EQS 2: Jan 2024 PDM – Back to Basics – Systems Audit, Control, and Assurance

Welcome to our Enlightening quarterly series (EQS) #2. This quarter’s theme is “Back to Basics – Systems Audit, Control, and Assurance,” focusing on the evolving nature and crucial aspects of systems audit.

We embark on this journey with our first month’s session: “Evolving Landscapes: The Journey of Systems Audit Through Technological and Regulatory Shifts.” This session will delve into the dynamic evolution of systems audit, exploring its transformation amid technological advancements, changing business environments, and regulatory developments. This foundational knowledge will prepare us for more in-depth exploration in the coming months.

Month Two: “Mastering Modern Audit and Assurance Techniques: A Focus on Ethics and Standards.” This month, we will introduce and examine various audit and assurance tools and techniques. The emphasis will be on their practical application and adherence to current best practices, with a particular focus on ethics and standards in the field. This approach ensures continuity and depth, linking practical skills with ethical guidelines and standard practices in modern auditing.

Month Three: “Navigating Risks: Case Studies in Audit for Emerging Technologies.” This month shifts to a workshop format, where teams will engage in breakout groups to discuss case studies. The focus will be risk-based audits for emerging technologies across different business sectors, including social media.
Agenda

16:45 - 17:00: Virtual Networking 
17:00 - 17:03: Welcome by ISACA Chennai Chapter Director Programs
17:03 - 17:18: Monthly Security News Round Up by ERT Volunteer
17:18 - 17:20: Chapter Updates & Speaker Introduction
17:20 - 18:50: Evolving Landscapes: The Journey of Systems Audit Through Technological and Regulatory Shifts, By R Chandrashekar
18:50 - 19:00: QnA

Detailed Description of talk:

• Information Systems Audit objective and its alignment in current techno-legal environment.
• The impact of regulatory changes on clients IT/IT Security environment and consequential impact on Information Systems Audit- including regulatory expectations
• Technology adoption by clients- both for business processes and control components- impact on audit process.
• IS Audit leveraging technology for audit process.
• Key factors to consider while preparing IS Audit reports in current techno-legal environment.

Speaker Details:  R Chandrasekhar is a fellow member of the Institute of Chartered Accountants of India (ICAI), Information Security Auditor (CISA) from Information Systems Audit and Control Association (ISACA-USA), and an Information System Security Professional (CISSP) from International Information System Security Certification Consortium (ISC)2-USA, with over 20 years of expertise in Audit, Information Security and IT Audits of a wide variety of clients and industries. He is also certified in Advanced SOC issued by AICPA (USA)
He has on-going experience in providing information security audit for banks, insurance companies, Information Technology, Software development and large enterprises including regulatory driven audits in the field of Information Security.
He conceived and contributed to the Digital Capacity Maturity Model (DCMM) of ICAI and has been a special invitee of the Digital working group, as part of the EFAA International Conference 2019 (Amsterdam), for global adaptation of the model.
Specific Audit Experience:
IS Audits, Server & web vulnerability assessments, Application Development Security, BCP/DR, Application testing, Data Migration Audits, ISO 27001 Implementation Report, IS Policy formulation, Access Security, E-mail Forensics, Network Security, PCI-DSS Compliance Pre-Audits, and subject matter expert for SOC 1 & 2 audits. He has been part of several IS Audits at the behest of regulators.
Industries Handled:
Banking, Insurance, Stock broking, Govt. entities, Defence establishment, BPO/KPO’s, Internet Service Providers, Hospitality sector, Infrastructure companies, Logistics, Software companies.