Skip Ribbon Commands
Skip to main content
Sign In
The Institute of Internal Auditors North AmericaBreadcrumb SeparatorTraining and EventsBreadcrumb SeparatorCoursesBreadcrumb SeparatorAuditing Oracle Applications
IIARF Icon
Course Description Course Outline Bring Us On Site  

Auditing Oracle Applications

Course Description

Print-friendly Course Description and Outline

Financial, operational, and IT auditors, members of Oracle Applications implementation teams, along with financial and accounting staff members concerned about internal controls, should acquire a solid understanding of how the implementation and use of Oracle applications will impact their organizations. This course will help attendees identify ways to provide an effective and efficient audit in an Oracle applications environment as well as how to audit Oracle applications security.

Taught exclusively by Deloitte & Touche practitioners with real-world IT audit experience, this seminar includes lectures, group discussions and computer-simulated class exercises, providing a thorough overview of Oracle security basics, network and operating system security, control features and functions of the various Oracle Applications modules and much more.

Times:
Day 1 – 8:30 a.m.–4:30 p.m.
Day 2 – 8:30 a.m.–4:30 p.m.
Day 3 – 8:30 a.m.–4:30 p.m.
Day 4 – 8:30 a.m.–1:30 p.m.

Course Duration: 3.5 day(s)
CPE Hours Available: 32
Knowledge Level: Intermediate
Field of Study: Auditing
Prerequisites: 
​None
Advance Preparation: 
​None
Delivery Format: On-site Training (Group-Live); Seminar (Group-Live)

​Oracle EBS Products Overview

  • Background, capabilities, and offerings
  • Oracle history
  • Common Oracle application modules
  • Technical infrastructure for Oracle applications
  • Oracle-specific risks and audit challenges.

Risks and Audit Issues

  • Key business risks
  • Implementation risks
  • Audit risks and challenges
  • Oracle resources
  • Real-world lessons learned discussion

Oracle Organizational Model, MOAC

  • Differences and similarities between 11i and R12 organizational structure
  • Oracle organizational model
  • Oracle organization concepts
  • Multi-organization access controls
  • Case study

Profile Options

  • User profile options security concepts
  • Profile options hierarchy and overrides
  • Hands-on demo

Oracle EBS R12 Security Concepts & Terminologies

  • Oracle security concepts
  • Oracle security terminology
  • Oracle security common scenarios

User Management (UMX)

  • User access security concepts
  • Password security and security reports used for audit
  • Role-based access controls (RBAC)

Flexfield Security

  • Flexfield security concepts
  • Flexfield discussion
  • Hands-on demo

Personalization

  • Personalization security concepts
  • Common examples

Miscellaneous Security

  • Functional Administrator security concepts
  • Folder security concepts
  • Inventory Org security concepts

Module Based Security

  • Oracle module-specific security features
  • HR security concepts
  • Project security concepts
  • Purchasing security concepts
  • Treasury security concepts

Oracle EBS Security Audit

  • Oracle features and functions used to evaluate security
  • Audit trails
  • Impact of audit features on performance

Oracle EBS Module Overview

  • Oracle functional module overview
  • Workflow concepts
  • Audit risks

Application Configuration Controls

  • Oracle Applications common controls
  • Types of application controls
  • Configuration
  • Reports
  • Profile options

Controls - RTR: General Ledger Controls

  • General Ledger concepts
  • General Ledger workflow
  • Control objectives and control tests for General Ledger
  • Oracle application features and functions relevant to auditing the General Ledger
  • Hans-on demo and/or exercise

Fixed Assets Controls

  • Assets concepts
  • Fixed Assets workflow
  • Control objectives and control tests for the Asset process
  • Oracle features and functions relevant to audit the Asset process
  • Hans-on demo and/or exercise

Controls – PTP: Payables Controls

  • Payables concepts
  • Payables workflow
  • Control objectives and control tests for the Payables process
  • Oracle features and functions relevant to auditing the Payables process
  • Hans-on demo and/or exercise

Controls - PTP: Purchasing Controls

  • Purchasing concepts
  • Purchasing workflow
  • Control objectives and control tests for Purchasing
  • Oracle features and functions relevant to auditing Purchasing
  • Hans-on demo and/or exercise

Controls OTC: Cash Management Controls

  • Cash Management concepts
  • Cash Management integration
  • Control objectives and control tests for the Cash Management process
  • Oracle features and functions relevant to audit the Cash Management process
  • Hans-on demo and/or exercise

Controls – RTR/OTC: Receivables Controls

  • Receivables concepts
  • Receivables workflow
  • Control objectives and control tests for the Receivables process
  • Oracle features and functions relevant to audit the Receivables process
  • Hans-on demo and/or exercise

Controls – OTC: Order Management Control

  • Order Management concepts
  • Order Management workflow
  • Control objectives and control tests for the Order Entry process
  • Oracle features and functions relevant to audit the Order Entry process
  • Hans-on demo and/or exercise

Inventory Controls

  • Inventory concepts
  • Inventory integration
  • Control objectives and control tests for the Inventory process
  • Oracle features and functions applicable to auditing the Inventory process
  • Hans-on demo and/or exercise

Network and OS Security

  • Network controls for the Oracle environment
  • Operating system security for the Oracle environment
  • Oracle OS folder structure
  • Database considerations
  • Hans-on demo and/or exercise

Oracle Identity and Access Management

  • OID/LDAP concepts
  • Single Sign On feature in Oracle
  • Oracle Identity Management concepts
  • Team discussion

Oracle EBS Integrated Compliance Solution

  • Oracle EBS, IDM and GRC integration concepts
  • High level overview of solution integration
  • Team discussion

​Most courses can be delivered through on-site training. You might be surprised that the organization leading the profession is just as committed to the delivery of affordable training.

Contact us by calling +1-407-937-1388 or send an e-mail to GetTraining@theiia.org.

LocationsDates
Deloitte Training Facility - Costa Mesa, CA
Costa Mesa, CA
Details and pricing
October 21-24,
2014