IT Auditing
Using controls to protect information assets
Paperback Engels 2011 9780071742382Samenvatting
Secure Your Systems Using the Latest IT Auditing Techniques
Fully updated to cover leading-edge tools and technologies, 'IT Auditing: Using Controls to Protect Information Assets, 2nd Edition', explains, step by step, how to implement a successful, enterprise-wide IT audit program. New chapters on auditing cloud computing, outsourced operations, virtualization, and storage are included.
This comprehensive guide describes how to assemble an effective IT audit team and maximize the value of the IT audit function. In-depth details on performing specific audits are accompanied by real-world examples, ready-to-use checklists, and valuable templates. Standards, frameworks, regulations, and risk management techniques are also covered in this definitive resource.
- Build and maintain an internal IT audit function with maximum effectiveness and value
- Audit entity-level controls, data centers, and disaster recovery
- Examine switches, routers, and firewalls
- Evaluate Windows, UNIX, and Linux operating systems
- Audit Web servers and applications
- Analyze databases and storage solutions
- Assess WLAN and mobile devices
- Audit virtualized environments
- Evaluate risks associated with cloud computing and outsourced operations
- Drill down into applications to find potential control weaknesses
- Use standards and frameworks, such as COBIT, ITIL, and ISO
- Understand regulations, including Sarbanes-Oxley, HIPAA, and PCI
- Implement proven risk management practices
Specificaties
Lezersrecensies
Geef uw waardering
Inhoudsopgave
Acknowledgments
Introduction
Part 1: Audit Overview
1. Building an Effective Internal IT Audit Function
2. The Audit Process
Part 2: Auditing Techniques
3. Auditing Entity-Level Controls
4. Auditing Data Centers and Disaster Recovery
5. Auditing Routers, Switches, and Firewalls
6. Auditing Windows Operating Systems
7. Auditing Unix and Linux Operating Systems
8. Auditing Web Servers and Web Applications
9. Auditing Databases
10. Auditing Storage
11. Auditing Virtualized Environments
12. Auditing WLAN and Mobile Devices
13. Auditing Applications
14. Auditing Cloud Computing and Outsourced Operations
15. Auditing Company Projects
Part 3: Frameworks, Standards, and Regulations
16. Frameworks and Standards
17. Regulations
18. Risk Management
Index
Rubrieken
- Advisering
- Algemeen management
- Coaching en trainen
- Communicatie en media
- Economie
- Financieel management
- Inkoop en logistiek
- Internet en social media
- IT-management / ICT
- Juridisch
- Leiderschap
- Marketing
- Mens en maatschappij
- Non-profit
- Ondernemen
- Organisatiekunde
- Personal finance
- Personeelsmanagement
- Persoonlijke effectiviteit
- Projectmanagement
- Psychologie
- Reclame en verkoop
- Strategisch management
- Verandermanagement
- Werk en loopbaan