book

Complete Guide to the CITP Body of Knowledge

Name: Complete Guide to the CITP Body of Knowledge
Author: Tommie W. Singleton
ISBN: 9780870519529

by Tommie W. Singleton

May 2017

Beginner

256 pages

8h 39m

English

Wiley

Read now

Unlock full access

Cover Page
Title Page
Copyright Page
Contents
Risk Assessment: Dimension 1
1.0 Introduction1.1 Types of Risk Assessment1.1.1 Risk Assessment Life Cycle Methodology1.1.2 Enterprise Risk Assessment1.1.3 Financial Statement Risk Assessment1.1.4 IT Risk Assessment1.1.5 Security Risk Assessment (audits)1.2 Understanding Business Environment and Business Processes1.2.1 Executive Management Functions1.2.2 Complexity of Business Entities1.2.3 Automated Bu sin ess Pr ocesses1.3 Audit Risk Model for Financial Reporting1.3.1 Assessing Inherent Risk1.3.2 Assessing Control Risk1.3.3 Risk of Material Misstatement1.4 Develop a Walkthrough Plan1.4.1 Determine Relevant Business Processes and Controls to Review1.5 Draft Risk Assessment Report1.5.1 Based on Evidence from Walkthroughs1.5.2 Based on Other Applied Procedures1.5.3 Usefulness of Best Practices
Fraud Considerations: Dimension 2
2.0 Introduction2.1 Description & Characteristics of Fraud2.1.1 Definition of Fraud2.1.2 Fraud Tree2.1.3 Fraud Triangle2.1.4 Scope of Fraud2.1.5 Profile of the Executive Perpetrator2.2 SAS No. 99 & Assessing Rmm Due to Fraud2.2.1 The Importance of Exercising Professional Skepticism2.2.2 Fraud Risk Factors2.2.3 Behavioral Red Flags of Executive Fraudsters2.2.4 Management Override of Controls2.2.5 The SAS No. 99 Process – Assessing the RMM Due to Fraud2.3 Prevention & Deterrence2.4 Detection & Investigation2.4.1 Use of IT Skills in Fraud Investigations2.4.2 Use of IT in Fraud Investigations2.4.3 Regulatory Standards2.5 Digital Evidence2.5.1 Legal Rules & Procedures2.5.2 E-discovery Rules & Procedures2.5.3 Federal & State Laws
Internal Control & Information Technology General Controls: Dimension 3
3.0 Introduction3.1 Internal Controls3.1.1 Understanding of Internal Controls3.1.2 Management Considerations for Evaluating Internal Controls3.2 IT General Controls3.2.1 Control Environment3.2.2 Change Management3.2.3 Logical Access3.2.4 Backup & Recovery3.2.5 Service Organizations3.3 Application Controls3.4 Information Security3.4.1 Understanding IT Policies, Procedures, and Standards to Ensure Information/Data Security3.4.2 Understanding Hardware and Physical Controls to Ensure Information/Data Security3.4.3 Understanding Software and Other Process Controls to Ensure Information/Data Security3.4.4 Understanding Concepts of Security Authorization and Authentication3.4.5 Understanding Concepts of Encryption3.5 Preparing an IT Audit Plan3.5.1 Scoping of the IT Audit or Review
Evaluate, Test, and Report: Dimension 4
4.0 Introduction4.1 Types of Audit & Assurance Services4.1.1 Financial Statement Audit4.1.2 Assurance Services for Service Organizations4.1.3 Other IT Assurance Services and IT Reviews4.2 Auditing Techniques & Procedures4.2.1 Planning for Tests of Controls4.2.2 Evidence Gathering4.2.3 Sampling Considerations4.2.4 Technical Tools and Techniques (CAATs)4.3 Assessment of Controls4.3.1 Deficiency Evaluation of IT-Related Controls4.3.2 Materiality/Impact to the Entity4.3.3 Assessment Reporting4.4 Information Assurance4.4.1 Information Quality4.4.2 Information Presentation4.4.3 Information Timeliness4.4.4 Information Auditability
Information Management & Business Intelligence: Dimension 5
5.0 Introduction5.1 Information Management5.1.1 Information Lifecycle Management5.1.2 Compliance5.1.3 Information and Data Modeling5.2 Business Process Improvement5.2.1 Business Process Management5.2.2 Systems Solution Management5.2.3 Application Integration Management5.3 Data Analysis & Reporting Techniques5.3.1 Infrastructure/Platforms Typically Employed5.3.2 Data Preparation5.3.3 Available Functions, Tools, and Approaches5.3.4 Tool Selection Process5.4 Performance Management5.4.1 Budget & Profitability Management5.4.2 Performance Metrics and Reporting

Content preview from Complete Guide to the CITP Body of Knowledge

Become an O’Reilly member and get unlimited access to this title plus top books and audiobooks from O’Reilly and nearly 200 top publishers, thousands of courses curated by job role, 150+ live events each month,
and much more.

Read now

Unlock full access

More than 5,000 organizations count on O’Reilly

O’Reilly covers everything we've got, with content to help us build a world-class technology community, upgrade the capabilities and competencies of our teams, and improve overall team performance as well as their engagement.

Julian F.

Head of Cybersecurity

I wanted to learn C and C++, but it didn't click for me until I picked up an O'Reilly book. When I went on the O’Reilly platform, I was astonished to find all the books there, plus live events and sandboxes so you could play around with the technology.

Addison B.

Field Engineer

I’ve been on the O’Reilly platform for more than eight years. I use a couple of learning platforms, but I'm on O'Reilly more than anybody else. When you're there, you start learning. I'm never disappointed.

Amir M.

Data Platform Tech Lead

I'm always learning. So when I got on to O'Reilly, I was like a kid in a candy store. There are playlists. There are answers. There's on-demand training. It's worth its weight in gold, in terms of what it allows me to do.

Mark W.

Embedded Software Engineer

Publisher Resources

ISBN: 9780870519529Purchase book

Cloud Computing

Data Engineering

Data Science

AI & ML

Programming Languages

Software Architecture

IT/Ops

Security

Design

Business

Soft Skills

Complete Guide to the CITP Body of Knowledge

by Tommie W. Singleton

Become an O’Reilly member and get unlimited access to this title plus top books and audiobooks from O’Reilly and nearly 200 top publishers, thousands of courses curated by job role, 150+ live events each month,
and much more.