Auditing the outsourcing strategy and risks

Starts:  Feb 19, 2019 9:00 AM (BE)
Ends:  Feb 20, 2019 5:00 PM (BE)

Target Audience

  • Internal auditors with experience in operational environments
  • Auditors with practical IT audit experience
  • Auditors involved in auditing outsourced activities
  • Business people responsible for outsourcing activities
  • Any person involved with outsourcing
  • Quality professionals

Course objectives

  • Understand outsourcing activities (IT and non-IT)
  • Assess risks relating to outsourced activities
  • Identify the required controls
  • Learn about the Assurance Engagements on Third-party Service Organizations
  • Become familiar with practices to audit outsourced activities (IT and non-IT)
  • Get practical experience based on a case

Course Content

  • Outsourcing definition
  • Outsourcing life cycle
  • Outsourcing governance (organization, roles and responsibilities, processes)
  • Outsourcing risks and impact
  • Key outsourcing controls
  • Assurance engagements on third-party service organizations : SAS70, ISAE3402, SysTrust
  • Internal audit considerations
  • IT outsourcing and types of IT outsourcing
  • IT control frameworks (CobiT, ITIL, ISO 27001)
  • Outsourcing case
Continued Professional Education (CPE) 14

Participants should have a basic audit and/or outsourcing experience.

ISACA Belgium Members get access to the same rate as the IIABel members.


IIA Belgium Office
Rue Royale 109-111 Koningstraat, level 5
Brussels, 1000