Date/Time
Date(s) - 24/07/2023 - 28/07/2023
8:30 am - 3:30 pm
Location
Movenpick Hotel Apartments Downtown Dubai
About this course:
Part 3 – Business Knowledge for Internal Auditing
COURSE OVERVIEW
The new CIA exam Part 3 topics tested include governance and business ethics; risk management; organizational structure, including business processes and risks; communication; management and leadership principles; information technology and business continuity; financial management; and the global business environment.
TRAINING METHODOLOGY
The practical and results-oriented CIA® training course is based on adult learning concept. It incorporates short inspiring lectures with captivating PowerPoint slides; videos to enhance learning; ongoing discussions, training activities to reinforce key concepts within a fun learning environment.
- Note: All items in this section of the syllabus will be tested at the Awareness knowledge level unless otherwise indicated below.
- (P) = Candidates must exhibit proficiency (thorough understanding and ability to apply concepts) in these topic areas
- (A) = Candidates must exhibit awareness (knowledge of terminology and fundamentals) in these topic areas.
TOPICS COVERED
Domain I – Business Acumen (35%)
A. Organizational Objectives, Behavior, and Performance
- Describe the strategic planning process and key activities (objective setting, globalization and competitive considerations, alignment to the organization’s mission and values, etc.) (Basic)
- Examine common performance measures (financial, operational, qualitative vs. quantitative, productivity, quality, efficiency, effectiveness, etc.). (Proficient)
- Explain organizational behavior (individuals in organizations, groups, and how organizations behave, etc.) and different performance management techniques (traits, organizational politics, motivation, job design, rewards, work schedules, etc.). (Basic)
- Describe management’s effectiveness to lead, mentor, guide people, build organizational commitment, and demonstrate entrepreneurial ability. (Basic)
B. Organizational Structure and Business Processes
- Appraise the risk and control implications of different organizational configuration structures (centralized vs. decentralized, flat structure vs. traditional, etc.). (Basic)
- Examine the risk and control implications of common business processes (human resources, procurement, product development, sales, marketing, logistics, management of outsourced processes, etc.). (Proficient)
- Identify project management techniques (project plan and scope, time/team/resources/cost management, change management, etc.). (Basic)
- Recognize the various forms and elements of contracts (formality, consideration, unilateral, bilateral, etc.). (Basic)
C. Data Analytics
- Describe data analytics, data types, data governance, and the value of using data analytics in internal auditing. (Basic)
- Explain the data analytics process (define questions, obtain relevant data, clean/normalize data, analyze data, communicate results). (Basic)
- Recognize the application of data analytics methods in internal auditing (anomaly detection, diagnostic analysis, predictive analysis, network analysis, text analysis, etc.). (Basic)
Domain II – Information Security (25%)
A. Information Security
- Differentiate types of common physical security controls (cards, keys, biometrics, etc.). (Basic)
- Differentiate the various forms of user authentication and authorization controls (password, two-level authentication, biometrics, digital signatures, etc.) and identify potential risks. (Basic)
- Explain the purpose and use of various information security controls (encryption, firewalls, antivirus, etc.) . (Basic)
- Recognize data privacy laws and their potential impact on data security policies and practices. (Basic)
- Recognize emerging technology practices and their impact on security (bring your own device [BYOD], smart devices, internet of things [IoT], etc.). (Basic)
- Recognize existing and emerging cybersecurity risks (hacking, piracy, tampering, ransomware attacks, phishing attacks, etc.). (Basic)
- Describe cybersecurity and information security-related policies. (Basic)
B. Emerging Technologies and Cybersecurity
- Recognize emerging technology practices and their impact on security (bring your own device [BYOD], smart devices, internet of things [IoT], etc.)
- Recognize existing and emerging cybersecurity risks (hacking, piracy, tampering, ransomware attacks, phishing attacks, etc.)
- Describe cybersecurity and information security-related policies
Domain III – Information Technology (20%)
A. Application and System Software
- Recognize core activities in the systems development lifecycle and delivery (requirements definition, design, developing, testing, debugging, deployment, maintenance, etc.) and the importance of change controls throughout the process. (Basic)
- Explain basic database terms (data, database, record, object, field, schema, etc.) and internet terms (HTML, HTTP, URL, domain name, browser, click-through, electronic data interchange [EDI], cookies, etc.). (Basic)
- Identify key characteristics of software systems (customer relationship management [CRM] systems; enterprise resource planning [ERP] systems; and governance, risk, and compliance [GRC] systems; etc.). (Basic)
B. IT Infrastructure and IT Control Frameworks
- Explain basic IT infrastructure and network concepts (server, mainframe, client-server configuration, gateways, routers, LAN, WAN, VPN, etc.) and identify potential risks. (Basic)
- Define the operational roles of a network administrator, database administrator, and help desk. (Basic)
- Recognize the purpose and applications of IT control frameworks (COBIT, ISO 27000, ITIL, etc.) and basic IT controls. (Basic)
C. Disaster Recovery
- Explain disaster recovery planning site concepts (hot, warm, cold, etc.). (Basic)
- Explain the purpose of systems and data backup. (Basic)
- Explain the purpose of systems and data recovery procedures. (Basic)
Domain IV – Financial Management (20%)
A. Financial Accounting and Finance
- Identify concepts and underlying principles of financial accounting (types of financial statements and terminologies such as bonds, leases, pensions, intangible assets, research and development, etc.). (Basic)
- Recognize advanced and emerging financial accounting concepts (consolidation, investments, fair-value partnerships, foreign currency transactions, etc.). (Basic)
- Interpret financial analysis (horizontal and vertical analysis and ratios related to activity, profitability, liquidity, leverage, etc.). (Proficient)
- Describe revenue cycle, current asset management activities and accounting, and supply chain management (including inventory valuation and accounts payable). (Basic)
- Describe capital budgeting, capital structure, basic taxation, and transfer pricing. (Basic)
B. Managerial Accounting
- Explain general concepts of managerial accounting (cost-volume-profit analysis, budgeting, expense allocation, cost-benefit analysis, etc.). (Basic)
- Differentiate costing systems (absorption, variable, fixed, activity-based, standard, etc.). (Basic)
- Distinguish various costs (relevant and irrelevant costs, incremental costs, etc.) and their use in decision making. (Basic)
Course Duration: 5 days
CPE Credits: 26
Level: All
Pre-requisites: None
Bookings
Bookings are closed for this event.