Planning and Auditing of Information Systems

Planing and Auditing of Information Systems

Course title
Planing and Auditing of Information Systems
Course tag
10034
Semester
5
Course status
Mandatory
ECTS
6
Lectures
30
Practice
15
Independent work
135
Total
180
Teachers and associates
Renato Barišić, Senior Lecturer
The course aims
Understanding the basics of creating a business strategy and information systems strategy. Understanding the process of information systems auditing. Knowledge and application of the CobiT framework in information systems auditing . Knowledge and application of methods, techniques and tools used in information systems auditing.
Content
Business strategy and strategy information system, Regulatory requirements for information systems auditing, The establishment of an efficient information system auditing, Auditing Standards (ISACA, IIA), Phases of the audit process, CobiT framework for the information system management, Using CobiT framework in auditing information systems, The audit of application controls and IT infrastructure (Windows and Unix servers, databases, networking equipment, virtualization, cloud computing), Using the computer-aided audit operations (CAAT tools).
Literature:
1. Ward J., Peppard J.: Strategic Planning for Information Systems, John Wiley, New York 2002.
2. Gallegos F., Manson D.P., Gonzales C., Information Technology Control and Audit, Auerbach, 2004.
Supplementary literature
1. Christopher Gardner,: The Valuation of Information Technology, John Wiley, New York 2001.
2. Boar B.: The Art of Strategic Planning for Information Technology, John Wiley, New York 2001.
3. Shon Harris, CISA Certified Information Systems Auditor All-in-One Exam Guide, McGraw-Hill Osborne Media, 2007.

Minimum learning outcomes

  1. Describe the strategic importance of information technology.
  2. Assess the need for information systems audit and understand the role, responsibilities, phases of audit.
  3. Assess the role of the CobiT framework in information systems auditing and understand the basic principles, structure and domains.
  4. Assess different software tools, methods and techniques in auditing information systems.
  5. Determine the importance of the concept of CAAT tool in auditing information systems.

Preferred learning outcomes

  1. Understand process of creation business and information systems strategy.
  2. Identify the regulatory requirements for audit and advisory, control role of the same.
  3. Select the appropriate control frameworks in the audit of different areas of information systems.
  4. Choosing the best software tools, methods and techniques in auditing information systems.
  5. Assess the possibility of using CAAT tools in the audit of the information system.