The IT Audit Fundamentals for the GRC Analyst is a course that is designed to help junior IT Professionals who want to transition into cybersecurity. The aim is for you to use a fundamental role of the GRC profession auditing; to aid in helping you better understand security controls implementations as a means to mitigate security risks to an organizations information security assets.
Who this course is for?
This is course is designed for the junior GRC Analyst
Persons who need to understand the basics of IT Auditing
Persons who want to pivot into cybersecurity
What are the requirements for this course
An understanding of the basic operations\functions of a computer network
Basic understanding of IT security principles
What you will learn
In this course you will cover the following topics:
PART 1
SECTION 1
What is the main focus of the audit process?
Getting started with your audit
What is a network security audit?
Why do we need a network security audit?
Key concepts of network security auditing
SECTION 2
Understanding the fundamentals of an audit
Understanding the types of audits
Foundational pillars for network audits
SECTION 3
Risk management in a network audit
Risk assessment
Risk management strategies
SECTION 4
Industry standards and governance framework
Understanding the auditors role
Understanding the auditing process
SECTION 5
Performing a network security audit
Network audit checklist
Performing an AWS Security audit
PART 2
Compliance Auditing
ISO 27001 ISMS
This is course is designed for the Junior GRC Analyst. Persons who need to understand the basics of IT Auditing. Persons who want to pivot into cybersecurity.