FISCAM Audit Security Training
from the Henderson Group 		This page is:
FISCAM AUDIT TRAINING:HG67:
Effective FISCAM Audits of Mainframes with z/OS and MVS

Quick Links:

HOME PAGE

CONTACT US

INFOSEC and RACF TRAINING

IT and z/OS AUDIT TRAINING

RACF USER NEWS (Describes next NYRUG Meeting

NEWSLETTERS AND USER GROUPS

ARTICLES PRIVACY STATEMENT

SECURITY AND AUDIT
SERVICES FROM THE
HENDERSON GROUP

ABOUT US

OTHER INFO SOURCES


HG67: Effective FISCAM Audits of Mainframes with z/OS and MVS
(3 Days, 24 CPE Credits; $1620)

  • November 10-12, 2009 in Bethesda, MD
FISCAM (Federal Information System Controls Audit Manual) describes the IS audit methodology used by GAO (the Government Accountability Office) and others for audits of Federal government agencies. It provides such a sound approach that it will influence the way non-governmental audits are conducted.

While FISCAM provides a wealth of valuable information and technique, it is not platform-specific. This class shows you how mainframe computers work, how their security works, and how to apply that knowledge when conducting FISCAM or similar audits. Using FISCAM as a high level guide, you will learn what you need to conduct mainframe audits effectively, and with useful and practical results.

If you've ever been audited, or been an auditor, you've probably wished for a clear, sensible, non-military, generally-accepted set of standards to simplify how the audit should be conducted.

This class shows you how to adopt FISCAM to provide those standards. IS managers will find that the management tools and controls suggested in this class will make your job easier.

Of course if you are a Federal or State agency, your audits will be directly affected by FISCAM. But the methods and techniques and topics covered in FISCAM will also affect your audit if you are:
  • a health care provider
  • a financial institution
  • an organization that accepts Federal funds
  • audited by one of the major accounting firms (which have to learn FISCAM to perform government audits)
This FISCAM-based mainframe auditing class shows you what FISCAM is, when you need to apply it, when you might choose to apply it, and how to use it to audit IBM mainframe computers with z/OS and the MVS operating system.

The class shows how the mainframe software works, how its security works, and how to audit it using FISCAM.

You will learn a systematic approach to implementing FISCAM and to using it to provide effective auditing of information systems. The result will be faster, more efficient audits that help to make systems more effective and secure, without wasting effort arguing about what standards apply.

While this course covers FISCAM with mainframes, watch for our follow-on courses in using FISCAM with UNIX, with Windows and with networks.

To see what students say about Stu Henderson's classes, please click here

In this course you will learn:
  • What FISCAM is
  • How IS managers can benefit from it
  • Basic concepts of z/OS and MVS system software
  • Basic concepts of z/OS and MVS security
  • How to apply FISCAM in a mainframe environment.
  • What data to collect and how to interpret it
  • How to conduct the audit, from planning and scoping through follow-up
  • How to conduct FISCAM-based mainframe audits rapidly and efficiently, with maximum benefit to your organization
The workbook is a valuable reference, and provides you everything you need to tailor a complete audit program to your situation.

For more information on seminar dates, locations, and hotels, and how to register, please click here:
Schedule/Registration/Locations/Hotels

Return to Top of Page     Return to Home Page




Who Should Attend HG67?
  • Internal auditors who will be auditing mainframes
  • OIG staff who will be auditing mainframe computers
  • IS auditors working for major accounting firms who will be auditing mainframes
  • IS managers who want to make use of the management controls covered by FISCAM
  • Data Security Officers who want to know what to expect from FISCAM audits and how to benefit from them
  • Consultants working for firms who audit and evaluate mainframe security
  • Financial auditors who want to learn more about IS auditing on the mainframe

Please note that you can save money by holding these classes in-house. Call Stu at (301) 229-7187 for details.

Note also the classes we offer for Information Security Training, as listed on the left under QUICK LINKS.

Return to Top of Page     Return to Home Page




"Stu provides an excellent way of assisting both technical and non-technical auditors in discovery of risks/controls associated with the z/OS world. Wonderful course" ---Jeremy Burfield, Jefferson Wells



"Great instructor and excellent presentation of subject matter."
---Joe Hodge, GA Dept. of Audits 

     Table of Contents and Class Outline: HG67: Effective FISCAM Audits of Mainframes with z/OS and MVS
 (under development, available shortly)


Return to Top of Page     Return to Home Page