PREPARING FOR IT SECURITY AUDIT
InfoExchange :: Y4IT
Page 1 of 1
PREPARING FOR IT SECURITY AUDIT
-An information technology audit is an examination of the controls with in an information technology infrastructure.
Here is what wikipedia says: http://en.wikipedia.org/wiki/Information_security_audit
*IOS ROUTER- http://en.wikipedia.org/wiki/Cisco_IOS
**IT AUDIT- process of collecting and evaluating evidence of an organizations information systems, practices and operations
**OBJECTIVE OF REVIEW AND AUDIT PROCESS:
-Internal controls
--preventive
--Detective
--Reactive/Correlative
**EXAMPLES:
-Access Control
-Software Change
-Backup
**STAGES OF AUDIT:
-Planning
-Fieldwork Documentation
-Identify problem
-Develop solutions
**COBIT http://en.wikipedia.org/wiki/COBIT
-Develop
-Analyze
-Implement
-Plan
-Review Audit
-Feedback
**COMMUNITY OF SPONSORING ORGANIZATIONS(COSO)
-Outline of the y4it 2009 topic, day 3.
Here is what wikipedia says: http://en.wikipedia.org/wiki/Information_security_audit
*IOS ROUTER- http://en.wikipedia.org/wiki/Cisco_IOS
**IT AUDIT- process of collecting and evaluating evidence of an organizations information systems, practices and operations
**OBJECTIVE OF REVIEW AND AUDIT PROCESS:
-Internal controls
--preventive
--Detective
--Reactive/Correlative
**EXAMPLES:
-Access Control
-Software Change
-Backup
**STAGES OF AUDIT:
-Planning
-Fieldwork Documentation
-Identify problem
-Develop solutions
**COBIT http://en.wikipedia.org/wiki/COBIT
-Develop
-Analyze
-Implement
-Plan
-Review Audit
-Feedback
**COMMUNITY OF SPONSORING ORGANIZATIONS(COSO)
-Outline of the y4it 2009 topic, day 3.
InfoExchange :: Y4IT
Page 1 of 1
Permissions in this forum:
You cannot reply to topics in this forum
|
|