The world has changed, and Information Technology (IT) is no longer simply a back office function.  Information Technology (IT) is of strategic importance to internal control for organizations.  This control includes appropriate controls over cyber security threats.

This course speaks directly to the importance of general controls (GC), application controls (AC) and spreadsheet controls as they relate to all operational, financial, and compliance processes.

This course covers:

  • Explore the 2013 Committee of Sponsoring Organizations (COSO) Framework and recognize the link to Information Technology (IT) Controls
  • Explore the IT Control Framework, and recognize how to approach IT evaluation
  • Explore IT Entity controls
  • Explore Application Controls (AC) vs. General Controls (GC)
Learning Objectives
  • Explore the 2013 Committee of Sponsoring Organizations (COSO) Framework and recognize the link to Information Technology (IT) Controls
  • Explore the IT Control Framework, and recognize how to approach IT evaluation
  • Explore IT Entity controls
  • Explore Application Controls (AC) vs. General Controls (GC)
Last updated/reviewed: March 26, 2024

Included In Certifications

This course is included in the following Certification Programs:

15 CoursesManagement Oversight, Analysis and Internal Controls Certification

  1. Management Internal Control Essentials
  2. Comprehensive Examination of COSO 2013: Components and Principles
  3. Keys to an Effective Code of Conduct
  4. Fraud Risk Assessments
  5. Enterprise Risk Management 101
  6. Identifying and Implementing the Proper Balance of Internal Controls
  7. Information Technology (IT) Controls in Emerging Business Environments
  8. Analyzing Financial Ratios - Solvency, Liquidity and Debt
  9. Analyzing Financial Ratios - Leverage
  10. Effectively Managing and Controlling Travel and Entertainment (T&E) Expenses
  11. Keys to Understanding Conflicts of Interest
  12. Documentation Methods For Internal Control Processes
  13. Segregation of Duties for Core Business Processes
  14. Professional Skepticism - Keys to Maintaining
  15. Whistleblower Hotlines - Effective Management

32 CoursesInternal Controls and Internal Audit Certification

  1. Internal Audit Standards Overview
  2. Managing the Internal Audit Function in Line with GIAS - Part 1
  3. Managing the Internal Audit Function in Line with GIAS – Part 2
  4. Managing the Internal Audit Function in Line with GIAS – Part 3
  5. Executing the Internal Audit Engagement in Line with GIAS – Part 1
  6. Executing the Internal Audit Engagement in Line with GIAS – Part 2
  7. Identifying and Implementing the Proper Balance of Internal Controls
  8. Documentation Methods For Internal Control Processes
  9. Segregation of Duties for Core Business Processes
  10. Foundations for a Strong Internal Audit Department
  11. Internal Audit Management - Top Skills
  12. Internal Audit: Keys to Managing an Effective Function
  13. Understanding Risk-Based Auditing
  14. Risk Based Auditing – Establishing a Methodology
  15. Risk Based Auditing – Applying the Methodology
  16. Cyber Risk Frameworks And Concepts
  17. Information Technology (IT) Controls in Emerging Business Environments
  18. Fraud Risk Assessments
  19. Professional Skepticism - Keys to Maintaining
  20. Introduction to Forensic Accounting
  21. The Fraud Triangle
  22. Internal Audit Effective Relations with the Audit Committee
  23. COSO 2013 Overview
  24. COSO 2013 - Operational Execution
  25. Internal Audit Emerging Risks for 2021 and Beyond - Part 1
  26. Internal Audit Emerging Risks for 2021 and Beyond - Part 2
  27. Internal Audit Emerging Risks for 2021 and Beyond - Part 3
  28. Internal Audit Emerging Risks for 2021 and Beyond - Part 4
  29. Internal Audit Challenges During Times of COVID
  30. Global Internal Audit Standards (GIAS) - Overview and Contrast to 2017 International Professional Practices Framework
  31. Tools for Internal Control Certificate
  32. Lessons of an Auditor- Tools for Internal Control Certificate
66 Reviews (326 ratings)

Reviews

4
Anonymous Author
Information Technology (IT) Risks in Emerging Business Environments provides an overview of the importance of having proper controls in place in relation to Information Technology. In a world where the possibilities are endless and technology reigns supreme, it is crucial to maintain proper internal controls over IT.

5
Anonymous Author
The course provides overview knowledge on IT controls and related frameworks. The instructor uses practical examples, stories to make the concept more easy for understanding. I wish there were more examples of IT controls over things like data, privileged accounts, cyber securities,...

4
Member's Profile
I think the concepts of IT controls were very well explained. Also the relation between COSO and COBIT was very well explained.I would have appreciated listing of IT controls over new technologies like cloud, data and applications on remote devices etc.

5
Anonymous Author
Great course over COSO and Cobit and the similarities and differences between the two. Ability to assess the difference between Information Technology General Controls and Application Controls. Great concise course and well presented.

5
Anonymous Author
Excellent overview for non-IT professionals. Helpful refresher materials when re-engaging in IT and risk management overall if you've been away from it for a bit. Another outstanding presentation from Lynn. thanks!

5
Anonymous Author
Как всегда, все было замечательно. Тема трудная, требует серьезного подхода и серьезного преподавателя. Спасибо

4
Member's Profile
simple, easy to understand and follow. This is an area that I will be getting more involved in and this course provided great technical background and "why" it needs to be done

5
Member's Profile
Great overview of IT controls within a business. It provides a good foundation for IT controls, and provides explanation of the different frameworks around IT controls

5
Anonymous Author
I enjoyed the holistic approach to this class! It helped provide the link between organizational goals and IT controls and the related frameworks (COSO and COBIT).

4
Anonymous Author
Courses covers an overview of IT controls for both applications as well as general/IT environment controls, their differences as well as governing bodies.

5
Anonymous Author
I really enjoy the classes offered by this instructor. She uses real world examples and provides practical stories to support the underlining concept.

5
Anonymous Author
I would love to see more courses like this one, because information technology tends to be an uncomfortable realm for a majority of internal auditors.

4
Anonymous Author
Another great course from Lynn Fountain provides insight and experience relevant to the presentation topic. fast-moving and concise, a great course!

5
Anonymous Author
Great content and presentation. Nothing really surprised me and this is a great course for anyone working or looking to work in information security

5
Member's Profile
Really appreciate the detail provided in this course. Food for thought when developing internal controls around business processes and IT functions.

5
Anonymous Author
Excellent refresher course on IT Controls for the emerging business. The presenter covered the legislations and framework to manage the controls.

5
Anonymous Author
I found the course to be interesting and the exam to be challenging. The professor was fun to watch and I will look for other of her classes.

5
Anonymous Author
Excellent presentation by Lynn. The course is intense and gives you a lot of information to digest. The slides are useful in study process.

5
Anonymous Author
Overall, it was a good presentation and provided a good background it the COSO Framework, COBIT, General controls and applicationn controls.

4
Anonymous Author
This is a refresher and interesting course. Nothing surprised me. This will be most beneficial to new performance auditors.

5
Anonymous Author
This was a good refresher of some concepts I have not looked at in detail in a few years. Thanks, Lynn. You're the best.

5
Anonymous Author
Course provides very good information related to the difference between general controls and application controls.

4
Member's Profile
Presented the distinction between application and general controls and explained the COSO and COBIT Frameworks.

5
Anonymous Author
COSO and COBIT frameworks are clearly presented and supported for the increasing technology in organizations.

5
Member's Profile
I definitely feel like I have a better understanding of the importance of IT controls and COBIT framework.

5
Member's Profile
As someone that is not very knowledgable about IT Controls, it was pretty easy to follow and informative.

4
Anonymous Author
Very detailed course for beginners needing to learn more about IT controls functions in an organization.

4
Anonymous Author
Good course, lots of detailed information on COSO, COBIT, General IT Controls and Application controls.

5
Anonymous Author
The information was very helpful as information technology continues to grow within my organization.

5
Member's Profile
A good addition to the information available on IT General Controls and IT Application controls.

5
Member's Profile
This gave a good overview over internal controls related to technology including COSO and COBIT.

5
Anonymous Author
I think the instructor does a great job explaining the information and providing good examples.

5
Member's Profile
interesting subject, well distributed , good instructor looking forward for the next course

4
Anonymous Author
Good overview of risks in emerging business environments. Easy to follow and well organized.

5
Anonymous Author
Again a very good, presentation. Understandable examples. Good link between COSO and COBIT.

5
Member's Profile
Good for companies that are just becoming SOX compliant and why these ideals are important.

5
Member's Profile
This was well detailed while providing very efficient timely lessons of the general topic.

5
Member's Profile
Straight forward and to the point. Time allotted to the learning activity was appropriate.

5
Anonymous Author
This was a very good module. I took this as a refresher and found it to be refreshing!

4
Anonymous Author
The speaker provides great insight on the importance of ITGCs and Application Controls

5
Member's Profile
This was a good course. Would recommend anyone needing CISA CPE to take this course.

5
Anonymous Author
This course was presented in a clear and concise manner. I would recommend to others.

5
Anonymous Author
This course helped strengthen my understanding of IT general controls fundamentals.

5
Member's Profile
Pretty good basic overview of the IT space from an audit and controls perspective.

5
Anonymous Author
I appreciated the simple comparisons between ITGC’s and application controls.

5
Anonymous Author
Great course to learn more about emerging risks in business environments.

5
Anonymous Author
Information Technology Risks in Emerging Business Units course is perfect

5
Anonymous Author
This course was educational and useful for understanding COBIT and ITGCs

4
Member's Profile
Very good concise synopsis of IT controls and their synergy with COSO.

5
Anonymous Author
Love how in-depth she went into the difference between COSO and COBIT.

5
Anonymous Author
An excellent short course from a famous author. I recommend studying

5
Anonymous Author
Comprehensive coverage, good clear instruction related to real world.

5
Member's Profile
Nice concise overview of ITGC's, COBIT and relevant COSO principles.

5
Anonymous Author
Excellent course. The COSO and COBIT basics were covered very well.

5
Anonymous Author
Good course to refresh the basics. Trainer explained concepts well.

5
Anonymous Author
very informative course. it provides a solid basis for this course

5
Member's Profile
Course is well done, easy to follow and the topics are on-point.

4
Anonymous Author
This course effectively covered the stated learning objectives.

4
Anonymous Author
Thorough well laid out explanation of COSO & COBIT charters.

5
Anonymous Author
This was an informative and high level overview of COBIT

3
Anonymous Author
well thought out and acceptable for cpe review purposes

4
Anonymous Author
This is a understanding high level of COSO and COBIT.

4
Anonymous Author
Interesting course with a lot of good information.

Anonymous Author
Interesting focus on IT controls.

5
Anonymous Author
Very concise.

5
Member's Profile
Great!

Prerequisites
Course Complexity: Advanced

No Advanced Preparation or Prerequisites are needed for this course. 

Education Provider Information
Company: Illumeo, Inc., 75 East Santa Clara St., Suite 1215, San Jose, CA 95113
Contact: For more information regarding this course, including complaint and cancellation policies, please contact our offices at (408) 400- 3993 or send an e-mail to .
Course Questions and Answers(2 Questions)
Member's Profile

What is your take on cybersecurity being included as an oversight responsibility for an audit committee?

Member's Profile

My opinion is that there should be some body of the board that oversees it. The Audit Committee is so involved with SOX and financial duties that I’m not sure they are the best group. I’ve been in companies that have a Governance committee of the Board. That may be a place. I think in any event, the Board should have some oversight

Instructor for this course
Course Syllabus
INTRODUCTION and OVERVIEW
  Introduction to IT Controls in Emerging Business Environments7:40
IT Risks
  IT System Definition and Benefits of Internal Control8:32
  IT Governance15:44
  Performance Management10:40
  Coso and Information Technology7:29
  Coso Link Risk Assessment9:45
  IT Control Framework Cobit8:44
  IT General Controls14:11
  Application Controls10:25
CONCLUSION
  Summary2:54
CONTINUOUS PLAY
  Information Technology (IT) Controls in Emerging Business Environments1:36:04
SUPPORTING MATERIALS
  Slides: Information Technology (IT) Controls in Emerging Business EnvironmentsPDF
  Information Technology (IT) Controls in Emerging Business Environments Glossary/IndexPDF
REVIEW and TEST
  REVIEW QUESTIONSquiz
 FINAL EXAMexam