Home > Webinars

Making IT Audits Effective in this New Era of Cybercrimes

Date: Wednesday December 14, 2011
Time: 8 am Pacific | 11 am Eastern
Duration: 1 hour

Cyber crimes has risen drastically over the last decade due to increased sophistication of attacks and easy availability of point and click tools. This has made the job of IT auditors far more complex and challenging. IT auditors need to play the role of detectives to a large extent as they review the data and put together facts. As such every IT auditor needs to be aware of the risks associated with cybercrimes carried out against an organization of interest, or perpetrated using the organization's systems. The webinar will give brief insights to types of crimes, which should assist auditors in completing IT audits more effectively in today's era. Participants will go through important cyber crime concepts in the realm of IT audits like Computer Intrusion, Intellectual Property Rights, Credit Card Fraud, Online Extortion and Internet Fraud, Identity Theft and Money Laundering. Packed with real life examples and practical tips, this webinar will help you learn:

  • Few recent real life cybercrime incidents
  • Why are most companies exposed to cyber crimes in spite of doing regular audits?
  • Drawbacks in current IT audit approach to detect cybercrimes
  • How should the current day IT audit look like?
  • What should auditors look for additionally during audit?
  • Where they should look for evidence / traces?
  • Some common terminology IT auditors should be aware of: like phishing, identity theft, online extortion, etc
  • Sample Tools and techniques that can make IT audit effective

Rodney ScottRodney Scott - CIA, MBA
Rod has over 25 years of experience in Information Technology and IT Auditing. Rod is a specialist in Sarbanes-Oxley IT Control Assessments and IT Auditing and is currently consulting and teaching in the area of the Sarbanes-Oxley Act. He developed and leads the IIA seminar "Sarbanes-Oxley Act: Assessing IT Controls". Rod has formed his own company and services several clients with their Sarbanes-Oxley internal control assessments for IT general controls and application controls, as well as performing IT audit assignments. Rod has held various positions in IT and IT Auditing with Caterpillar, Inc. before taking early retirement in 2000. Rod's most recent assignments were Project Manager for SAP implementation in Northern Ireland (1998-2000), Information Technology Manager for Caterpillar France (1994-1998) and Corporate IT Audit Manager (1990-1994). Rod graduated from the University of Wisconsin-Milwaukee with a BBA in production Management and earned an MBA from the University of Wisconsin-Milwaukee. He passed the Certified Internal Auditor exam in 1993.

Rudra Kamal Sinha Roy - Head IT GRC Product, MetricStream
As the Head of Product Marketing for IT GRC, Rudra is responsible for driving MetricStream's position and leadership in the IT GRC market. He has a strong experience in cloud security, vulnerability management, application security and compliance. He has managed over 70+ audits and has helped several global organizations with their information security practice including consulting, certifications like PCI DSS and ISO 27001. He was also part of the team which drafted the Security Implementation Framework of Nasscom's Data Security Council of India aimed at compliance for Indian IT/ITES companies. Rudra also regularly writes on various information security related topics in reputed international magazines like Hakin9, Infosecurity Mag etc.

Register to View this Recorded Webinar