1. Explain basic control concepts and explain why computer control and
security are important.
2. Compare and contrast the COBIT, COSO, and ERM control frameworks.
3. Describe the major elements in the internal environment of a company.
4. Describe the four types of control objectives that companies need to set.
5. Describe the events that affect uncertainty and the techniques used to
identify them.
6. Explain how to assess and respond to risk using the Enterprise Risk
Management (ERM) model.
7. Describe control activities commonly used in companies.
8. Describe how to communicate information and monitor control processes
in organizations.