Year of Study:	4
Credit Units:	3
Duration:	45hours
Prerequisites:	MSIM 3202 IT Infrastructure & Security, or with the Instructor’s permission and upon endorsement of the relevant Department Head

This course explores organizational and managerial issues relevant to planning and conducting IT audit control activities. Having completed the module, students will have a thorough understanding of IT auditing process and understand ways of assessing information systems. This module is studying based on the first 4 domains of CISA (Certified Information Systems Auditor) Certification Job Practice Areas, including IT Audit Process and Strategies, IT Governance and Management, Risk Assessment Process, and Information Systems Development. Complemented by IT Infrastructure & Security knowledge, students will have a full understanding of all 5 domains of CISA Certification.

Upon completion of this module, students should be able to:

1. Implement information systems audit services in accordance with information systems audit standards, guidelines and best practices.


2. Evaluate an organization’s structure, policies, accountability, mechanisms and monitoring practices.


3. Evaluate information systems acquisition, development and implementation.


4. Evaluate the information systems operations, maintenance and support of an organization; and evaluate the business continuity and disaster recovery processes used to provide assurance that in the event of a disruption, IT services are maintained.