Description
A Required Course in the
Certification in Bank Internal Auditing (CBIA)
The participants will be introduced and gain a better appreciation of the regulatory requirements, standards, frameworks, actual versus “best” or “ideal” practices, “principles” versus “methods”, practical challenges, insights, references, various tips and techniques, and trends in the conduct of the Information Technology (IT) Audit in the Banking Industry.
COURSE OBJECTIVES:
• To give the participants an overview of Information Technology (IT) Audit and its significant concepts
• To describe the role of IT Auditors to the Bank
• To introduce the various standards and frameworks relevant to IT Audit
• To discuss various types of IT risks
• To define and explain General Controls, and Applications Controls & Review
• To draw from and share to the attendees useful insights and practical lessons with respect to IS audit
COURSE OUTLINE:
• IT Assurance
o IT Assurance Services
• Information Technology Auditing
o The VUCA World
o Leadership Response to VUCA
• Risk Assessment
o Determining Risk Appetite
• IT Risks
o Integrity
o Security
o Security Concepts
• IT Layered Security
• The 3 Lines of Defense Model
• Control Classification
o IT Controls
o Application Controls
o General IT Controls
• IT Controls Implementation
• IT Risk Management System
• IT Governance
• IT Policies Procedures and Standards
• IT Controls Implementation
• IT Related Frameworks
• Introducing COBIT 2019
o Governance Framework Principles
o Overview
o Components of a Governance System
o 2019 Design Factors
o Governance System Design Workflow
o Implementation Roadmap
o Maturity Levels for Focus Areas
o Coverage and Other Standards/Frameworks
• IIA’s GTAG
• Tools for Improving IT Governance
• IT Audit
• Information Technology Auditing
• Risk-Based Audit Approach
• IT Audit Tasks
o Understanding the Mission, Requirements, and Challenges of the IT Audit Functions
o Strategic IT Audit Planning
o Resource Management
o Engagement Management
o Follow-up Activities
o Consulting and Other IT Audit Services
o Emerging Trends, Agile Auditing, Audit Management Automation and Continuous Learning
RESOURCE SPEAKER:
MR. REGINALD C. NERY
CIA, CPA, CISA, CRMA, CFSA, CCSA, COBIT (F/I)
SVP, Chief Audit Executive, Bank of Commerce
Former IRM Partner of a Top 4 Auditing Firm
Past President & Chairman IIA-Philippines
Past President, Board Member and Founding Member of ISACA – Manila
About our Speaker:
Mr. Reginald C. Nery is the Chief Audit Executive and Head of Internal Audit Division of Bank of Commerce with the rank of Senior Vice President. He directly reports to the Audit Committee. Prior to joining BOC, he was a Partner and Head of Technology Performance and Governance group and IT Committee Chairman of Diaz Murillo Dalupan, and Company, CPAs. He’s a former Risk Advisory Service partner, Chief Information Officer and National IT Security Officer of KPMG Philippines. He is credited with more than 35 years of business exposure in external and internal audit, IT audit, corporate governance, risk management, project management, business process improvement, IT security, compliance and AML management, and IT governance and management.
As such, Mr. Reggie Nery is thoroughly exposed in all the technical and administrative aspects of internal audit; information systems audit; system development project; and IT security management and advisory
He has dealt with a wide spectrum of clients, auditees, users as well as all levels of management, including board members and c-level executives from a wide spectrum of industries, including banking, insurance, oil, manufacturing, retail, real estate and property development, communications, and so forth.
Mr. Nery has been very active for the past several years in the three professional associations, namely the Institute of Internal Auditors – Philippines (IIA-P), Information Systems Audit and Control Association (ISACA) – Manila Chapter, and Project Management Institute (PMI) – Philippine Chapter.
Mr. Nery is a Certified Public Accountant, Certified Internal Auditor, Certified Information System Auditor, Certified Information Systems Security Professional, Certified Financial Service Auditor, Certification in Control Self-Assessment holder, Certified Information Security Manager, Certified Risk Management Assurance, a holder of COBIT® 5 Foundation qualification, a holder of COBIT® 5 Implementation qualification, an accredited Quality Assessment Validator of IIA, and the first accredited training provider of COBIT 5 Foundation and Implementation (Certification) courses in the Philippines. He also completed and passed the one-year course on “Trust Operations and Investment Management” by the Trust Institute Foundation of the Philippines. He completed recently (in November 2021) a certification course on “Data Science and Machine Learning: Making Data-Driven Decisions” by Massachusetts Institute of Technology (MIT) – Institute for Data, Systems, and Society.
SCHEDULE:
December 21, 2024 (Saturday)
9:00 AM – 5:00 PM
TRAINING FEE PER PARTICIPANT:
Member Institution – Php 2,800.00
Non-Member Institution – Php 3,920.00
*VAT inclusive

