Course Details

Previous Page

CISA: The Process of Auditing Information Systems - Part 2

Target Audience
Expected Duration
Lesson Objectives
Course Number
Expertise Level

Auditing information systems requires more than a good plan; it requires effectively executing the audit plan, skill in assessing and reporting results, and anticipating necessary changes as the process evolves. This course covers practical knowledge for performing an IS audit, as well as best practices for finalizing an audit, compiling results, and effectively communicating pertinent outcomes. This course is one of a series in the Skillsoft learning path that covers the objectives for the ISACA Certified Information Systems Auditor (CISA) certification exam.

Target Audience
Individuals in IS audit, controls and security professions; individuals preparing for the CISA certification exam.


Expected Duration (hours)

Lesson Objectives

CISA: The Process of Auditing Information Systems - Part 2

  • start the course
  • describe the objectives of an IS audit
  • distinguish between different types of audits
  • identify characteristics of an audit methodology
  • identify best practices in a risk-based audit approach
  • recognize risk influences and best practices when auditing risk for materiality
  • identify risk assessment and risk treatment best practices
  • describe characteristics of audit programs
  • identify best practices for fraud detection when performing IS audits
  • distinguish between compliance and substantive testing when conducting IS audits
  • identify best practices for evaluating and using evidence when conducting IS audits
  • identify best practices when interviewing and observing personnel in performance of their duties
  • identify best practices for sampling as part of an IS audit
  • identify best practices when outsourcing IS assurance and security services for IS audit activities
  • distinguish between different computer-assisted audit techniques and tools
  • identify best practices for evaluating the control environment
  • describe characteristics and best practices for using exit interviews and audit reports to present IS audit findings
  • identify characteristics and best practices of audit documentation
  • identify best practices for IS audit follow-up activities
  • recognize the characteristics and objectives of CSA
  • identify the benefits and disadvantages of CSA
  • describe the auditor's role in a CSA program
  • identify characteristics of the CSA approach and its technology drivers
  • identify best practices for integrating auditing activities in an organization
  • identify best practices for continuous auditing activities in an organization
  • identify best practices for managing risk, communicating results, and CSA during IS audit activities
  • Course Number:

    Expertise Level