Management, compliance & auditing

Management, compliance & auditing February 8, 2012 Aaron Bossert

The Compliance Shell Game

"What's in a name? that which we call a rose. By any other name would smell as sweet" Shakespeare would probably turn over in his grave knowing that I have...

Management, compliance & auditing January 30, 2012 Tom Olzak

Building the Foundation: Architecture Design – Chapter 3

In this chapter, we define the various types of enterprise architectures, how to integrate them into strategic and tactical business objectives, and how to build from business need to system and network design.

Management, compliance & auditing December 12, 2011 Tom Olzak

Enterprise Security: A practitioner’s guide – Chapter 1

Chapter 1Security: A working definition Managing Risk Probability of Occurrence Business Impact Threat Sources Human Threats Geographic Threats Natural...

Management, compliance & auditing November 17, 2011 Tom Olzak

UEFI and the TPM: Building a foundation for platform trust

Table of Contents Trusted Computing Boot Path Security Challenges Boot Path Attack Surface The Trusted Memory Module (TPM) TPM Architecture...

Management, compliance & auditing November 17, 2011 Len Marzigliano

Goodbye DIACAP, Hello DIARMF

When C&A becomes A&A, will you be ready? Every few months, an elite group of DoD security experts, IT managers, and senior leadership gather to chart...

Management, compliance & auditing June 15, 2011 Kenneth Magee

ISO27002 Security Framework – Audit Program Template

Several people have asked for an IT Audit Program Template for an audit based on the ISO/IEC 27002:2005(E) security standard. This template, which can be...

Management, compliance & auditing June 2, 2011 Kenneth Magee

IT Auditing and Controls – Information Technology Basics

Information Technology Basics In its most basic form, information technology (IT), can be reduced down to IPO. No that’s not an Initial Public Offering,...

Management, compliance & auditing May 27, 2011 Kenneth Magee

IT auditing and controls – IT governance and controls

“IT Governance and Controls” or “IT Monitoring and Assurance Practices for Board and Senior Management” Take your choice of titles of this article,...

Management, compliance & auditing May 16, 2011 Kenneth Magee

IT auditing and controls – An introduction

Auditing is an evaluation of a person, organization, system, process, enterprise, project or product, performed to ascertain the validity and reliability of...

Management, compliance & auditing May 13, 2011 Kenneth Magee

IT auditing and controls – An overview

So you want to be an IT Auditor….. Over the course of the next few weeks, I will be posting some ten articles to help you understand what it takes to move...

‹
1
…
16
17
18
19
20