphia National Bank (Wachovia).
Robert graduated from Temple University and West Chester University of
Pennsylvania with a Bachelor of Business Administration and Master of
Business Administration degree, respectively. While attending
University, his major areas of study were Business Law and
He successfully completed the requirements for a Management Information
Systems subject major at West Chester University.
Robert obtained the Certified Information Systems Auditor (CISA)
certificate, after passing the Information Systems Audit and Control
Association’s rigorous three hundred and fifty multiple-choice
questions examination and was conferred the Certified Internal Controls
Auditor (CICA) certificate by the Institute for Internal Controls.
During his twenty-year professional involvement in education, Robert
acquired postgraduate and professional technical licenses in computer
science and computer systems technology.
Currently, Robert is a member of the Institute of Internal Auditors IT
AUDIT magazine Editorial Review Committee and author of the IT
AUDIT magazine emerging issues article, “Did IT Auditing Forget the
Foreign Corrupt Practices Act?”
Robert is a former ISACA-Philadelphia Chapter Board of Directors
and College Relations Chairman. Robert has provided instruction
Internet CISA study group, the Data Processing Management Association,
and the ISACA-Philadelphia Chapter CISA Review course.
Robert is a member of American Association of University Professors,
the Institute for Internal Controls. He is also a college
science and mathematics instructor, having previously taught at Cheyney
University and Bryant & Stratton College.
Robert E. Davis has been privileged to assist various
achieving their information systems control objectives and improving
business processes. Recently, he has applied his expertise in
assisting organizations in fulfilling U.S. Sarbanes-Oxley and Federal
Information Security Act requirements as well as training professionals
Auditing: IT Governance
Robert is sharing his experience by providing tools to prepare auditors
to perform IT audits in an extremely cost-effective manner.
organizations, governmental organizations, colleges, and universities
can benefit from his knowledge and expertise concerning IT auditing.
This self-paced PowerPoint presentation with accompanying material is
organized to provide initial training of IT auditors as well as
continuing training of IT auditors, auditors, and auditor
The “Administrator’s Guide” provides tools for group and individual
Utilizing the enclosed PowerPoint slides, in conjunction with the
“Participant’s Guide,” can ensure adequate understanding of the entire
IT audit process including audit engagement requirements.
participant attentiveness to the material and completion of the twelve
exercises in the guide can enhance auditor professionalism in
corresponding job responsibilities.
Participants who complete this training will be adequately
take the Information Systems Audit and Control Association’s (ISACA’s)
Certified Information Systems Auditor – IT Governance examination
and to perform competent IT Auditing of IT Governance.
Auditors and Audit Departments that purchase this electronic
publication on CD can duplicate the enclosed Administrator’s and
Participant’s Guides royalty free for training of individual auditors
in that department and for in-house group training.
Organizations including schools that purchase this electronic
publication on CD can
duplicate the enclosed Administrator’s and
Participant’s Guides and use that material to conduct
and classroom training by paying a royalty fee of $20 by check or
online for each copy of the workbook
produced on paper or file to:
Attn: IT Auditing: IT Governance
P.O. Box 3900
Mission Viejo CA 926901-1900
United States of America
When making payment please include with payment or a separate email the
and date that the training was held.
Your feedback, concerning this product, should be sent to firstname.lastname@example.org.
IT Auditing: IT Governance contains
PowerPoint slides with slide notes, Administrator's Guide, and
Participant's Guide offering a practical method for performing IT
Furthermore, the PowerPoint slides content allows presentation and
participation in either a group or individual self-paced training
Auditing: IT Governance Presentation
Auditing: IT Governance Presentation – module 1"
Module 1 sets the framework for learning about IT Auditing: IT
Governance as well as offering suggestions to use this CD in a
group training mode addressing specifically:
Auditing: IT Governance Presentation – module 2"
Introductions (if a group)
Appropriate IT Auditor Training
An 18-question Diagnostic Test with answers
IT Audit Training Agenda
Suggested Training Schedule
IT Audit Methodology
8 Types of IT Audits
Overview of IT Governance
IT Governance Program Management
IT Governance Organizational Practices
IT Strategic Alignment Requirements
IT Value Delivery Significance
Module 2 continues the learning about IT Auditing: IT
Governance addressing specifically:
Business Risk Management Principles
Auditing: IT Governance Presentation – module 3"
IT Risk Management Principles
Control Selection Interaction Model
IT resource Criticality
IT Performance Measurement
IT Performance Monitoring
IT Audit and Review Planning Issues
IT Audit and Review Management
Auditable Units Bidirectional Linkages
Module 3 continues the learning about IT Auditing: IT Governance
Audit and Review Risk Assessment
Management Information Systems
IT Tools and Techniques
Key Auditable Units
IT Security Management
Evaluating Outsourced Activities
IT Governance Administrator's
The 69-page "Administrator's Guide"
the administrator / seminar leader with an excellent guide to offer
training correlated to the "IT Auditing: IT Governance" PowerPoint
presentation and provides answers for course participant exercises.
Beneficially, the "Administrator's Guide" documents researched
answers, with additional reference sources available on the Internet.
In a self-study mode the participant should use the "Participant's
Guide" and then check the accuracy of an answer with the
IT Governance Participant's
"Participant's Guide" encourages active learning about IT Governance
associated with IT audits and reviews. This
workbook allows application of presented material and demonstration of
audit methodology, using various formats. Additionally, practice
is incorporated through group or individual exercise assignments.
Guide" contains a glossary of terms that participant might want to
reference throughout the PowerPoint presentation.
If you like the quality
of this electronic publication on CD check http://www.pleier.com
- Click the link to preview:
Form - PDF
Print Order Form -
ADM PLUS Audit Management
Systems for managing an Audit Department help auditors manage better.
information about this software
and try this client-server software with no risk at http://www.pleier.com.
Please tell other Audit
Professionals during your sharing about these resources.