You're reading from IT Audit Field Manual Strengthen your cyber defense through proactive IT auditing

Product type Paperback

Published in Sep 2024

Publisher Packt

ISBN-13 9781835467930

Length 336 pages

Edition 1st Edition

Tools

AWS

Concepts

Cybersecurity

Author (1):

Lewis Heuermann

View More author details

Table of Contents (18) Chapters

Preface

1. Part 1: Foundations of IT Auditing FREE CHAPTER

2. Chapter 1: Introduction to IT Auditing

3. Chapter 2: Audit Planning and Preparation

4. Part 2: Auditing IT Systems and Networks

5. Chapter 3: Cisco Switches and Routers: Access Methods and Security Assessments

6. Chapter 4: Next-Generation Firewall Auditing

7. Chapter 5: Cloud Security Auditing

8. Chapter 6: Endpoint Security: Windows 10 and Windows 11

9. Chapter 7: Linux Systems Auditing

10. Chapter 8: Wireless Access Points and Storage Technology Auditing

11. Chapter 9: Data Protection and Privacy Considerations

12. Chapter 10: Reporting and Remediation

13. Chapter 11: Advanced Topics in IT Auditing

14. Chapter 12: Building an IT Audit Career

15. Index

Why subscribe?

16. Other Books You May Enjoy

Appendix: Conclusion and Future Outlook

Best practices in NGFW configuration and management

While NGFWs offer powerful security and traffic management controls, effective NGFW deployment goes beyond the initial technical configuration. IT auditors must validate that optimal firewall rule designs are present and that management processes surrounding changes ensure operational integrity. Firewall audit tools may be invaluable, depending on the size and complexity of the rulesets used by an organization. This section offers practical guidelines based on industry best practices and the potential pitfalls commonly discovered in real-world audit contexts.

Common NGFW Pitfalls

Let’s first take a look at some common NGFW pitfalls that you might encounter during an audit.

1 – Outdated configurations

Outdated configurations within an NGFW environment undermine optimal security posture and operational efficiency. These legacy rules, often carried forward from previous generations of firewalls or implemented...