0

Explore Products

Best Sellers

New Releases

Books

Videos

Audiobooks

Free Learning

IT Audit Field Manual

You're reading from IT Audit Field Manual Strengthen your cyber defense through proactive IT auditing

Product type Paperback

Published in Sep 2024

Publisher Packt

ISBN-13 9781835467930

Length 336 pages

Edition 1st Edition

Tools

AWS

Concepts

Cybersecurity

Author (1):

Lewis Heuermann

View More author details

Table of Contents (18) Chapters

Preface

1. Part 1: Foundations of IT Auditing FREE CHAPTER

2. Chapter 1: Introduction to IT Auditing

3. Chapter 2: Audit Planning and Preparation

4. Part 2: Auditing IT Systems and Networks

5. Chapter 3: Cisco Switches and Routers: Access Methods and Security Assessments

6. Chapter 4: Next-Generation Firewall Auditing

7. Chapter 5: Cloud Security Auditing

8. Chapter 6: Endpoint Security: Windows 10 and Windows 11

9. Chapter 7: Linux Systems Auditing

10. Chapter 8: Wireless Access Points and Storage Technology Auditing

11. Chapter 9: Data Protection and Privacy Considerations

12. Chapter 10: Reporting and Remediation

13. Chapter 11: Advanced Topics in IT Auditing

14. Chapter 12: Building an IT Audit Career

15. Index

Why subscribe?

16. Other Books You May Enjoy

Appendix: Conclusion and Future Outlook

Prioritizing and planning remediation efforts

As an IT auditor, prioritizing audit findings enables you to focus on the most significant risks and ensure that the organization’s resources are allocated effectively. A risk-based approach to prioritization involves assessing each finding based on its potential impact and likelihood of occurrence. Your first step should always be to check with the organization you are auditing to see whether they have an established or preferred prioritization process.

We could dedicate an entire book to determining the likelihood and impact of findings that present a specific risk to an organization. A good place to start for an in-depth understanding of measuring cybersecurity risk quantification is the FAIR Institute https://www.fairinstitute.org/. Let’s briefly look at some ways you can review a finding for risk prioritization.

To determine the impact of a finding, consider the following:

Financial impact: Assess the potential...

The rest of the chapter is locked

Register for a free Packt account to unlock a world of extra content!

A free Packt account unlocks extra newsletters, articles, discounted offers, and much more. Start advancing your knowledge today.

Unlock this book and the full library FREE for 7 days

Get unlimited access to 7000+ expert-authored eBooks and videos courses covering every tech area you can think of

Start free trial

Renews at $19.99/month. Cancel anytime

Authors (1)

Lewis Heuermann

Lewis Heuermann

Lewis Heuermann, CISSP, PMP, with a background in cybersecurity and a passion for IT auditing, brings a unique blend of practical experience and academic knowledge to the field. As a Navy submarine veteran and cybersecurity consultant, Lewis has been at the forefront of implementing and assessing IT controls in diverse environments. His interest in IT auditing stems from a commitment to strengthening cybersecurity postures through rigorous and comprehensive auditing practices. His experience as a professor has further fueled his dedication to educating the next generation of IT auditors, making him a trusted voice in the field.

See other products by Lewis Heuermann

Personalised recommendations for you

Based on your interests and search pattern

The Aspiring CIO and CISO

The Aspiring CIO and CISO

This book helps entry, mid-level, and senior managers master soft skills, craft a compelling brand, and strategically plan their career in C-suite roles with the help of expert insights needed for success in digital leadership and executive roles.

Jun 2024 8h 32m

The Aspiring CIO and CISO

The Aspiring CIO and CISO

This book helps entry, mid-level, and senior managers master soft skills, craft a compelling brand, and strategically plan their career in C-suite roles with the help of expert insights needed for success in digital leadership and executive roles.

Jun 2024 8h 32m

The Aspiring CIO and CISO

The Aspiring CIO and CISO

This book helps entry, mid-level, and senior managers master soft skills, craft a compelling brand, and strategically plan their career in C-suite roles with the help of expert insights needed for success in digital leadership and executive roles.

Jun 2024 8h 32m

The Aspiring CIO and CISO

The Aspiring CIO and CISO

This book helps entry, mid-level, and senior managers master soft skills, craft a compelling brand, and strategically plan their career in C-suite roles with the help of expert insights needed for success in digital leadership and executive roles.

Jun 2024 8h 32m

The Aspiring CIO and CISO

The Aspiring CIO and CISO

This book helps entry, mid-level, and senior managers master soft skills, craft a compelling brand, and strategically plan their career in C-suite roles with the help of expert insights needed for success in digital leadership and executive roles.

Jun 2024 8h 32m

The Aspiring CIO and CISO

The Aspiring CIO and CISO

This book helps entry, mid-level, and senior managers master soft skills, craft a compelling brand, and strategically plan their career in C-suite roles with the help of expert insights needed for success in digital leadership and executive roles.

Jun 2024 8h 32m

The Aspiring CIO and CISO

The Aspiring CIO and CISO

This book helps entry, mid-level, and senior managers master soft skills, craft a compelling brand, and strategically plan their career in C-suite roles with the help of expert insights needed for success in digital leadership and executive roles.

Jun 2024 8h 32m

Malware Development for Ethical Hackers

Malware Development for Ethical Hackers

This book will help you understand malware development by delving into the intricate mechanisms of malware development, injection attacks, and advanced evasion strategies with over 80 real-life examples.

Jun 2024 13h 0m

Malware Development for Ethical Hackers

Malware Development for Ethical Hackers

This book will help you understand malware development by delving into the intricate mechanisms of malware development, injection attacks, and advanced evasion strategies with over 80 real-life examples.

Jun 2024 13h 0m

Malware Development for Ethical Hackers

Malware Development for Ethical Hackers

This book will help you understand malware development by delving into the intricate mechanisms of malware development, injection attacks, and advanced evasion strategies with over 80 real-life examples.

Jun 2024 13h 0m

Malware Development for Ethical Hackers

Malware Development for Ethical Hackers

This book will help you understand malware development by delving into the intricate mechanisms of malware development, injection attacks, and advanced evasion strategies with over 80 real-life examples.

Jun 2024 13h 0m

Malware Development for Ethical Hackers

Malware Development for Ethical Hackers

This book will help you understand malware development by delving into the intricate mechanisms of malware development, injection attacks, and advanced evasion strategies with over 80 real-life examples.

Jun 2024 13h 0m