Boost your auditing expertise with our Auditing Business Applications CPE Training—a three-day intensive seminar designed to provide a thorough understanding of auditing methodologies, internal controls, and best practices for business application systems. Earn 18 CPE credits while advancing your knowledge in IT application controls (ITACs), risk assessment, and compliance.

This program is tailored for a wide range of professionals, including IT auditors, compliance officers, finance leaders, system developers, and IT security professionals, equipping you with practical techniques to ensure the integrity, security, and compliance of critical business systems like ERP, CRM, payroll, and cash management applications.

Why Attend?

Earn 18 CPE Credits

Satisfy your professional CPE requirements, including Yellow Book (YB) credits, with this NASBA-approved training.

Enhance IT Audit Expertise

Understand and apply IT auditing principles and techniques to evaluate and improve internal controls for critical business applications.

Protect Organizational Integrity

Learn to identify vulnerabilities in business applications and develop robust control measures, ensuring operational security and compliance.

Gain Practical Insights

Dive into real-world case studies and interactive sessions, gaining actionable knowledge from seasoned instructors with deep industry expertise.

What You’ll Learn

This comprehensive course provides participants with the skills and framework needed to audit a variety of business systems effectively. Key learning outcomes include:

IT Auditing Fundamentals: Understand the core principles of auditing business application systems and identifying critical control points.
Risk Assessment: Evaluate application software risks, prioritize vulnerabilities, and implement effective control measures.
ITAC Design and Testing: Learn the best practices for testing and improving IT application controls to enhance system security.
Methodologies and Frameworks: Utilize industry standards like COSO, COBIT, and NIST to guide application auditing practices.
Internal Control Evaluation: Master techniques for assessing the operational processes and internal controls of systems like revenue, disbursements, inventory, payroll, and treasury.

Course Agenda

This three-day training program combines 18 hours of engaging learning sessions with expert instruction and interactive activities.

Day 1:

Introduction to Application Auditing
- COSO Framework, IT auditing basics, and the role of ITACs
Exploring IT General Controls (ITGCs) and Application Controls
Risk Ranking and Inventorying Business Applications

Day 2:

Methodologies for Auditing Business Applications
- SDLC, DevSecOps, Agile development, and testing controls
Security and Access Management
- User profiles, provisioning, and change implementation controls
Controls for Input, Processing, and Output

Day 3:

Backup and Recovery Controls
- Understanding RTOs and RPOs
Reporting Audit Findings
- Documenting results and recommendations for improvement
Case Studies and Best Practice Discussions

Who Should Attend?

This training is ideal for professionals involved in auditing, compliance, and application management, including:

IT Auditors enhancing their expertise in business systems
Compliance Officers ensuring adherence to industry regulations
Finance and Accounting Professionals safeguarding application integrity
System Developers and IT Security Teams improving ITACs

No prerequisites are required, making this course accessible to professionals at all levels of experience.

Event Details

When: Every 8 weeks, Tuesday–Thursday, 9 a.m.–3 p.m. CST, with a lunch break from 12–12:30 p.m.
Where: Online, group-based, live training
CPE Credits: 18 credits (50 minutes of instruction per credit hour)
Private Training Available: Tailored sessions available for teams of two or more.

Why Auditing Business Applications Matters

Business applications power essential functions like financial reporting, payroll, and customer management. A failure in these systems—whether due to vulnerabilities, mismanagement, or weak internal controls—can jeopardize operational efficiency, compliance, and reputation.

Auditing these applications ensures they function securely and reliably, protecting sensitive data and meeting regulatory requirements. By attending this course, participants will gain the skills to implement strong internal controls, assess risk comprehensively, and improve application performance and security.

Register Today

Don’t miss this opportunity to advance your career and fortify your organization’s critical applications. The Auditing Business Applications CPE Training provides the insights and tools you need to succeed in safeguarding operational integrity and compliance.

Register now to secure your spot in this valuable training event and take the next step in mastering business application auditing.

Sign up today and take your professional skills to new heights!

Auditing Business Applications

Name: Auditing Business Applications
Brand: IT-Auditing

$2,000.00

Dates Available

Quantity

Offered on Tuesday-Thursday once every eight weeks in three six hour sessions for 18 CPE credits.

The sessions will run from 9:00 a.m. to 3:00 p.m. Central Time Zone.

There will be a lunch break from 12:00 noon to 12:30 p.m. each day.

We can schedule private events on your timetable for two or more attendees.
Information Technology controls are categorized as General Controls and Application Controls. This “Auditing Business Applications” seminar can be paired with our one-day, 8 CPE-credit, “IT General Controls” seminar, or taken as a stand-alone class.

As a stand-alone class, we will briefly cover ITGCs but focus on ITACs…how the business applications are identified and risk-ranked, and how their controls are documented, assessed, and improved.

We will cover various methodologies from COBIT, NIST, ISO, PMI, etc. and terminologies such as SDLC, DevSecOps, Agile Development and Testing, Identity Access and Management (IAM), Application Programming Interfaces (APIs), Immutable Backups, Recovery Point Objectives (RPOs), Recovery Time Objectives (RTOs), Moves-to-Production (MTPs), and others.
Attendees will:

Understand the fundamentals of IT auditing and auditing business applications, including the role and importance of auditing in ensuring application system integrity, security, and control.

Gain knowledge of auditing methodologies and techniques specifically applicable to business applications.

Learn how to assess and manage risks associated with business applications, including identifying potential application vulnerabilities and implementing appropriate controls.

Acquire skills to test and evaluate the effectiveness of internal controls within business applications.

Develop an understanding of the criteria for inventorying and risk-ranking business applications.

Enhancing critical thinking and problem-solving abilities through case studies and discussion of instructors’ ITAC audits.

Build communication and reporting skills to effectively communicate audit findings and recommendations to stakeholders.

Obtain a comprehensive framework for conducting successful audits of business applications and ensuring compliance with organization and industry best practices.
Introduction and Concepts: COSO Frameworks, Internal Control, Internal Auditing, IT Auditing

Overview of ITGCs, ITACs, and the Sarbanes-Oxley Act

How Business Applications Work

The Buy vs. Build Decision of Application Software

On-Premise vs. Hosted Applications

The Systems Development Lifecyle and DevSecOps

Personnel Responsibilities for Applications: IT Management, Users, Business System Analysts, Application Developers and Software Engineers, IT Security, Computer Operations, Software QA, Testers, Consultants, Auditors

Control Objectives of Business Application System Audits

Planning Application Audits, Assessing Application Risk, and Determining the Scope

Performing Application Audits: Control Identification, Sampling and Testing Methods, Assessment, Workpaper Documentation

Application Security Provisioning and De-Provisioning, User Profiles/ Roles, Change Control, and Implementation Control

Controls over Application Input, Processing, and Output

Application System Backup and Recovery, RTO and RPO

Accounting for Software Costs

Reporting the Results of the Business Application Audit

Recommendations for ITAC Improvements
The Auditing Business Applications CPE event is a comprehensive training program designed to equip participants with the necessary skills and knowledge to effectively audit business applications. This webinar event covers a wide range of topics related to auditing various types of business applications, including enterprise resource planning (ERP) systems, customer relationship management (CRM) software, and other critical applications used in organizations.

During the interactive event, participants will delve into the importance of auditing business applications in today's digital landscape and understand the risks associated with these applications. The program focuses on providing practical guidance and best practices for evaluating controls within business applications, conducting risk assessments, performing data analysis, and ensuring compliance with relevant regulations.

Led by an industry expert, the event offers interactive sessions, real-world case studies, and discussions that encourage active participation and knowledge sharing among attendees. The goal is to enhance participants' auditing capabilities, enabling them to assess the effectiveness of controls, identify potential vulnerabilities, and contribute to the overall governance and risk management processes within their organizations.

Whether you are an internal auditor, IT professional, or compliance officer, this CPE event provides valuable insights and tools to enhance your ability to audit and assess business applications. Register now at Compliance-Seminars.com to secure your spot in this engaging and informative training opportunity.

Auditing Business Applications

Details on Event Presentation

CPE Event Highlights

Learning Objectives

Key Issues on the Agenda

NASBA Program Disclosure

Summary of the Subject Matter