Information, Articles, Tools, and Useful LinksCommittee Listings, Member Forums, and Find a CITPInformation on AICPA Tech. Conference, Seminars, Webcasts, and ConferencesIT Section Membership Information, CITP Credential Information, Members Only Tools and Communications, and MorePublications, CPE, Conferences, and Webcasts
 
Search
 

Search Options

Printer Friendly View

Infotech Home > Events > Information Technology Considerations in Risk Based Auditing
Information Technology Considerations in Risk Based Auditing

Tuesday, July 17, 2007

View Archived Presentation

Presented by:

 

Dan Schroeder, CPA, CITP, CISA, CIA

 

and

 

Catherine Bruder, CPA, CITP, CISA, CISM

 

 

The eight new Statements of Auditing Standards (SAS No. 104 - SAS No. 111) require both auditors and organizations to rigorously assess the entity’s risks of material misstatement (RMM) with regard to their financial statements and understand what is being done to mitigate them.  Because information technology (IT) is integral in the financial reporting of most entities today, ranging from simplistic small business accounting systems to sophisticated, virtual software solutions, auditors need to identify the key changes that need to be made to their audit methodology to ensure that IT-related risks are appropriately considered.

 

In this special online event, Dan Schroeder, CPA.CITP, CISA, CIA and Catherine Bruder, CPA.CITP, CISA, CISM provide an overview of the technology-related aspects of the eight new Statements of Auditing Standards (SAS No. 104 - SAS No. 111). Discussion topics include:

 

·         Key concepts the auditor and leaders in entities need to understand to prepare for and plan their audits

·         IT considerations in the new Risk Based Auditing Standards, with an emphasis on SAS No. 106 - SAS No.110

·         The role of an IT specialist in the audit

 

 

Glossary of Risk-Based Auditing TermsA glossary of risk-based auditing terminology used in the Information Technology Considerations in Risk-Based Auditing Web Seminars and Discussion Papers.

 

 

Back to top

 

 

About the Presenters:

 

 

 

Catherine W. Bruder, CPA, CITP, CISA, CISM, MSPA

Director, Information Technology Assurance Services

DOEREN MAYHEW

 

Ms. Bruder is the Director of Information Technology Assurance Services for Doeren Mayhew, a Certified Public Accounting firm in Troy, Michigan.

 

Catherine has planned and completed hundreds of Information Technology (IT) audits within the last eighteen years. A well-rounded IT specialist, she works with organizations to design and implement security programs to assure information system control. She is responsible for the planning and supervision of all forms of technology assurance including SAS 70 reviews, IT audits, network vulnerability assessments, penetration testing, security program development, war dialing, password cracking, and disaster recovery planning.

 

Catherine is a Certified Public Accountant (CPA), Certified Information Technology Professional (CITP), Certified Information Systems Auditor (CISA), and a Certified Information Systems Manager (CISM). She is a member of the American Institute of Certified Public Accountants - Information Technology Section, the Michigan Association of Certified Public Accountants and the Information Systems Audit and Control Association. Catherine serves on the AICPA IT Executive Committee and was a member of the AICPA Risk Assessment Audit Guide Task Force. 

 

Back to top

 

 

 

Daniel Schroeder CPA, MBA, CISA, CIA

Officer, Technology Risk Services

Amper, Poliziner & Mattia P.C.

 

Dan Schroeder is the Officer in-Charge of the Technology Risk Services practice at Amper, Politziner & Mattia P.C. (“Amper”).  Amper is based in New Jersey with offices throughout New Jersey and in New York City. 

 

In his role, Dan oversees IT audit professionals that deliver a wide range of financial IT audit related services such as  SOX 404 audits and SAS 70 audits, and also a wide range of consulting related services to address IT related risks such as security and privacy, compliance risks.

 

Dan has been with Amper for over six years.  Prior to that he held executive positions in ERP sales and implementation for six years, and also with a Fortune 50 technology company for over twelve years where he held several financial and operational management positions including Director of Global Supply Chain Management Planning.

 

Dan is a member of the American Institute of Certified Public Accounts (AICPA), a member of the AICPA Information Technology Executive Committee, a member of the NJ Society of CPAs, a member of Information Systems Audit and Control Association (ISACA), and a member of the Institute of Internal Auditors (IIA).  Dan has written and spoken frequently IT audit and IT risk related topics.  

 

Back to top
Copyright © 2007 by the American Institute of Certified Public Accountants, Inc., New York, New York.