Fundamentals of IT Audit and Assurance (FITAA)

Last Revised:
10. May 2017
1800.00 USD (VAT incl.)
Not Specified
Not Specified
Not Specified


Fundamentals of IT Audit and Assurance (FITAA)

The role of the auditor has evolved from focusing solely on management to becoming responsible for the controls that provide the proper governance of an enterprise’s most valuable asset—information. This course will enhance understanding of the necessary tools and techniques, illustrate why they are needed, and show how they should be used to optimize the assessment and assurance process. Please note: This is not a CISA review course.

Learning Objectives:

  • Provide stakeholders assurance that the enterprise’s information is properly protected
  • Assure that the correct controls are in place and effective in order to achieve business goals
  • Have more than just a basic understanding of the controls and objectives
  • Understand organizational risks and how to mitigate them to provide assurance

Prerequisites: None.

Target Audience:

  • New IT auditors
  • Financial and operational auditors seeking a better understanding of IT controls
  • Auditors and accountants needing to understand IT controls for compliance reporting
  • IT professionals seeking to understand assurance and/or assessment processes
  • Those aspiring to attain the CISA designation

Day 1 – Process of Auditing Information Systems   
Students will understand the audit and assurance standards, guidelines, and framework and be able  perform an Information Systems Audit. 
• Define the audit process 

• Understand the audit and assurance standards, guidelines, and framework

  • Implement policies, procedures, and organizational structures (internal controls) in order to  reduce risk

  • Understand how COBIT supports IT Assurance practices 

• Plan and perform an IS audit 

• Plan and perform a risk based audit 

• Understand compliance and substantive testing 

• Use different tools and techniques when performing an audit 
Day 2 – Governance and Management of IT 
Students will be able to govern and manage Information Technology within an enterprise. 
• Understand IT Governance and audit’s role in the evaluation of IT Governance 

• Define the seven steps of the risk management program

  • Develop and analyze a risk management program 

• Understand how to manage personnel and develop a sourcing strategy

  • Identify Information Security roles and responsibilities 

• Identify and develop a business continuity plan 
Day 3 – Information Systems Acquisition, Development and Implementation 
Students will be able to acquire, develop, and implement Information Systems. 
• Identify and determine controls around a project management plan 

• Follow a traditional SDLC approach to business application development 

• Develop and acquire physical infrastructure  

• Validate Information System processes to see that they meet control objectives 

• Understand application controls objectives 
Day 4 – Information Systems Operation, Maintenance and Support and Protection of Information  Assets 
Students will be able to run, maintain, and support Information Systems, and protect information assets. 
• Manage Information System operations 

• Define common Information System  hardware and apply a maintenance program 

• Understand Information Systems architecture, software, and network infrastructure 

• Develop and implement a Disaster Recovery Planning (DRP) 

• Classify and protect information assets 

• Address privacy, HR, and cybercrime issues 

• Understand logical access exposures and manage control software

  • Define internet threats and apply network infrastructure security




This is a binding contract, please read and understand the terms and conditions before signing as signed booking forms will not be cancelled 10 days after SAVANNAH TELECOM Management has received the registration form.


1.  Terms of payment:


In order to secure your registration, payment is due in full upon receipt of invoice. Early registration is vital due to limited workshop space.


2.  Right of Admission:


SAVANNAH TELECOM reserves the right to refuse admission to the conference where evidence of full payment cannot be shown.


3.  Delegate Cancellation:


Provided the total fee has been settled, substitutions will be at no extra charge up till 7 days before the workshop date. Cancellations must be received in writing (14) days before the workshop in order to obtain a full credit voucher for our future events. Any cancellations received less than 14 days before the date of the conference, the full fee will be payable and no refunds or credit voucher will be given. If a delegate does not cancel and fails to attend the conference, he/she is liable for the full payment and no refund / credit voucher will be issued


4. SAVANNAH TELECOM Substitutions:


Please note that speakers and topics were confirmed at the time of publishing, however, circumstances beyond the control of the organizers may necessitate substitutions, alterations or cancellations of the speakers and/or topics. As such SAVANNAH TELECOM reserves the right to alter /modify the advertised speakers/ topics if necessary and all delegates will be notified as soon as possible.


5.SAVANNAH TELECOM Cancellation & Postponement:


In the event that SAVANNAH TELECOM Business Consulting cancels an event, delegate payments at the date of cancellation will be credited to a future SAVANNAH TELECOM conference. This credit will be available for a year from the date of issue. If the delegate is unable to attend the rescheduled conference, the delegate will receive a credit representing payments made towards a future SAVANNAH TELECOM conference & it will be available for 1 year from the date of issue. SAVANNAH TELECOM is not responsible for any loss/damage as a result of a substitution, alteration/cancellation /postponement of a conference


Subscribe to our list!

There are no scheduled dates for this course.
If you are interested in this course, you can subscribe to our list. You will be notified as soon as the course is scheduled.

Attendee Information


* required