IT Auditing: Using Controls to Protect Information Assets

Have a Promotion Code?

Please enter it here:

Great deals and more!

Sign up for special offers, exclusive discounts, and new product announcements from McGraw-Hill Professional.

SIGN UP TODAY


Date

December 22, 2006

Format

Electronic book text, 387 pages

ISBN

0071631763 / 9780071631761

Adobe Digital Editions® is required to view your downloaded eBooks.
Click here to get Adobe Digital Editions
To learn more about eBooks please see our eBook FAQ.


If you're having problems installing due to firewall issues please go here:
http://kb2.adobe.com/cps/403/kb403051.html

$

Your Price

59.99



Overview


Main description

Protect Your Systems with Proven IT Auditing Strategies

 "A must-have for auditors and IT professionals."  -Doug Dexter, CISSP-ISSMP, CISA, Audit Team Lead, Cisco Systems, Inc.

Plan for and manage an effective IT audit program using the in-depth information contained in this comprehensive resource. Written by experienced IT audit and security professionals, IT Auditing: Using Controls to Protect Information Assets covers the latest auditing tools alongside real-world examples, ready-to-use checklists, and valuable templates. Inside, you'll learn how to analyze Windows, UNIX, and Linux systems; secure databases; examine wireless networks and devices; and audit applications. Plus, you'll get up-to-date information on legal standards and practices, privacy and ethical issues, and the CobiT standard. 

Build and maintain an IT audit function with maximum effectiveness and value

  • Implement best practice IT audit processes and controls
  • Analyze UNIX-, Linux-, and Windows-based operating systems
  • Audit network routers, switches, firewalls, WLANs, and mobile devices
  • Evaluate entity-level controls, data centers, and disaster recovery plans
  • Examine Web servers, platforms, and applications for vulnerabilities
  • Review databases for critical controls
  • Use the COSO, CobiT, ITIL, ISO, and NSA INFOSEC methodologies
  • Implement sound risk analysis and risk management practices
  • Drill down into applications to find potential control weaknesses


Table of contents

Part I: Audit OverviewChapter 1. Building an Effective Internal IT Audit Function Chapter 2. The Audit Process Part II: Auditing TechniquesChapter 3. Auditing Entity-Level Controls Chapter 4. Auditing Data Centers and Disaster Recovery Chapter 5. Auditing Switches, Routers, and Firewalls Chapter 6. Auditing Windows Operating Systems Chapter 7. Auditing Unix and Linux Operating Systems Chapter 8. Auditing Web Servers Chapter 9. Auditing Databases Chapter 10. Auditing Applications Chapter 11. Auditing WLAN and Mobile Devices Chapter 12. Auditing Company Projects Part III: Frameworks, Standards, and RegulationsChapter 13. Frameworks and StandardsChapter 14. Regulations Chapter 15: Risk ManagementIndex


Author comments

Chris Davis, CISA, CISSP, shares his experience from architecting, hardening, and auditing systems. He has trained auditors and forensic analysts. Davis is the coauthor of the bestselling Hacking Exposed: Computer Forensics.

Mike Schiller, CISA, has 14 years of experience in the IT audit field, most recently as the worldwide IT Audit Manager at Texas Instruments.

Kevin Wheeler, CISA, CISSP, NSA IAM/IEM, is the founder and CEO of InfoDefense and has over ten years of IT security experience. 

 





Copyright 2013 McGraw-Hill Global Education Holdings, LLC

WELCOME!

Before you can enjoy free downloads from McGraw-Hill Professional, we ask that you please provide your email address and country.



Yes, I want to receive other special offer.