Week 1: Introduction to IT General Controls (ITGC)
Week 2: Access Control and User Management
Week 3: Change Management and System Development
Week 4: Data Backup, Recovery, and Security
Week 5: ITGC Auditing and Compliance
Week 6: Managing IT Risks
Week 7: Emerging Trends and Advanced Topics in ITGC
Week 8: ITGC Best Practices and Case Studies
Real-Time Project
This feature has been disabled by the administrator
Timeline: Week 1-3
Objective: Conduct an ITGC assessment for a fictional company. The goal is to identify key ITGC components, evaluate their effectiveness, and identify gaps.
Project Tasks:
-
Understand the Organization’s Structure:
- Define the company’s business model, IT infrastructure, and key systems (e.g., ERP, CRM).
- Identify critical assets, such as financial systems, sensitive data, and intellectual property.
-
Assess ITGC Components:
- Access Controls: Evaluate user authentication mechanisms, RBAC implementation, and segregation of duties (SoD) controls.
- Change Management: Review the company’s change management process and identify any missing documentation or inadequate controls.
- Data Backup & Recovery: Assess the current backup strategies and disaster recovery plans for effectiveness and completeness.
-
Deliverable:
- Provide a report detailing the organization’s current ITGC framework.
- Identify strengths and weaknesses in access control, change management, and data security.
- Suggest improvements for enhancing overall ITGC effectiveness.