UC2APR10 IT Audit Practice

UC2APR10 IT Audit Practice

  • Course description
    • NQF Level
      Bachelor's degree (Level 6 1. Cycle)
    • Area of Study
      Computing
    • Program of Study
      Digital Assurance and Security Management
    • ECTS
      10
    • Campus
      OnlinePLUS - Bergen, OnlinePLUS - Oslo, Online
    • Course Leader
      Piet Delport
Introduction

Language of Instruction and assessment: English
May be offered on Campus and Online.
May be offered as a separate course.

Included in the following bachelor's degrees:

  • Digital Assurance and Security Management
Course Aim(s)

This course aims to facilitate a simulated guided project to prepare students for performing an IT audit, offering practical exposure to industry practices. Students acquire knowledge of IT auditing fundamentals, including the IT audit process, IT general controls, IT security management reviews, governance and management of IT reviews, information systems acquisition, development, and implementation reviews, and information systems operations and business continuity reviews. They also develop skills in information collection, critical assessment of collected information, and reporting and communication of audit findings, including writing and visual literacy (diagrams and graphs). The course promotes competence in engaging with stakeholders and communicating the importance of IT audit practices, as well as understanding the role of IT audit within the broader landscape of Assurance.

Course Learning Outcomes
Knowledge

The student has knowledge of

K1 IT auditing fundamentals (i.e., the process of IT audit).
K2 IT general controls and IT security management reviews.
K3 governance and management of IT reviews.
K4 information systems acquisition, development and implementation reviews.
K5 information systems operations and business continuity reviews.
Skills

The student gain skills in

S1 collection of information (e.g., planning, note taking, interviewing).
S2 critical assessment of collected information (e.g., risk identification, non-compliance).
S3 reporting and communication of audit findings (e.g., writing, visual literacy (diagrams & graphs)).
General Competence

The student can demonstrate

G1 engagment and communicating with stakeholders on importance of IT audit practices.
G2 an understanding of the position of IT audit practice in the larger landscape of Assurance.
Course Topics
  • Audit brief from client • Analyses of IT strategy and landscape
  • Review and identification of gaps (misalignment between policies and artifacts)
  • Identification of risks and vulnerabilities
  • Recommendation of mitigating controls for each identified risk
  • Report and Presentation
Teaching Methods
  1. Teaching will be based on a hybrid-flexible approach. Instructor-led face-to-face learning is combined with online learning in a flexible course structure that gives students the option of attending sessions in the classroom, participating online, or doing both.
  2. All activities require active student participation in their own learning.
  3. Learning delivery methods and available resources will be selected to ensure constructive alignment with course content, learning outcomes and assessment criteria.
  4. Students will be taught using a mixture of guidance, self-study, and lecture material. Topics will be introduced in a series of weekly lectures. The guidance sessions will be directed practical exercises and reading in which students can explore topics with support from a teacher. This material will also require students to self-manage their time to ensure tasks are completed and the theory is fully understood. This will allow the students to fully engage with lectures and with their peers.
Resources and Equipment
  1. Learning resources are available in the LMS and include, but is not limited to:
    • literature and online reading material (essential and recommended)
    • streams, recordings and other digital resources, where applicable
    • video conferencing and communication platforms, if applicable
    • tools, software and libraries, where applicable
  2. Students must have access to an internet connection, and suitable hardware.
    • Accessing live streams and virtual laboratories requires a minimum broadband connection of 2Mbps (4Mbps recommended).
  3. Students working on their own laptop/computer are required to acquire appropriate communications software; e.g., webcam, microphone, headphones.
Prerequisite Knowledge

UC1AS105 Academic Skills 1 and UC2IAP10 IT Audit Principles , or equivalent course(s) must be passed before final exam can be submitted for assessment.

Reading List

The reading list for this course and any additional electronic resources will be provided in the LMS.

Study Workload

250 nominal hours.
Study workload applies to both Campus and Online students.

ActivityDuration
Teacher-led activity
30
Teacher-supported work
54
Self-study
166