IT Auditing: Using Controls to Protect Information Assets

Protect Your Systems with Proven IT Auditing Strategies  "a must-have for auditors and it professionals."  -doug dexter, cissp-issmp, cisa, audit team lead, cisco systems, inc. plan for and manage an effective it audit program using the in-depth information contained in this comprehensive resource. written by experienced it audit and security professionals, IT Auditing: Using Controls to Protect Information Assets covers the latest auditing tools alongside real-world examples, ready-to-use checklists, and valuable templates. Inside, you'll learn how to analyze Windows, UNIX, and Linux systems; secure databases; examine wireless networks and devices; and audit applications. Plus, you'll get up-to-date information on legal standards and practices, privacy and ethical issues, and the CobiT standard.  build and maintain an it audit function with maximum effectiveness and value Implement best practice IT audit processes and controlsAnalyze UNIX-, Linux-, and Windows-based operating systemsAudit network routers, switches, firewalls, WLANs, and mobile devicesEvaluate entity-level controls, data centers, and disaster recovery plansExamine Web servers, platforms, and applications for vulnerabilities Review databases for critical controlsUse the COSO, CobiT, ITIL, ISO, and NSA INFOSEC methodologiesImplement sound risk analysis and risk management practicesDrill down into applications to find potential control weaknesses