You're reading from IT Audit Field Manual Strengthen your cyber defense through proactive IT auditing

Product type Paperback

Published in Sep 2024

Publisher Packt

ISBN-13 9781835467930

Length 336 pages

Edition 1st Edition

Tools

AWS

Concepts

Cybersecurity

Author (1):

Lewis Heuermann

View More author details

Table of Contents (18) Chapters

Preface

1. Part 1: Foundations of IT Auditing FREE CHAPTER

2. Chapter 1: Introduction to IT Auditing

3. Chapter 2: Audit Planning and Preparation

4. Part 2: Auditing IT Systems and Networks

5. Chapter 3: Cisco Switches and Routers: Access Methods and Security Assessments

6. Chapter 4: Next-Generation Firewall Auditing

7. Chapter 5: Cloud Security Auditing

8. Chapter 6: Endpoint Security: Windows 10 and Windows 11

9. Chapter 7: Linux Systems Auditing

10. Chapter 8: Wireless Access Points and Storage Technology Auditing

11. Chapter 9: Data Protection and Privacy Considerations

12. Chapter 10: Reporting and Remediation

13. Chapter 11: Advanced Topics in IT Auditing

14. Chapter 12: Building an IT Audit Career

15. Index

Why subscribe?

16. Other Books You May Enjoy

Appendix: Conclusion and Future Outlook

DISA STIGs

DISA STIGs (https://public.cyber.mil/stigs/) are the gold standard for securing IT systems within the U.S. Department of Defense (DoD) and other organizations that handle sensitive data. But what exactly are they, and how can IT auditors utilize them?

What are DISA STIGs?

STIGs are comprehensive documents that provide detailed configuration baselines for various operating systems, applications, and network devices. They outline specific security settings and hardening measures to mitigate vulnerabilities and protect against known threats.

Where to find DISA STIGs

DISA STIGs are publicly available and can be downloaded from the DISA website or the Public Distribution Center (PDC). They are typically available in multiple formats, including PDF, Extensible Configuration Checklist Description Format (XCCDF), and Security Content Automation Protocol (SCAP).

How to use DISA STIGs in IT auditing

To leverage these comprehensive security guidelines effectively...

The rest of the chapter is locked