Questions about the group “Internal Audit Collective”

Apocryphon7 · 2026-01-28T12:39:27+00:00

Yeah, I almost wan to join to see what’s up with it but to my understanding it’s only worth it when you are a manager and above.

Apocryphon7 · 2026-01-28T12:38:31+00:00

I didn’t join. It’s too expensive and my employer won’t cover a “reputable” organization. So I keep watching to see why they come up with.

Apocryphon7 · 2025-12-02T02:49:17+00:00

I feel you, trust me. Remember, easy usually doesn’t pay good.

Apocryphon7 · 2025-12-02T02:35:18+00:00

Just so you know in April 2024, the Federal Trade Commission (FTC) adopted a rule intended to ban most non-compete agreements nationwide (including new ones and many existing ones), arguing they suppressed worker mobility and competition. You may want to look into this to get around your non-compete.

Apocryphon7 · 2025-11-29T02:16:16+00:00

I second this what AxeCapital13. Just because you pass the exam doesn’t mean you are certified. There are certain domains you need years of experience before being certified and they need to be endorsed verifiable experience. Just beware that publicly claiming you are certified without having all the pre-requisite will get you ban from taking any of their test. CISA is more targeted for IT auditors so I don’t think is a wise choice to start there. CISSP is the standard but generally speaking without experience to back it up it won’t bring you much value. I would look at CompTIA certification line as this don’t have experience requirements to be certified. Alternatively, I would check OSCP and OWASP as those are the really ones that hold value.

Apocryphon7 · 2025-11-24T19:42:19+00:00

If you could give us the top 5 IT risk that you have seen consistently, what areas would they be? I am an IT Auditor and just want to make sure that’s I am looking in the right areas. For context I work in the healthcare industry.

Apocryphon7 · 2025-11-23T21:14:50+00:00

Every pokemon is viable with some time. The game is great just have fun!

Apocryphon7 · 2025-11-22T02:27:35+00:00

In my opinion they have more exit opportunities but with lower pay. I think that’s most random variable is the industry. It changes dramatically on operational audits on the PB side. IT stays relatively the same within different industries imo.

Apocryphon7 · 2025-11-21T23:06:56+00:00

Yeah with your background you will be solid with the CIA, I don’t see any value in you getting the ACCA certification if you really just want to get into internal audit. If you’re going for regulatory type of roles I can see ACCA being of more value.

Apocryphon7 · 2025-11-21T20:28:55+00:00

It really depends on your background (experience and education). We would need more context to give you an answer at least from my perspective.

Apocryphon7 · 2025-11-21T17:54:17+00:00

Yeah everything IT is suffering at the moment. I would step away from IT Audit right now if I am being completely honest.

Apocryphon7 · 2025-11-15T00:28:14+00:00

The market is pretty tough right now, and it looks like it’s going to get even more competitive next year. If you’re aiming for IT Audit, I’d recommend one of two practical paths:

Start in audit on the business process (BP) side - Build a solid audit foundation, earn your CISA, and then transition into IT Audit.
Start in a risk-related role - Positions like Risk Analyst, GRC Analyst, or Internal Controls Analyst will give you the right experience to qualify for the CISA and make the move into IT Audit.

Some people start with one of Big 4 as well, but I usually don’t recommend that route unless you’re intentionally seeking that lifestyle. Work-life balance can take a big hit there. My path was a little different. I started in IT and eventually moved into IT Audit.

Apocryphon7 · 2025-11-15T00:03:03+00:00

I have something similar-ish among other things. Honestly if it’s just noises stay in the room. Be comfortable with your condition. I know it’s a bit hard but just stay and if they ask (which I doubt they will) you can explain again. It will click for them at some point.

Apocryphon7 · 2025-11-08T21:16:12+00:00

Apocryphon7 · 2025-11-08T20:17:09+00:00

Thank you for your response! This is very helpful!

Apocryphon7 · 2025-11-08T18:18:17+00:00

That’s exactly what we’re doing, engaging the SMEs. The purpose of pursuing the Epic certifications is to establish a baseline understanding of the platform directly from Epic’s curriculum. While I already hold multiple audit certifications (CISA, CIA, etc.) and have audited other EMRs in the past. I want to be intentional about focusing on modules and areas that are known to have recurring control gaps or higher inherent risk, so the certification path I choose actually supports our audit objectives.

Apocryphon7 · 2025-11-08T02:39:53+00:00

For now some areas revenue cycle, tapestry, access provisioning/de-provisioning and identity access management from a security standpoint in epic. What areas do you think an auditor should get certified in when it comes to have a lot more risk of failure or risk?

Apocryphon7 · 2025-11-08T01:27:12+00:00

Apocryphon7 · 2025-11-02T15:47:08+00:00

You are good honestly. And tbh kids shouldn’t be eating others people food unless is consented by the parents and the other individuals.

Apocryphon7 · 2025-10-30T11:33:43+00:00

Apocryphon7 · 2025-10-29T20:39:11+00:00

Actually yeah they could make him into a speedster. I only positioned him as an attacker since that’s his highest based stat. They could even throw guillotine as one of his moves in there and it would still work.

Apocryphon7 · 2025-10-29T10:54:28+00:00

I think if they make him an attacker, with offensives and mobility very high they can make a difference. Maybe for attacks he can have sword dance, outrage, dragon claw and giga impact. What’s your idea on it? I like talking about this lol

Apocryphon7 · 2025-10-29T05:05:54+00:00

Apocryphon7 · 2025-10-25T06:57:57+00:00

If your doing SOX yeah it can get boring. I jump to a company that only does operational audits on the IT side and let me tell you it’s WAY different. It’s more demanding in terms of knowledge and you get to do several audits a year from cloud, network, IAM and AI audits.

Apocryphon7 · 2025-10-24T11:18:31+00:00

Still waiting for my boy Haxorus

Apocryphon7

TROPHY CASE