Information and Technology Auditing

The teaching methodology of this course aims to provide a holistic learning experience, balancing theoretical knowledge with practical
application, and preparing students for the demands and challenges of IT auditing in the real world.
The course uses an integrated teaching approach, combining lecture methods with case studies and practical activities, in line with the
student-centred pedagogical model. Lectures are fundamental to building a solid foundation of knowledge in the main concepts and
practices of IT auditing. During these sessions, students will be exposed to a variety of topics, including internal controls, risk management,
auditing processes, and the impact of emerging technologies on auditing.
Complementing the lectures, case studies are crucial elements in the teaching methodology. These cases allow students to apply the
knowledge acquired in real and complex situations, encouraging critical analysis, problem-solving and the development of practical skills.
This method not only reinforces learning, but also prepares students for the challenges they will face as professionals in the field of IT
auditing.
In addition, group discussions and project work will be promoted, encouraging collaboration between students and the development of
interpersonal and communication skills. These activities are designed to stimulate critical thinking, the sharing of ideas, and reflection on
current practices and challenges in the field of IT auditing.

The course aims to provide students with essential skills in IT Auditing, including an understanding of the audit function and organisation,
internal controls, risk management, and the practical execution of audits. Students will learn to understand an organisation’s IT environment
and assess the impact of new technologies on auditing. The lecture method will provide a solid theoretical basis, while the case studies will
allow students to apply this knowledge in real-life scenarios, developing analytical and practical skills. This approach ensures that students
not only understand the theoretical concepts, but also develop the ability to apply them effectively in professional contexts, preparing them
for real challenges in the field of IT auditing.

The course covers fundamental topics in IT auditing:
– The Audit Function: Purpose and Organisation – Introduces the role and structure of auditing in organisations, highlighting its strategic
importance.
– Controls, Risk and Auditing – Focuses on the concepts of internal controls and risk management, which are essential for effective auditing.
– Conducting an Audit – Teaches the practical steps and techniques needed to conduct audits.
– IT Environment and Components – Explores the critical elements of the IT environment that affect the audit.
– Specific Audit Topics – Addresses advanced and specific topics related to IT auditing.
– Overview of New Technologies – Analyses the impact of emerging technologies on auditing practice.
The contents have been defined to ensure a comprehensive and up-to-date understanding of the challenges and practices in IT auditing.

NAO