Your
Competitive Advantage
Audit
Committees typically cover a complex range of topic areas, not just the
financials. Audit committee members need to examine their competencies as an
effective team, and also as individuals. Each member needs to assess whether
they have the knowledge, experience, dedication, and time to perform the job
effectively. This includes a knowledge of information and communication
technology and Cyber risks.
Looking
at some of the inherent and growing information technology and cyber risks that
now exist in the business world, we must ask whether audit committee members,
individually and as a team, have a sufficient understanding
of:
·
their
governance responsibilities in respect to cyber oversight.
·
the
information technology investment of the organisation, including major
projects.
·
the
organisation’s business i.e., not only how it achieves its financial and
operational objectives, but also how it manages the enabling IT infrastructure
that allows the business to operate now and in the future.
·
the
more significant risks to the company’s information technology, its business,
and its reputation.
·
the
industry’s legal and regulatory framework impacting IT and
cybersecurity.
·
how
to ask the right questions from executive and management engaged in IT, and to
assess the adequacy of the answers obtained.
·
that
the IT internal audit program is comprehensive and targeted, utilises effective
methodologies, and that those undertaking independent reviews are sufficiently
qualified, experienced, capable and reliable.
This
short course will provide a comprehensive and innovative grounding in the
fundamentals of Audit Committee oversight of IT and Cyber risks. Aimed squarely
for members of Audit and Risk Committees who may not have a deep background in
IT, this course will provide a practical and understandable framework that can
be readily understood and immediately applied to their Audit Committee
role.
No
prior background in information and communication technology is required. Our
starting point is that the course will assist each Audit Committee member –
include the Chair - apply their own existing skills and knowledge to effective
governance scrutiny; and be able to ‘ask the right questions and get the right
answers’.
The
course takes an integrated risk and controls-based approach to IT audit
assurance coverage; covering IT governance, application and general IT controls
(including IT projects), IT resilience and recovery, data protection, IT
operations, and cybersecurity, new and emerging technologies and risks, and the
IT audit program.
Presenter:
Barry Munns PFIIA, Chief Audit Executive
Barry's
career has largely involved delivering performance audit, risk management, and
corruption prevention and investigation services as the Chief Internal Auditor
and Chief Risk Officer for several large commercial and service-based government
organizations and their subsidiaries, across the Commonwealth, state and local
government sectors. Barry is currently CAE of a public sector agency, and also
an independent member of a NSW Council's Audit Risk and Improvement Committee.
He is the former Chair of the IIA-Australia Membership Committee and is a member
of the IIA's Professional Responsibilities and Ethics Committee. He holds a
Bachelor of Business, Master of Management and Master of Commerce (Information
Systems), and is a CISA, CISSP and PFIIA.
Online
Classroom: The
content delivered for IIA-Australia training programs in the online classroom
format is the same as what would be delivered
face-to-face.This one-day
training program will be delivered in two 3 hour lessons (10:30am -
01:30pm AEDT) on 23, 24 Feb using Zoom. Registrations will be
strictly limited to 12 participants to allow maximum interaction in the online
environment.
For
credit card payments: Click REGISTER NOW button below
For Funds Transfer payments: Download the funds transfer registration form
here and email the completed form to training@iia.org.au.
Click here to view our terms and conditions.