COBIT 2019: Integrating COBIT into Your IT Audit Process

Internal Audit

Overview

This course reviews the COBIT® 2019 Framework and focuses on how this globally recognized framework can be used to evaluate IT activities’ effectiveness. It explores the significant changes incorporated in the newest release that can be used in executing IT audits. It covers how to use COBIT® 2019 in conjunction with other internationally recognized standards and frameworks.

Participants will be exposed to examples using COBIT® 2019 to plan and execute audits for IT governance, risk management, security management, and business continuity. As a result of these exercises, participants will better understand how to use COBIT 2019 to provide a comprehensive and effective audit approach.

Why you should take this course

For users with an introductory knowledge of this topic, and are searching for additional information and its application.

Here are the topics we'll cover.

  1. COBIT® Background

    • How organizations use COBIT
    • COBIT®2019 and IT Governance
    • COBIT® History
    • Overview of COBIT® 2019

  2. COBIT® 2019 Details

    • Primary Audience
    • Significant Changes
    • Architecture
    • Principles, Drivers, Focus Areas, and Design Factors

  3. Developing an IT Audit Plan

    • The IT Audit Plan Workflow

  4. International Standards and Frameworks

    • IIA Governance
    • ISO 27000 – Information Security
    • ITIL

  5. Assessing IT Governance Using COBIT® 2019

    • Defining IT Governance
    • Linking Enterprise and IT Governance
    • IT Governance Practices
    • Governance Frameworks, Standards, and Guidelines
    • Using COBIT® 2019 to Assess IT Governance
    • ISO 38500 – Corporate Governance of IT

  6. Risk Management

    • Risk Definitions
    • Risk Analysis
    • COSO Risk Assessment and COSO Enterprise Risk Management (ERM)
    • COBIT® 2019 – Risk Management
    • IIA GTAG
    • ISACA IT Risk Framework
    • NIST 800-30 Guide for Conducting Risk Assessments

  7. Security Management

    • COBIT® 2019 – Security Management
    • IIA GTAG
    • ISO 27001 – ISMS Security Management
    • ISO 27002 – Security Code of Practice
    • NIST 800-53 – Security Controls

  8. Manage Continuity

    • COBIT® 2019 – Manage Continuity
    • IIA GTAG – Business Continuity Management
    • ISO 27002 – Section 14: Business Continuity Management
    • NIST 800-53 – Section CP – Contingency Planning

  9. Integrating the COBIT® 2019 Process Capability Model

    • Implementation Guide

Learning Style

Instructor Led

Level

Intermediate

Who this course is for

Anyone responsible for implementing or assessing IT and security controls; Internal Audit Seniors, Managers, and Senior Managers involved with identifying, assessing, and reporting on technology-related risks.

NASBA Certified CPE

24 credits

Field of Study

Auditing

Length of course

24h

Prerequisites

IT Audit School IT Auditing and Controls
or equivalent experience

Advanced Preparation

None
Start Learning Today
Stay ahead of the curve and future-proof your business with training programs designed for you.
Contact Sales

Here are the learning objectives we'll cover

  • List the key components of the COBIT® 2019 Framework
  • Describe ways to use this Framework to evaluate the effectiveness of IT activities
  • Discuss the significant changes in COBIT 2019 and how they can be used when performing IT audits
  • Create an IT audit plan using COBIT® 2019
  • Identify ways to use COBIT® 2019 with other internationally-recognized standards and frameworks

Attendance policy for on-site and online instructor-led training

Students are expected to arrive on time for classes with the proper materials and attitude. An overall attendance rate of 100% is expected to fully absorb the materials and to complete labs. If you have an expected absence, please email support@acilearning.com or your instructor ahead of time. The number of CPEs awarded will be equivalent to the number of hours attended.

ACI Learning is registered with NASBA

ACI Learning is registered with the National Association of State Boards of Accountancy (NASBA) as a sponsor of continuing professional education on the National Registry of CPE Sponsors. State boards of accountancy have final authority on the acceptance of individual courses for CPE credit. Complaints regarding registered sponsors may be submitted to the National Registry of CPE Sponsors through its website: https://www.nasbaregistry.org/