top of page
Information Technology General Controls (ITGCs) - In-Person

Information Technology General Controls (ITGCs) - In-Person

Unveiling the Essence of ITGCs: A CPE Event for Empowering Digital Governance


Discover a transformative exploration of Information Technology General Controls (ITGCs) at our upcoming event. Immerse yourself in the pivotal realm of digital governance, where meticulous controls and robust frameworks lay the foundation for resilient, secure, and efficient IT operations.


Embracing Digital Governance Excellence


At this dynamic event, we delve deep into the core principles, strategies, and best practices of ITGCs that form the bedrock of digital governance. Our ITGC experts will illuminate the significance of ITGCs in safeguarding critical information assets, fortifying data integrity, and ensuring compliance with regulatory standards.


Gain invaluable insights into:

  • Strategic Frameworks: Explore the strategic frameworks and industry standards underpinning ITGCs, empowering you to align your organization's IT control environment with best-in-class practices.
  • Audit Preparedness: Uncover the key facets of audit planning, risk assessment, and reporting vital for demonstrating the effectiveness of ITGCs to internal and external auditors.
  • Compliance Assurance: Navigate the intricate landscape of compliance requirements and discover how robust ITGCs play a pivotal role in upholding regulatory compliance across diverse industries.


Aligning Authenticity with Expertise


Our commitment to authenticity aligns with a genuine understanding of your professional needs to understand ITGCs and their assurance. By fostering transparent, insightful conversations, we aim to build a bridge of trust and connection, ensuring that the knowledge gained at this CPE event resonates profoundly with your aspirations for IT governance excellence.


Engage with Us


Participate in this illuminating event to elevate your understanding of ITGCs and to forge connections with industry peers who share your passion for digital governance mastery. Seize this opportunity to ignite your ITGC expertise and chart a course towards fortified digital governance within your organization.

  • Details on Event Presentation

    Offered on Mondays at 8:45 a.m. to 4:45 p.m. 

    We can schedule private events on your timetable for two or more attendees.

    NASBA Program Disclosure

    Program Level of Understanding: Basic
    Prerequisites: None
    Advance Preparation: None
    Delivery Format: On-site Training (Group-Live); Seminar (Group-Live)

    NASBA Field(s) of Study: Auditing, Information Technology
    CPE Credits: 8, based on 50 minutes of instruction per hour

  • CPE Event Highlights

    Information Technology controls are described in two categories: General Controls (ITGCs) and Application Controls.

    The seminar will cover ITGCs within the information technology (IT) environment, computer operations, access to programs and data, program development and program changes. IT application controls will be discussed concerning transaction processing controls.

    The COBIT Framework (Control Objectives for Information Technology) is the most widely-used ITGC framework being used in SOX compliance efforts. This COBIT framework will be covered in detail concerning the typical ITGCs that need to be addressed. The COBIT frameword defines how to bring quality control in information technology function concerning ITGCs.

  • Learning Objectives

    Attendees will:

    • Understand the similarities and differences between the ITIL and COBIT standards.

    • Learn the compliance requirements of the Sarbanes-Oxley Act.

    • Discuss how internal controls can manage risk and reduce fraud.

    • Identify methods for improving the effectiveness of information process to effect the profitability of businesses

  • Key Issues on the Agenda

    Section 1 - Introduction and Background

    • Instructor's Perspective on IT Myths

    • What is IT Governance?

    Section 2 - Internal Control Frameworks

    • What are "Internal Controls"?

    • IT Risks

    • Balancing Risks and Controls

    • Internal Control Terminology

    • IT Control "Frameworks"

    Section 3 - Managing & Governing the IT Organization

    • IT Organization Risk and Control

    • IT Organization Relationships

    • CoBIT Domain: Plan & Organize

    Section 4 - Managing the System Life Cycle

    • CobiT Domain: Acquire & Implement

    • Managing the Systems Life Cycle

    • System Development and Change Controls

    • Change Control Board

    • System Change and Development Controls - Risk & Control Objectives

    • System Change and Development Controls - Internal Controls

    Section 5 - Securing the Physical and Logical IT Environment

    • CoBIT Domain: Deliver & Support

    • Physical Security

    • Logical Security

    • Password Security

    • Anti-Virus Configuration

    • Security - Risk & Control Objectives

    • Security - Internal Controls

    Section 6 - - Managing Computer Operations

    • CoBIT Domain: Deliver & Support

    • Managing Computer Operations

    • Computer Operations - Risk & Control Objectives

    • Computer Operations - Internal Controls

    Section 7 - Managing the Continuity of IT Services

    • CoBIT Domain: Deliver & Support

    • Managing the Continuity of IT Services

    • IT Disaster Recovery Plan

    Section 8 - Monitoring the Effectiveness of IT

    • CoBIT Domain: Monitor and Evaluate

    • Monitoring the Effectiveness of IT

    Section 9 - IT Compliance with the Sarbanes-Oxley Act

    • SOX Titles

    • Mapping to PCAOB and CoBIT

    • Systems for SOX Compliance

    • Procedures for IT SOX Compliance

    • Tests for IT SOX Compliance

    Section 10 - Going Forward

    • Regulatory Environment

    • Long-Term Effects of SOX

    • Roadmap to IT Compliance

    • Dave's Lessons Learned

  • Summary of the Subject Matter

    This CPE event "Information Technology General Controls (ITGCs) - In-Person" is designed to provide a comprehensive exploration of the best practices and considerations surrounding information technology general controls (ITGCs) using the COBIT Framework as criteria.

    This event aims to equip professionals with the knowledge and insights necessary to ensure robust IT governance, risk management, and compliance within their organizations.

    Key topics addressed in this event may include:

    • IT Governance Frameworks: In-depth discussions on established IT governance frameworks, highlighting their significance in aligning ITGC activities with organizational objectives and regulatory requirements.

    • Risk Assessment and Management: Insights into conducting effective risk assessments, identifying IT vulnerabilities, and implementing risk management strategies to safeguard critical assets and data.

    • Security Controls Implementation: Guidance on implementing and monitoring IT security controls, emphasizing the protection of sensitive information, prevention of data breaches, and adherence to privacy regulations.

    • Compliance and Audit Considerations: Best practices for ensuring compliance with industry standards and regulations, as well as strategies for preparing and responding to ITGC audits.

    • Emerging Technologies Impact: Exploration of the impact of emerging technologies on ITGCs, including considerations for cloud computing, cybersecurity advancements, and digital transformation initiatives.

    By addressing these crucial aspects, the CPE event endeavors to empower professionals with the knowledge and tools necessary to navigate the evolving landscape of ITGCs, fostering a secure and resilient IT environment within their organizations. Quality control in information technology function will lead to lower costs and better results for any organization.

  • Authoritative Sources

    After attending the CPE event focused on ITGC's (Information Technology General Controls), it's essential to continue expanding your knowledge with authoritative sources in this domain. Here are the relevant sources along with their web links:

    • ISACA - Information Systems Audit and Control Association
      • ISACA offers a wealth of resources related to information systems audit, IT governance, and control practices. Exploring their COBIT materials can provide valuable insights into audit planning, controls implementation, and reporting best practices specific to ITGCs.
    • The Institute of Internal Auditors (IIA) - IT Audit and Assurance Guidance
      • The IIA provides comprehensive guidance and resources for IT audit professionals, covering areas such as audit planning, risk assessment, and reporting tailored to the context of IT general controls. Engaging with their materials can further enrich your understanding of ITGC audit processes.
    • COBIT - Information & Technology Governance Framework
      • COBIT offers a robust framework for information and technology governance, including resources related to IT controls, audit planning, and reporting. Exploring their framework can provide a structured approach to aligning IT activities with organizational objectives, including audit planning and reporting for ITGCs.

    By leveraging these authoritative sources, attendees can deepen their understanding of audit planning, implementation, and reporting specific to IT general controls, thereby enhancing their expertise in this crucial domain.

bottom of page