SlideShare a Scribd company logo

Intorduction to Cisa

Download as PPTX, PDF
A
Ali Katouzian

This document provides an introduction to the Certified Information Systems Auditor (CISA) certification. It discusses the historical background that led to increased regulation and oversight of financial reporting and audits. Specifically, it describes several major corporate accounting scandals in the early 2000s that involved financial fraud and resulted in new laws like Sarbanes-Oxley. These scandals showed the need for independent audits and assessment of internal controls to protect assets and ensure the accuracy of financial reporting provided to shareholders. The document concludes by outlining some of the topics that will be covered in future CISA training, including financial concepts, audit processes, information governance, and disaster recovery from an auditor's perspective.

1 of 14
INTRODUCTION TO CISA Certified information systems Auditor A Historical approach 10.October.2016
HISTORICAL BACKGROUND 10/7/2016Introduction to CISA 2
TERMINOLOGY  What is an Audit  A review of the past  Presenting the evidence seen  Who is an Auditor  The qualified person(s) skilled with the right set of skills to evaluate and assess the evidence 10/7/2016Introduction to CISA 3
FOR WHAT PURPOSE?  The Auditor Audits the Auditee. At some point in time the Audit team will begin to evaluate and assess the financial performance of the company. Over a defined period of time.  The Auditor(s) are independent They can produce an unbiased representation of Auditees financial statements. It should contain high assurance of truth, and a true representation of Auditee’s financial stance. Assurance of compliancy with the legal norms and standards, for the attention of Share holders. 10/7/2016Introduction to CISA 4
JUSTIFICATION OF IT AUDIT 10/7/2016Introduction to CISA 5
ITALY’S PARMELAT 2003  The executives admitted an account in Cayman Islands holding 4B € was non-existent. The company was worth 14B € and it collapsed In addition four Banks were indicted 10/7/2016Introduction to CISA 6
ADELPHIA COMMUNICATION 2002  The CEO and Son were found Guilty of two counts of Fraud  They misrepresented $1.6B of assets in Balance sheet  Stole $51M The company collapsed Eventually Comcast & Time warner Purchased it 10/7/2016Introduction to CISA 7
AIG GROUP  The CFO bloated the income by $3.9B  Silence the analysts who were concerned about the decline in reserves Company had to pay $1.6 B in damages 10/7/2016Introduction to CISA 8
ARTHUR ANDERSON (AUDITORS) & ENRON (AUDITEE)  The CEO ordered staff to shred documents to obstruct Enron being investigated Conviction for executives of both companies Enron board was convicted of running the largest scam off Balance sheet in the world 10/7/2016Introduction to CISA 9
WORLDCOM  The CEO filed false reports concerning $11B accounting fraud.  The CFO testified against the CEO  The controller admitted he ordered staff to create Billions $ in adjustment to help rise stock values worldwide. The CEO ended up convicted to serve a 25 years Sentence This created SARBANES OXLEY ACT of 2002 10/7/2016Introduction to CISA 10
ALL IN ALL MORE THAN 1000 SUCCESSFUL CORPORATE CONVICTIONS TOOK PLACE BY THE US SECURITIES AND EXCHANGE FROM 2002 TO 2005  92 corporate Presidents  14 COO  98 Vice Presidents  86 CEOs  40 CFOs  17 Attorney lawyers serving as Council 10/7/2016Introduction to CISA 11
WHAT DID THESE MEAN FOR BUSINESSES  Business world leaders were forced into a control frenzy and this lead to the Creation of various acts  SOX  HIPPA  FISMA  SCADA  FFIEC  PCI  Basel lI Focus was on understanding IT systems, operational integrity, Internal controls all of them to protect assets. Known as Regulatory controls So why all these regulations 10/7/2016Introduction to CISA 12
BECAUSE WE HAVE TO MAKE SURE THE EXECUTIVES ARE HELD ACCOUNTABLE FOR THE ACCURACY OF FINANCIAL REPORTS AND DATA PRESENTED TO SHARE HOLDERS  The Business Requirement dictates  Evidence of Business Integrity  Evidence of Internal Controls to Protect Valuable assets 10/7/2016Introduction to CISA 13
SO WHAT NEXT…  Introduction to financial concepts  Continuation of CISA audit processes  IT Governance  Information Asset Protection  Disaster Recovery and Business continuity from CISA point of view Please advise ……. 10/7/2016Introduction to CISA 14

Recommended

CISA Domain 1 - IS Auditing (day 1)
CISA Domain 1 - IS Auditing (day 1)CISA Domain 1 - IS Auditing (day 1)
CISA Domain 1 - IS Auditing (day 1)Cyril Soeri
 
PhD Presentation (Doctorate)
PhD Presentation (Doctorate)PhD Presentation (Doctorate)
PhD Presentation (Doctorate)
Sharif Omar Salem
 
CISA exam 100 practice question
CISA exam 100 practice questionCISA exam 100 practice question
CISA exam 100 practice question
Arshad A Javed
 
CISA Training - Chapter 2 - 2016
CISA Training - Chapter 2 - 2016CISA Training - Chapter 2 - 2016
CISA Training - Chapter 2 - 2016
Hafiz Sheikh Adnan Ahmed
 
Introduction to Mediation using SPSS
Introduction to Mediation using SPSSIntroduction to Mediation using SPSS
Introduction to Mediation using SPSS
smackinnon
 
CISA Training - Chapter 1 - 2016
CISA Training - Chapter 1 - 2016CISA Training - Chapter 1 - 2016
CISA Training - Chapter 1 - 2016
Hafiz Sheikh Adnan Ahmed
 
The Sarbanes Oxley Act And Enron Essay
The Sarbanes Oxley Act And Enron EssayThe Sarbanes Oxley Act And Enron Essay
The Sarbanes Oxley Act And Enron Essay
Diane Allen
 
Pcob Section 101
Pcob Section 101Pcob Section 101
Pcob Section 101
Erin Torres
 

Recommended

CISA Domain 1 - IS Auditing (day 1)
CISA Domain 1 - IS Auditing (day 1)CISA Domain 1 - IS Auditing (day 1)
CISA Domain 1 - IS Auditing (day 1)Cyril Soeri
 
PhD Presentation (Doctorate)
PhD Presentation (Doctorate)PhD Presentation (Doctorate)
PhD Presentation (Doctorate)
Sharif Omar Salem
 
CISA exam 100 practice question
CISA exam 100 practice questionCISA exam 100 practice question
CISA exam 100 practice question
Arshad A Javed
 
CISA Training - Chapter 2 - 2016
CISA Training - Chapter 2 - 2016CISA Training - Chapter 2 - 2016
CISA Training - Chapter 2 - 2016
Hafiz Sheikh Adnan Ahmed
 
Introduction to Mediation using SPSS
Introduction to Mediation using SPSSIntroduction to Mediation using SPSS
Introduction to Mediation using SPSS
smackinnon
 
CISA Training - Chapter 1 - 2016
CISA Training - Chapter 1 - 2016CISA Training - Chapter 1 - 2016
CISA Training - Chapter 1 - 2016
Hafiz Sheikh Adnan Ahmed
 
The Sarbanes Oxley Act And Enron Essay
The Sarbanes Oxley Act And Enron EssayThe Sarbanes Oxley Act And Enron Essay
The Sarbanes Oxley Act And Enron Essay
Diane Allen
 
Pcob Section 101
Pcob Section 101Pcob Section 101
Pcob Section 101
Erin Torres
 
How to "Audit" Company-Prepared Information for Your Committee Meetings
How to "Audit" Company-Prepared Information for Your Committee MeetingsHow to "Audit" Company-Prepared Information for Your Committee Meetings
How to "Audit" Company-Prepared Information for Your Committee Meetings
Swenson Advisors, LLP
 
Financial audit
Financial auditFinancial audit
Financial audit
EMAC Consulting Group
 
Sarbanes-Oxley act
Sarbanes-Oxley actSarbanes-Oxley act
Sarbanes-Oxley act
Rizze
 
Corporate governance
Corporate governanceCorporate governance
Corporate governance
Toba Khan
 
Sox presentation By DSA
Sox presentation By DSASox presentation By DSA
Sox presentation By DSA
Muhammad Daniyal Shahid
 
Technical Brief for Investment Funds
Technical Brief for Investment FundsTechnical Brief for Investment Funds
Technical Brief for Investment Funds
Loeb Smith Attorneys
 
ethical issues in Advanced Auditing and Accounting
ethical issues in Advanced Auditing and Accountingethical issues in Advanced Auditing and Accounting
ethical issues in Advanced Auditing and Accounting
amiranaguib121
 
INTERNATIONAL AUDITING STANDARDS -PPT.pptx
INTERNATIONAL AUDITING STANDARDS -PPT.pptxINTERNATIONAL AUDITING STANDARDS -PPT.pptx
INTERNATIONAL AUDITING STANDARDS -PPT.pptx
HeldaMaryA
 
Sarbanes-Oxley Act 2002
Sarbanes-Oxley Act 2002Sarbanes-Oxley Act 2002
Sarbanes-Oxley Act 2002Syed Shah
 
The Sarbanes-Oxley Act at 15 (EY Publication)
The Sarbanes-Oxley Act at 15 (EY Publication)The Sarbanes-Oxley Act at 15 (EY Publication)
The Sarbanes-Oxley Act at 15 (EY Publication)
Azhar Qureshi
 
The Sarbanes Oxley Act 2002
The Sarbanes Oxley Act 2002The Sarbanes Oxley Act 2002
The Sarbanes Oxley Act 2002
Antoinette Williams
 
S O X In Telecom Industry
S O X In Telecom IndustryS O X In Telecom Industry
S O X In Telecom Industryravindra sharma
 
ISA 701 (New) Communicating Key Audit Matters in the Independent Auditor’s Re...
ISA 701 (New) Communicating Key Audit Matters in the Independent Auditor’s Re...ISA 701 (New) Communicating Key Audit Matters in the Independent Auditor’s Re...
ISA 701 (New) Communicating Key Audit Matters in the Independent Auditor’s Re...
Crowe - Professional Auditors LV
 
Cost benefits of sox compliance
Cost benefits of sox complianceCost benefits of sox compliance
Cost benefits of sox compliance
Alok Singh
 
WORKING CAPITAL ANALYSIS.pptx about as solitaire infosys
WORKING CAPITAL ANALYSIS.pptx about as solitaire infosysWORKING CAPITAL ANALYSIS.pptx about as solitaire infosys
WORKING CAPITAL ANALYSIS.pptx about as solitaire infosys
VikasChoudhary368795
 
SOX Compliance for Ireland subsidiaries
SOX Compliance for Ireland subsidiariesSOX Compliance for Ireland subsidiaries
SOX Compliance for Ireland subsidiariesFergal O'Rourke Esq.
 
Sarbanes Oxley presentation
Sarbanes Oxley presentationSarbanes Oxley presentation
Sarbanes Oxley presentationMark Belec
 
GROUP 2 (1).pptx
GROUP 2 (1).pptxGROUP 2 (1).pptx
GROUP 2 (1).pptx
donaprimasari1
 
Sox In Telecom Industry
Sox In Telecom IndustrySox In Telecom Industry
Sox In Telecom Industry
Mahesh Panchal
 
Trends in Fund Upstarts
Trends in Fund UpstartsTrends in Fund Upstarts
Trends in Fund Upstarts
O'Connor Davies CPAs
 

More Related Content

Similar to Intorduction to Cisa

How to "Audit" Company-Prepared Information for Your Committee Meetings
How to "Audit" Company-Prepared Information for Your Committee MeetingsHow to "Audit" Company-Prepared Information for Your Committee Meetings
How to "Audit" Company-Prepared Information for Your Committee Meetings
Swenson Advisors, LLP
 
Financial audit
Financial auditFinancial audit
Financial audit
EMAC Consulting Group
 
Sarbanes-Oxley act
Sarbanes-Oxley actSarbanes-Oxley act
Sarbanes-Oxley act
Rizze
 
Corporate governance
Corporate governanceCorporate governance
Corporate governance
Toba Khan
 
Sox presentation By DSA
Sox presentation By DSASox presentation By DSA
Sox presentation By DSA
Muhammad Daniyal Shahid
 
Technical Brief for Investment Funds
Technical Brief for Investment FundsTechnical Brief for Investment Funds
Technical Brief for Investment Funds
Loeb Smith Attorneys
 
ethical issues in Advanced Auditing and Accounting
ethical issues in Advanced Auditing and Accountingethical issues in Advanced Auditing and Accounting
ethical issues in Advanced Auditing and Accounting
amiranaguib121
 
INTERNATIONAL AUDITING STANDARDS -PPT.pptx
INTERNATIONAL AUDITING STANDARDS -PPT.pptxINTERNATIONAL AUDITING STANDARDS -PPT.pptx
INTERNATIONAL AUDITING STANDARDS -PPT.pptx
HeldaMaryA
 
Sarbanes-Oxley Act 2002
Sarbanes-Oxley Act 2002Sarbanes-Oxley Act 2002
Sarbanes-Oxley Act 2002Syed Shah
 
The Sarbanes-Oxley Act at 15 (EY Publication)
The Sarbanes-Oxley Act at 15 (EY Publication)The Sarbanes-Oxley Act at 15 (EY Publication)
The Sarbanes-Oxley Act at 15 (EY Publication)
Azhar Qureshi
 
The Sarbanes Oxley Act 2002
The Sarbanes Oxley Act 2002The Sarbanes Oxley Act 2002
The Sarbanes Oxley Act 2002
Antoinette Williams
 
S O X In Telecom Industry
S O X In Telecom IndustryS O X In Telecom Industry
S O X In Telecom Industryravindra sharma
 
ISA 701 (New) Communicating Key Audit Matters in the Independent Auditor’s Re...
ISA 701 (New) Communicating Key Audit Matters in the Independent Auditor’s Re...ISA 701 (New) Communicating Key Audit Matters in the Independent Auditor’s Re...
ISA 701 (New) Communicating Key Audit Matters in the Independent Auditor’s Re...
Crowe - Professional Auditors LV
 
Cost benefits of sox compliance
Cost benefits of sox complianceCost benefits of sox compliance
Cost benefits of sox compliance
Alok Singh
 
WORKING CAPITAL ANALYSIS.pptx about as solitaire infosys
WORKING CAPITAL ANALYSIS.pptx about as solitaire infosysWORKING CAPITAL ANALYSIS.pptx about as solitaire infosys
WORKING CAPITAL ANALYSIS.pptx about as solitaire infosys
VikasChoudhary368795
 
SOX Compliance for Ireland subsidiaries
SOX Compliance for Ireland subsidiariesSOX Compliance for Ireland subsidiaries
SOX Compliance for Ireland subsidiariesFergal O'Rourke Esq.
 
Sarbanes Oxley presentation
Sarbanes Oxley presentationSarbanes Oxley presentation
Sarbanes Oxley presentationMark Belec
 
GROUP 2 (1).pptx
GROUP 2 (1).pptxGROUP 2 (1).pptx
GROUP 2 (1).pptx
donaprimasari1
 
Sox In Telecom Industry
Sox In Telecom IndustrySox In Telecom Industry
Sox In Telecom Industry
Mahesh Panchal
 
Trends in Fund Upstarts
Trends in Fund UpstartsTrends in Fund Upstarts
Trends in Fund Upstarts
O'Connor Davies CPAs
 

Similar to Intorduction to Cisa (20)

How to "Audit" Company-Prepared Information for Your Committee Meetings
How to "Audit" Company-Prepared Information for Your Committee MeetingsHow to "Audit" Company-Prepared Information for Your Committee Meetings
How to "Audit" Company-Prepared Information for Your Committee Meetings
 
Financial audit
Financial auditFinancial audit
Financial audit
 
Sarbanes-Oxley act
Sarbanes-Oxley actSarbanes-Oxley act
Sarbanes-Oxley act
 
Corporate governance
Corporate governanceCorporate governance
Corporate governance
 
Sox presentation By DSA
Sox presentation By DSASox presentation By DSA
Sox presentation By DSA
 
Technical Brief for Investment Funds
Technical Brief for Investment FundsTechnical Brief for Investment Funds
Technical Brief for Investment Funds
 
ethical issues in Advanced Auditing and Accounting
ethical issues in Advanced Auditing and Accountingethical issues in Advanced Auditing and Accounting
ethical issues in Advanced Auditing and Accounting
 
INTERNATIONAL AUDITING STANDARDS -PPT.pptx
INTERNATIONAL AUDITING STANDARDS -PPT.pptxINTERNATIONAL AUDITING STANDARDS -PPT.pptx
INTERNATIONAL AUDITING STANDARDS -PPT.pptx
 
Sarbanes-Oxley Act 2002
Sarbanes-Oxley Act 2002Sarbanes-Oxley Act 2002
Sarbanes-Oxley Act 2002
 
The Sarbanes-Oxley Act at 15 (EY Publication)
The Sarbanes-Oxley Act at 15 (EY Publication)The Sarbanes-Oxley Act at 15 (EY Publication)
The Sarbanes-Oxley Act at 15 (EY Publication)
 
The Sarbanes Oxley Act 2002
The Sarbanes Oxley Act 2002The Sarbanes Oxley Act 2002
The Sarbanes Oxley Act 2002
 
S O X In Telecom Industry
S O X In Telecom IndustryS O X In Telecom Industry
S O X In Telecom Industry
 
ISA 701 (New) Communicating Key Audit Matters in the Independent Auditor’s Re...
ISA 701 (New) Communicating Key Audit Matters in the Independent Auditor’s Re...ISA 701 (New) Communicating Key Audit Matters in the Independent Auditor’s Re...
ISA 701 (New) Communicating Key Audit Matters in the Independent Auditor’s Re...
 
Cost benefits of sox compliance
Cost benefits of sox complianceCost benefits of sox compliance
Cost benefits of sox compliance
 
WORKING CAPITAL ANALYSIS.pptx about as solitaire infosys
WORKING CAPITAL ANALYSIS.pptx about as solitaire infosysWORKING CAPITAL ANALYSIS.pptx about as solitaire infosys
WORKING CAPITAL ANALYSIS.pptx about as solitaire infosys
 
SOX Compliance for Ireland subsidiaries
SOX Compliance for Ireland subsidiariesSOX Compliance for Ireland subsidiaries
SOX Compliance for Ireland subsidiaries
 
Sarbanes Oxley presentation
Sarbanes Oxley presentationSarbanes Oxley presentation
Sarbanes Oxley presentation
 
GROUP 2 (1).pptx
GROUP 2 (1).pptxGROUP 2 (1).pptx
GROUP 2 (1).pptx
 
Sox In Telecom Industry
Sox In Telecom IndustrySox In Telecom Industry
Sox In Telecom Industry
 
Trends in Fund Upstarts
Trends in Fund UpstartsTrends in Fund Upstarts
Trends in Fund Upstarts
 

Intorduction to Cisa

  • 1. INTRODUCTION TO CISA Certified information systems Auditor A Historical approach 10.October.2016
  • 3. TERMINOLOGY  What is an Audit  A review of the past  Presenting the evidence seen  Who is an Auditor  The qualified person(s) skilled with the right set of skills to evaluate and assess the evidence 10/7/2016Introduction to CISA 3
  • 4. FOR WHAT PURPOSE?  The Auditor Audits the Auditee. At some point in time the Audit team will begin to evaluate and assess the financial performance of the company. Over a defined period of time.  The Auditor(s) are independent They can produce an unbiased representation of Auditees financial statements. It should contain high assurance of truth, and a true representation of Auditee’s financial stance. Assurance of compliancy with the legal norms and standards, for the attention of Share holders. 10/7/2016Introduction to CISA 4
  • 5. JUSTIFICATION OF IT AUDIT 10/7/2016Introduction to CISA 5
  • 6. ITALY’S PARMELAT 2003  The executives admitted an account in Cayman Islands holding 4B € was non-existent. The company was worth 14B € and it collapsed In addition four Banks were indicted 10/7/2016Introduction to CISA 6
  • 7. ADELPHIA COMMUNICATION 2002  The CEO and Son were found Guilty of two counts of Fraud  They misrepresented $1.6B of assets in Balance sheet  Stole $51M The company collapsed Eventually Comcast & Time warner Purchased it 10/7/2016Introduction to CISA 7
  • 8. AIG GROUP  The CFO bloated the income by $3.9B  Silence the analysts who were concerned about the decline in reserves Company had to pay $1.6 B in damages 10/7/2016Introduction to CISA 8
  • 9. ARTHUR ANDERSON (AUDITORS) & ENRON (AUDITEE)  The CEO ordered staff to shred documents to obstruct Enron being investigated Conviction for executives of both companies Enron board was convicted of running the largest scam off Balance sheet in the world 10/7/2016Introduction to CISA 9
  • 10. WORLDCOM  The CEO filed false reports concerning $11B accounting fraud.  The CFO testified against the CEO  The controller admitted he ordered staff to create Billions $ in adjustment to help rise stock values worldwide. The CEO ended up convicted to serve a 25 years Sentence This created SARBANES OXLEY ACT of 2002 10/7/2016Introduction to CISA 10
  • 11. ALL IN ALL MORE THAN 1000 SUCCESSFUL CORPORATE CONVICTIONS TOOK PLACE BY THE US SECURITIES AND EXCHANGE FROM 2002 TO 2005  92 corporate Presidents  14 COO  98 Vice Presidents  86 CEOs  40 CFOs  17 Attorney lawyers serving as Council 10/7/2016Introduction to CISA 11
  • 12. WHAT DID THESE MEAN FOR BUSINESSES  Business world leaders were forced into a control frenzy and this lead to the Creation of various acts  SOX  HIPPA  FISMA  SCADA  FFIEC  PCI  Basel lI Focus was on understanding IT systems, operational integrity, Internal controls all of them to protect assets. Known as Regulatory controls So why all these regulations 10/7/2016Introduction to CISA 12
  • 13. BECAUSE WE HAVE TO MAKE SURE THE EXECUTIVES ARE HELD ACCOUNTABLE FOR THE ACCURACY OF FINANCIAL REPORTS AND DATA PRESENTED TO SHARE HOLDERS  The Business Requirement dictates  Evidence of Business Integrity  Evidence of Internal Controls to Protect Valuable assets 10/7/2016Introduction to CISA 13
  • 14. SO WHAT NEXT…  Introduction to financial concepts  Continuation of CISA audit processes  IT Governance  Information Asset Protection  Disaster Recovery and Business continuity from CISA point of view Please advise ……. 10/7/2016Introduction to CISA 14

Editor's Notes

  1. A fiduciary relationship the auditor is acting for the benefit of another person and placing the responsibilities to be fair and honest ahead of his/her+ gain/benefit or interest
  2. FFIEC Federal Financial Institutions examination council FISMA Federal information Security Management act of 2002 SCADA Supervisory Control and Data Acquisition Basel !! risk management HIPPA Health Insurance portability and Accountability Act of 1996 PCI Payment card industry security act of 2005