External financial audit and more recently internal audit requirements are now requiring a risk assessment of the IT function as part of the audit.  This means that auditors will be applying more scrutiny to IT departments, their management, and their operations.  This session will provide an overview of the requirements (from the auditee's perspective) and provide guidance on how to prepare documentation and update policies to address the things that auditors will be looking for.  Will also touch on PCI DSS requirements and documenting compliance.

Session Takeaways:

1.  PCI DSS compliance requirements and documentation

2.  Understanding of what IT auditors are looking for

3.  Guidance on preparing information for IT auditors

Level:  Intermediate