This is Chapter 6 in Tom Olzak‘s book, “Enterprise Security: A practitioner’s guide.” Chapter 5 is available here: VLAN Network Segmentation and Security- Chapter 5
This is Chapter 5 in Tom Olzak‘s book, “Enterprise Security: A practitioner’s guide.” Chapter 4 is available here:Attack Surface Reduction – Chapter 4 Chapter 3
In this chapter, we define the various types of enterprise architectures, how to integrate them into strategic and tactical business objectives, and how to build
Managing security is managing risk. As explained in Chapter 1, Security ensures the confidentiality, integrity, and availability of information assets through the reasonable and appropriate
PORTIONS OF THIS ARTICLE INCLUDING MANY OF THE DEFINITIONS AND TERMINOLOGY HAVE BEEN SOURCED AND SUMMARIZED FROM ISACA.ORG and COURSE MANUALS PUBLISHED BY ISACA. A
PORTIONS OF THIS ARTICLE INCLUDING MANY OF THE DEFINITIONS AND TERMINOLOGY HAVE BEEN SOURCED AND SUMMARIZED FROM ISACA.ORG and COURSE MANUALS PUBLISHED BY ISACA. Infrastructure
Several people have asked for an IT Audit Program Template for an audit based on the ISO/IEC 27002:2005(E) security standard. This template (which can be found
PORTIONS OF THIS ARTICLE INCLUDING MANY OF THE DEFINITIONS AND TERMINOLOGY HAVE BEEN SOURCED AND SUMMARIZED FROM ISACA.ORG and COURSE MANUALS PUBLISHED BY ISACA. Application
PORTIONS OF THIS ARTICLE INCLUDING MANY OF THE DEFINITIONS AND TERMINOLOGY HAVE BEEN SOURCED AND SUMMARIZED FROM ISACA.ORG and COURSE MANUALS PUBLISHED BY ISACA. Shared
PORTIONS OF THIS ARTICLE INCLUDING MANY OF THE DEFINITIONS AND TERMINOLOGY HAVE BEEN SOURCED AND SUMMARIZED FROM ISACA.ORG and COURSE MANUALS PUBLISHED BY ISACA. Internet
Information Technology Basics In its most basic form, information technology (IT), can be reduced down to IPO. No that’s not an Initial Public Offering, but
“IT Governance and Controls” or “IT Monitoring and Assurance Practices for Board and Senior Management” Take your choice of titles of this article, but really
What is a standard? Who defines standards? Where do we as IT auditors come into contact with standards? Which framework should we use to do
Definition of IT audit – An IT audit can be defined as any audit that encompasses review and evaluation of automated information processing systems, related
Introduction to IT Audit Auditing is an evaluation of a person, organization, system, process, enterprise, project or product, performed to ascertain the validity and reliability
So you want to be an IT Auditor….. Over the course of the next few weeks, I will be posting some ten articles to help
