Preface

• Who this book is for
• What this book covers
• To get the most out of this book
• Conventions used
• Get in touch
• Reviews
• Share Your Thoughts

1. Part 1: Foundations of IT Auditing FREE CHAPTER

2. Chapter 1: Introduction to IT Auditing

• The role and importance of IT auditing
• The evolution of IT auditing in cybersecurity
• Key concepts and terminology in IT auditing
• The business process and people in the IT auditing process and planning
• Summary

3. Chapter 2: Audit Planning and Preparation

• Understanding the importance of audit planning
• Defining audit scope and objectives
• Risk assessment and audit approach
• Resource allocation and timeline
• Stakeholder engagement and communication
• Summary

4. Part 2: Auditing IT Systems and Networks

5. Chapter 3: Cisco Switches and Routers: Access Methods and Security Assessments

• Introduction to basic networking concepts
• Understanding Cisco switches and routers
• Access methods for Cisco switches and routers
• Security risks associated with Cisco devices
• Conducting security assessments on Cisco devices
• Summary

6. Chapter 4: Next-Generation Firewall Auditing

• An introduction to NGFWs
• Common firewall features and security assessment approaches
• Best practices in NGFW configuration and management
• Summary

7. Chapter 5: Cloud Security Auditing

• Introduction to cloud security auditing
• Auditing in Microsoft Azure
• Auditing in AWS
• General best practices in cloud security auditing
• Summary

8. Chapter 6: Endpoint Security: Windows 10 and Windows 11

• Security features in Windows 10 and Windows 11
• Auditing Microsoft Defender
• Evaluating Windows Firewall across both versions
• BitLocker and data encryption in Windows 10 and Windows 11
• Summary

9. Chapter 7: Linux Systems Auditing

• Introduction to Linux
• Security configurations that are common in Linux distributions
• Managing user access and privileges in Linux
• Auditing firewall and network security with ufw and iptables
• Summary

10. Chapter 8: Wireless Access Points and Storage Technology Auditing

• Auditing wireless access points
• Security and compliance in wireless networking
• Storage technology – types and risks
• Auditing storage systems for security and compliance
• Summary

11. Chapter 9: Data Protection and Privacy Considerations

• Understanding privacy laws and regulations
• Basics of data protection
• Implementing data protection measures
• The auditor’s role in data privacy and protection
• Summary

12. Chapter 10: Reporting and Remediation

• Principles of effective audit reporting
• Communicating findings to stakeholders
• Prioritizing and planning remediation efforts
• Ensuring effective quality assurance of IT audit processes
• Summary

13. Chapter 11: Advanced Topics in IT Auditing

• Exploring emerging technologies
• Future trends in IT auditing
• Introduction to advanced auditing techniques
• DISA STIGs
• Preparing for the future of IT auditing
• Building your practical skill set
• Summary

14. Chapter 12: Building an IT Audit Career

• Getting started in IT auditing
• Essential skills and certifications
• Navigating career paths in IT auditing
• Continuous learning and professional development
• Summary

15. Index

• Why subscribe?

16. Other Books You May Enjoy

• Packt is searching for authors like you
• Share Your Thoughts
• Download a free PDF copy of this book

Appendix: Conclusion and Future Outlook

• Summarizing the key learnings
• The future of IT auditing
• Staying current in a dynamic field
• Encouragement and the next steps for beginners
• Summary