IT Audit Series - Auditing Database Structures

Field: Auditing | Delivery Method: Self Study | CPE Hours: 2.0

  Enroll in Course

Today's IT auditor is increasingly being faced with a multiplicity of database management systems (DBMSs). Since each of these affects not only the control concerns of the IT systems due to the concentration of risk, but also the control and audit opportunities due to the increased control and audit tools, it has become critical that auditors understand their role and criticality.

This two-hour training is designed as an intermediate course to introduce auditors to the risks and exposures specific to a business operating in a Database Environment and indicates the unique control opportunities as well as the wide range of audit tools available.

By the end of this training the attendee will be able to:

  • Identify the differing types of database structures, their principal components, and the threats to them
  • Relate DBMS components to the operating system environment in which they operate
  • Identify potential control opportunities and select among control alternatives
  • Recognize vulnerabilities in multiple DBMS environments and make appropriate recommendations
  • Select the appropriate audit tool and technique to meet a given audit objective

The training will cover the following areas:

  • Database types
  • Sequential
  • Hierarchical
  • Network
  • Inverted File Structures
  • Relational Models
  • Control opportunities in a database environment
  • Database tools and techniques
  • Auditing IMS; IDMS; ADABAS; DB2; DATACOM; Oracle; Access

This is a previously recorded 2-hour AuditNet® webinar with Jim Kaplan and Richard Cascarino

Field: Auditing
CPE: 2
Delivery Method: Self-Study
Format: Video




Your Instructor


Richard Cascarino
Richard Cascarino

Richard is a principal of Richard Cascarino & Associates LLC based in Colorado, USA with over 32 years of experience in audit training and consultancy. http://www.rcascarino.com/


He is a regular speaker to National and International conferences and has presented courses and webinars throughout Africa, Europe, the Middle East and the USA.


He has assisted in the implementation and audit of IT and Operational systems as well as the training of Internal Auditors in the USA, UK, and Middle East and throughout Africa. He is a Past President of the IIA – South Africa and founded the African Region of the IIA Inc. He has also served as a member of the Board of Regents for Higher Education of the Association of Certified Fraud Examiners. He developed the BComm Internal Audit for the University of the Witwatersrand in Johannesburg and the Honors program in Governance and Risk at the same university.


He is a consultant and lecturer with experience in Large scale, Project Management, Risk, Audit, Governance, Forensic, Internal and IT auditing education and author of the books Internal Auditing-an Integrated Approach and Auditor’s Guide to IT Auditing and Corporate Fraud and Internal Control: A Framework for Prevention published by Wiley in 2013. Data Analytics for Internal Auditors published in 2017 He is also a contributing author to the Governance section of all 4 editions of QFinance: The Ultimate Resource and is a frequent speaker at IIA, ACFE and ISACA workshops and conferences. His latest book, Complete Guide for CISA Exam Preparation came out in October 2020.


Course Curriculum


  Training Video
Available in days
days after you enroll

Frequently Asked Questions


When does the course start and finish?
The course starts now and never ends! It is a completely self-paced online course - you decide when you start and when you finish.
How long do I have access to the course?
How does lifetime access sound? After enrolling, you have unlimited access to this course for as long as you like - across any and all devices you own.
What if I am unhappy with the course?
We would never want you to be unhappy! If you are unsatisfied with your purchase, contact us in the first 30 days and we will give you a full refund.

Get started now!