Auditing the Cybersecurity Program Certificate
With cyber-attacks growing at alarming rates around the globe, and data breaches increasing by 37 percent in just on quarter (according to Statista) at a staggering average cost of $4.24 million USD (according to IBM), it is no wonder law makers are focusing on cyber-focused regulations.
International laws including EU’s GDPR, German IT Security Law, and US Principles for Cyber Incident Reporting, and US Global Cyber Incident Reporting Policy Principles are a few examples where governments world-wide are articulating the need for strong cyber controls and increased transparency regarding cyber-related incidents. Additional proposals are under consideration by governments around the world including the proposed SEC cyber reporting rules. With the increased scrutiny, it is in the strategic best interest of both public and private organizations to audit their cybersecurity programs.
Internal audit should play a key role in supporting the organization in reducing cyber risk. Cybersecurity program auditing can serve as the critical barrier between a potential cyber-attack and the organization. Due to the cost, risk, and reputational damage that can result from a cyber incident or data breach, every organization needs a cyber strategy and response plan.
This certificate program is comprised of 12 modular courses:
• Auditing the Cybersecurity Program Certificate
• Auditing Storage Management Solutions and Containers
• Auditing Digital Transformation and Digitization Programs
• Auditing the Vulnerability Management Program
• Auditing the Patch Management Program
• Auditing Automation
• Auditing API and Web Services
• Auditing Privileged Access Management
• Auditing DevSecOps
• Auditing Continuous Monitoring
• Auditing Red, Blue, and Purple Team Testing
• Auditing the Security Operations Center
Participants who complete all course modules are eligible to sit for the certificate exam which is administered on The IIA’s LMS platform.
SKU: 1010.LMS.LM1Y.0279.01.01
$899.00
Your price: $899.00
Certificate Objectives
• Explore the origin of data and information.
• Recognize the characteristics of strong data governance.
• Describe the primary deliverable from an effective governance process.
• Identify the primary considerations and activities associated to solid data management.
• Discuss variations on how data governance and management is approached based on organization size and industry.
• Consider the value of data analytics and methods for managing data obtained during the audit activity.
• Understand preliminary concepts related to data literacy.
• Explore common data gathering techniques.
• Identify where data exists and how (and when) to request it.
• Recognize the importance of validating data before starting analysis and methods to validate and deal with exceptions and outliers.
• Discuss the key steps in data analysis.
• Describe the key differences between continuous monitoring and continuous auditing.
• Discuss the advantages and concerns when data is consolidated and normalized from multiple devices.
• Discuss how internal audit can perform data analysis on data coming from multiple integration points.
• Recognize the potential of using data analytics to uncover business problems, beyond fraud.
• Describe how internal audit can address business requests for analytics and maintain compliance with the IIA standards.
• Describe opportunities and challenges when using data analytics in highly communitive systems.
• Discover internal audit’s role in data analytics for automation-related activities.
• Explore opportunities for gathering data and performing data analytics regarding macros, business process automation (BPA), automated workflows, artificial intelligence.
• Recognize opportunities for internal auditors to utilize data analytics during digital transformation planning and rollouts.
