Mastering Information Systems and Controls for Accounting Professionals

Overview

You could pay $0 for this course!

This course qualifies for reimbursement through the state’s Workforce Training Express Fund. Firms/companies with fewer than 50 staff can be reimbursed up to 100% of the cost of training and firms/companies with 50-100 employees can be reimbursed up to 50% of the cost of training. You must register for the course and apply for reimbursement through the Workforce Training Express Fund website a minimum of three weeks prior to the start of the course. The course code for this program is C-13053. To learn more, click here or contact Julia Ekelund at jekelund@masscpas.org.

Highlights

IT systems and data management IT governance and risk management Information security and privacy System and organization controls (SOC) engagements

Prerequisites

None

Designed For

Experienced CPAs, CITP designation holders and aspirants, and accountants seeking a greater understanding of information systems and controls

Objectives

Explain internal control concepts within accounting information systems, drawing on frameworks such as COSO and COBIT, to ensure accuracy in financial reporting and protect against unauthorized access Summarize key considerations for business resiliency, disaster recovery, continuity plans, system replication, impact analysis, and availability Understand data management processes, including data collection methods, storage types (data warehouse, data lake, data mart), and the data life cycle Explain the role of IT governance within an organization and describe key IT governance frameworks, including COBIT, ITIL, and ISO/IEC 27001 and 27002 Describe IT general controls and application controls Discuss business process management and change management Examine cybersecurity principles in the context of HIPAA, GDPR, and PCI DSS, and understand how they regulate the protection of sensitive data Summarize the NIST Cybersecurity Framework (CSF) and Privacy Framework Identify cybersecurity risks related to cloud environments, IoT, and mobile technologies Identify methods for the protection of confidential data during application development Understand the purpose of SOC reports, the roles of key players, and identify management assertions specific to different SOC engagement types Recall the intended users of SOC 1r, SOC 2r, and SOC 3r reports

Preparation

None