Courses
HKUST ISOM department is currently offering an Information Systems Auditing option for all Information Systems students to declare. The Option focuses on the profession of IS auditing that helps client organizations suggest and examine management controls within an IT infrastructure. Specific topics include IS audit process, governance and management of IT, protection of information assets, and so on. Students taking the Information Systems Auditing option should study 2 extra courses (6 credits) besides the IS major requirement. Students can also takes these courses without declaring the option, to fulfill their major elective requirements.
The following courses aim to prepare you for the CISA exam:
ISOM4100 Information Systems Auditing
The course provides a comprehensive approach for auditing information systems. It covers fundamental concepts of risk management for Information Systems (IS) auditors to perform risk assessment, and risk analysis at various business levels, including systems, administrative and organizational levels. The course also covers business cases for students to study, and provides opportunities for them to apply their IS auditing skills to solve those cases from IS auditing perspectives. Typical solutions to those cases are effective, reasonable, and practical controls. Other IS auditing practices, such as compliance audit and governance audit, and auditing system development life cycle are covered as well, in order to provide a holistic training of IS auditing to students.
ISOM4300 Information Systems Control and Assurance
This course introduces the fundamental concepts and tools to perform information systems (IS) control and assurance. Topics include IS control standards, guidelines and best practices to protect and control business systems, IT governance frameworks (e.g., COBIT), as well as the latest development in IS management practice.