Practical Aspects of Information System Audit (For Beginner)

Practical Aspects of Information System Audit (For Beginners)

4.61 (629 reviews)
Udemy
platform
English
language
Network & Security
category
Hemang Doshi
instructor
Practical Aspects of Information System Audit (For Beginner)
2,322
students
3.5 hours
content
Oct 2022
last update
$19.99
regular price

What you will learn

We have designed the course in such a way that it simulates on-the job kind of training.

This course is primarily designed for the beginners/freshers in information system audit and hence we will start from basic aspects of IS audits.

After completion of this training program, you will be able to independently handle the IS audits.

For effective and efficient audit program, we have bifurcated Information System audits into 12 step processes.

Why take this course?

  • We assure you that this is not a theory class. Except for this introduction, there will be no other PPTs.

  • We have designed the course in such as a way that it simulates on-the job kind of training. This course is primarily designed for the beginners/freshers in information system audit and hence we will start from basic aspects of IS audits.

  • We assure you that after completion of this training program, you will be able to independently handle the IS audits.

  • For effective and efficient audit program, we have bifurcated Information System audits into 12 step processes. For your easy understanding we have designed exclusive video for each step.

  • For each step we will guide you about data requirements, audit procedure, evidence to be evaluated and how to write the audit report.

  • Also, you can download readymade templates from resource section of this course.

Step-wise Audit Program:


Step 1 is about checking the information security policy. In this step, as an auditor you need to check:


o availability of the policy,

o whether policy is approved by appropriate authority?

o whether policy is updated at periodic interval and other aspect with respect to policy?


We will discuss in detail about how to audit and validate these controls in our step 1 video.


Step 2 is about auditing the controls related to applications. In this step, as an auditor you need to check:


o whether application is appropriately categorized?

o Whether each application is owned by dedicated owner?

o How many factors of authentication is applied?

o Whether user access review in conducted for each application at periodic level?


We will discuss in detail about how to audit and validate these controls in our step 2 video.


Step 3 is about auditing the controls related to database. We check


o whether database is appropriately categorized?

o Whether each database is owned by dedicated owner?

o Whether Operating system is updated? Organization should not be using end of life/end of support OS.

o Whether backup arrangement is appropriate?


We will discuss in detail how to audit and validate these controls in our step 3 video.


Step 4 is about auditing the controls related to datacenter. You need to check


o whether datacentre is audited at periodic interval?

o Whether SLA is available for external datacentre?

o Whether secondary datacentre is at offsite location?



Step 5 is about auditing the controls related to network devices. You need to check


o Whether device is owned by dedicated owner?

o Whether device configuration is reviewed at period interval?


Step 6 is about auditing the controls related to endpoint devices like computers, laptops, tablets, mobile etc. You need to check


o Whether asset inventory is maintained and updated?

o Whether end point device is owned by dedicated owner?

o Whether anti-virus is installed for all the devices?


Step 7 is about auditing the controls related to email. You need to check


o whether SPF is enabled? Don’t worry about technical terms. We will simplify the same while discussing the step 7.

o whether DMARC is enabled?

o whether attachments are scanned before downloading?


Step 8 is about auditing the controls related to outsourcing. You need to check


o Whether service level agreement is available for the outsourced services?

o whether service provider is audited at periodic interval?


Step 9 is about auditing the controls related to desktop security You need to check


o Whether operating system is updated and licensed?

o Whether anti-virus is installed and signatures are updated?

o Various user restrictions are implemented?

o Use of latest browsers.


Step 10 is about auditing the controls related to BCP and Incident management. You need to check


o Whether Business Continuity Policy & Incident Management policy is available?

o Whether Business Continuity plan is tested at periodic interval?


Step 11 is about auditing the controls related to users. You need to check


o Whether users are trained at periodic interval on information security?

o whether background verification is conducted for new hires?



These 11 steps cover almost all the important and critical information security requirements. As a step 12, you need to review all other checkpoints as required by the objective of audit.

Reviews

Rupesh
October 12, 2023
Yes, the course was very good and is explained with relevant examples so that anyone can understand very easily.
Mandadapu
October 10, 2023
Very practical sessions. Good lectures for work on hands. The Practical Aspects of Information Security Audit course provides students with a strong foundation in information security, and it prepares them for careers in the field. I would definitely recommend the Practical Aspects of Information Security course to anyone who is interested in learning more about information security. The course is well-designed and informative, and it provides students with the skills and knowledge they need to succeed in the field of information security.
Ivy
October 1, 2023
A well packed course which will make one understand IT audits in practical. Kudos to Mr Hemang Dosh for such a powerful packed course. Highly recommend it to someone who wants to learn more about IT audits.
Aanchal
September 26, 2023
"I'm delighted to have completed this course, and I want to share my thoughts on the experience: The course content was well-structured, comprehensive and covered a wide range of topics in great detail. I feel like I've acquired a strong foundation on IT audits. The instructor "Hemag Doshi" Sir is so knowledgeable, engaging, and passionate about the subject matter. His enthusiasm made the learning experience enjoyable. The practical approach in this course was a standout feature. Definitely, Real-world projects and hands-on exercises will help me to apply what I learned and gain in this valuable session. Also, I want to appreciate the flexibility of the course that allowed me to learn at my own pace and fit it into my schedule. Thank you Udemy and Hemang Sir.
Shailendra
August 12, 2023
Yes it's very illustrative and informative. Even a Lehman can become master in this field by watching the videos. I suggest everyone to get benefitted out of it. Just try once!!!
Benjamin
July 31, 2023
The material is helpful as an introduction to information systems audit. The practical illustrations are very helpful in executing IS audit.
Pavithra
July 30, 2023
Step by step explanations made the subject interesting and easy to grasp !! Fortunate to have found Mr.Hemang Doshi's classes. Thank you so much sir.
Kapil
July 21, 2023
Course give a good understanding/overview to any beginner seeking career in IT audit/compliance, how to conduct audit, read policy and test control.
Hossana
July 17, 2023
Instructor did an amazing job on this course, now i understand on how to conduct an audit and draft a report.
Mohan
June 28, 2023
The Course is Practical Oriented. Iam very much satisfied with the efforts put by the Course instructor. Many thanks for the goodwork....
Nitin
June 17, 2023
Amazing sir i request you please include your website and cloud configuration reviews also. This course is above my expectations . How to start my career as Risk Analyst / Auditor Please include this as ithelps in building career .
Anonymized
May 5, 2023
This is one of the best courses one could take in audit, touches all the aspects and makes your fundamental strong. Thank you Hemang Doshi for the making it and the platform udemy for making it available to learners. As an improvement assignments should be created so that people can test their knowledge post completion
Mangaiyarkarasi
February 15, 2023
The course was well structured and provided a comprehensive overview of all the practical aspects of IS AUDIT. I highly recommend this course to anyone who wants to gain a practical understanding of IS AUDIT Thank You Hemang Sir! I am excited to complete AISA as well!!
Lohit
January 25, 2023
Practical Aspects of Information system Audit course is make me to understandable how as an auditor verify the documents and prepare the Audit observation report. As a beginner in the Audit this course is much useful. Thanks
Richerd
January 18, 2023
One of our most and well explained study material about the concepts with examples which helps to understand in very simple manner. Very useful material for beginners who wish to start even with no idea on information system audits. To get more insight about Information Systems Audit courses I strongly recommend to visit HEMANG DOSHI ACADEMY with link https://hemangdoshiacademy.in/

Charts

Price

Practical Aspects of Information System Audit (For Beginner) - Price chart

Rating

Practical Aspects of Information System Audit (For Beginner) - Ratings chart

Enrollment distribution

Practical Aspects of Information System Audit (For Beginner) - Distribution chart

Related Topics

Information Systems
4873868
udemy ID
9/9/2022
course created date
10/15/2022
course indexed date
Bot
course submited by