Upcoming Dates & Locations
IT Controls to Reduce Risk of Fraud, Sabotage & InfoSec Breaches - ITF222WEB
This webinar covers the key risks surrounding computer-based crime and explore the “who, what and how” of these pervasive crimes. Students examine the most critical IT controls that must be in place to reduce the risk of these crimes, including user application access controls, reduced privileged access, enhanced log management, effective patch management and encryption. The discussions will include actual events that could have been prevented by the implementation of basic controls.
Who Should Attend
Financial, operational auditors and IT auditors, audit management, risk management, and compliance management.
What You’ll Learn
You will learn about the most effective techniques to stop computer experts, international criminal organizations, and employees from stealing identities, re-routing data for personal gain and altering data for fraudulent purposes.
- Computer Crime Statistics
- Current Fraud, Sabotage and Security Breach Examples
- Establishing Audit’s Role
- What is Computer Fraud?
- Computer Fraud and Abuse Act
- Enterprise Fraud Controls
- Data Breach Commonalities
User Application Access Controls:
- Components of Application Access Control
- Conflict Matrix
- Social Engineering Risks
System Software Security:
- Patch Management
- Controlling Privileged Access
- Vulnerability Testing
- Log Management
- Vulnerability Management
- Basics of Encryption
- Why Encryption is a Key Control
Why You Should Attend
You should attend because computer fraud, sabotage and information security breaches occur frequently and acquiring techniques to foil computer-based crime has become a top priority for auditors.
ACI Learning is registered with the National Association of State Boards of Accountancy (NASBA) as a sponsor of continuing professional education on the National Registry of CPE Sponsors. State boards of accountancy have final authority on the acceptance of individual courses for CPE credit. Complaints regarding registered sponsors may be submitted to the National Registry of CPE Sponsors through its website: www.nasbaregistry.org.