This course aims at the senior IT- Auditor, IT Risk Manager, Information Security Specialist, IT- Compliance Officer, IT- Governance Manager and IT- Architect. After attending this training they will:  

• Understand the essential “under-the-hood” differences between virtual and traditional (physical) appliances, servers and networks and how they affect standard information system Risk and Audit techniques & tools
• Understand the proper interaction between Risk Management, IT- Control and IT- Audit for virtualized & ‘cloudified’ enterprise architectures
• Be able to assess virtual environments and cloud based services against critical compliance requirements and advise if and how compliance & current policies continue to enforce desired security postures or if they need to be reinforced
• Have deep appreciation of inherent risk that is associated with the virtualization of enterprise components and cloud services
• Be able to identify specific vulnerabilities & threats and recommend mitigating detective, corrective and preventive controls
• Know how to design, develop and implement controls that auditors must see, investigate and prove
• Know typical best practice design configurations and how to obtain evidence to prove that the stated designs are actually working and are assured
• Be able to create risk- directed audit projects and audit virtualized segments of information systems and for Cloud Governance- specific controls & Operations
• Be prepared to take the Virtualization Audit Professional [VAP] or the Virtualization & Cloud Computing Audit Professional [VCAP] examination test