Skip Ribbon Commands
Skip to main content
The Institute of Internal Auditors North AmericaBreadcrumb SeparatorLearning and EventsBreadcrumb SeparatorCoursesBreadcrumb SeparatorAuditing PeopleSoft
Course Description Course Outline Bring Us On Site  

Auditing PeopleSoft

Course Description

Print-friendly Course Description and Outline

To effectively manage risk in most organizations today, internal auditors and control specialists must have a thorough knowledge of PeopleSoft security and control features. During this course, a joint effort between The IIA and Deloitte & Touche, participants will explore all the functions of PeopleSoft, from its security and workflow functionality to its login and password management features.

As instructors delve deeper into PeopleSoft version 9.x, participants will learn about the software’s customization, programming, and change management control considerations, as well as the impact of the Sarbanes-Oxley Act on the internal control environment for PeopleSoft.

Participants will take part in facilitated discussions, computer-simulated class exercises and perform hands-on case studies and a mock audit using a live PeopleSoft 9.x system.

Day 1 – 8:30 a.m.–5:30 p.m.
Day 2 – 8:30 a.m.–5:30 p.m.
Day 3 – 8:30 a.m.–5:30 p.m.
Day 4 – 8:30 a.m.–1:30 p.m.

Course Duration: 3.5 day(s)
CPE Hours Available: 32
Knowledge Level: Intermediate
Field of Study: Auditing
Advance Preparation: 
Delivery Format: On-site Training (Group-Live); Seminar (Group-Live)

​Auditing Environment

  • Core PeopleSoft modules
  • UNIX/Oracle Basic control mechanisms
  • Common organization impacts
  • PeopleSoft support resources

Auditing PeopleSoft Enterprise

  • Internal control components
  • Common system architectures
  • Tables in PeopleSoft
  • Internal control considerations
  • PeopleSoft support tools
  • PeopleSoft and audit materiality

Security Architecture

  • Security mechanisms
  • Security architecture components
  • Reporting and object security

PeopleSoft User Authentication

  • Authentication process
  • Password management
  • Enterprise directory and key benefits

Security Administration

  • Configurable components: user id's, permission lists, roles, passwords
  • Key functionality: page actions, security and password setup tabs
  • Key audit considerations

Query Security

  • Configurable components: query trees, access groups, public queries
  • Key functionality: query profiles, query configurations
  • Key audit considerations

Process Scheduler Security

  • Configurable components: jobs, security groups, requests
  • Key audit considerations

Object Security

  • Configurable components: security rules, PeopleTools, change control
  • Functionality: menu access security, object and tool permissions
  • Key audit considerations

Financials Security

  • Configurable components: row level security, user preferences
  • Control features: ledger security, book security
  • Key audit considerations

HRMS Security

  • Configurable components: local country menu, global security, dept. id
  • Row-level security
  • Key audit considerations

Architecture Overview

  • Two-tier architecture — Benefits and shortcomings
  • Three-tier architecture — Benefits
  • PeopleSoft Internet architecture (PIA)

Customizations and Patch Migration

  • Change control rules
  • Change control migration path
  • Naming conventions
  • What's new?

Interfaces and Conversions

  • Key process steps
  • Uploading data into PeopleSoft
  • Control components: version control, error logs, data mapping
  • Audit considerations


  • Basic components: App designer, process maps
  • Primary agents
  • Rules, roles, routings
  • Control features: role user maintenance, approval rule definition
  • Audit considerations

Financial Reporting Cycle (FCRP)

  • Describe the financial reporting process
  • Key segregation of duties
  • Key setup and maintenance
  • Transaction processing
  • Period end close considerations

Human Resources and Payroll Cycle

  • Describe the HR and payroll process
  • Key segregation of duties
  • PeopleSoft HRMS integration
  • Table structure and auditing considerations

Expenditure Cycle

  • Describe the purchasing and payables process
  • Key segregation of duties
  • Levels of control for each module
  • Matching rules and activities
  • Pay cycle functionality

Revenue Cycle

  • Describe the revenue process
  • Key segregation of duties
  • Levels of control

​Most courses can be delivered through on-site training. You might be surprised that the organization leading the profession is just as committed to the delivery of affordable training.

Contact us by calling +1-407-937-1388 or send an e-mail to