1
How to tackle the security risk an IT administrator generates
Hello, im an auditor for global copany risks. One of the things that we look for is sepperation of functions. shortly said, you don’t want the same person creating your bill’s and be able to pay them (because he presents a serious security risk for commiting fraud.) Now what to do with an Domain Administrator [...]
Answer Question
| May 14, 2011 7:43 AM
Administrative privileges, Administrator, IT administration, Security, Security audits
Hello, im an auditor for global copany risks. One of the things that we look for is sepperation of functions. shortly said, you don’t want the same person creating your bill’s and be able to pay them (because he presents a serious security risk for commiting fraud.) Now what to do with an Domain Administrator [...]
Answer Question
| May 14, 2011 7:43 AM
Administrative privileges, Administrator, IT administration, Security, Security audits
Which auditing solution should be used for banking service?
I’m working in a firm specialized in providing banking services. I’m working on a user control mechanism and as part of the mechanism I need an auditing solution. Here are the requirements I have for my system: Logging all the command that users enter and preferably storing them on a per user basis (for instance [...]
Answer Question
| November 6, 2009 5:05 PM
Linux, Linux security, Security audits, Syslog
I’m working in a firm specialized in providing banking services. I’m working on a user control mechanism and as part of the mechanism I need an auditing solution. Here are the requirements I have for my system: Logging all the command that users enter and preferably storing them on a per user basis (for instance [...]
Answer Question
| November 6, 2009 5:05 PM
Linux, Linux security, Security audits, Syslog
Analyzing Security Audit Journal
Hello, could you please tell me where can I find a book, guide or course about Tracking and Analizing Security Audit Journal on iSeries? I have tried Appendix F on Security Guide but there are not all entries and it does not explain how to analize records in journal. Thanks a lot
Answer Question
| November 5, 2009 2:46 PM
AS/400 audit, AS/400 journaling, AS/400 security, Security audits, V5R4
Hello, could you please tell me where can I find a book, guide or course about Tracking and Analizing Security Audit Journal on iSeries? I have tried Appendix F on Security Guide but there are not all entries and it does not explain how to analize records in journal. Thanks a lot
Answer Question
| November 5, 2009 2:46 PM
AS/400 audit, AS/400 journaling, AS/400 security, Security audits, V5R4
unchecking the ‘password never expires’
Hi, I have a number of domain users in Windows 2003 Server Active Directory Users and Computers. I believe these users to have the ‘password never expires’ check box ticked in their accounts. I do not know who or where their accounts reside, therefore, I would like to know how to obtain a list of [...]
Answer Question
| November 3, 2010 2:45 PM
Active Directory Users and Computers, GPO, Security audits, Windows Server 2003
Hi, I have a number of domain users in Windows 2003 Server Active Directory Users and Computers. I believe these users to have the ‘password never expires’ check box ticked in their accounts. I do not know who or where their accounts reside, therefore, I would like to know how to obtain a list of [...]
Answer Question
| November 3, 2010 2:45 PM
Active Directory Users and Computers, GPO, Security audits, Windows Server 2003
How to do a security assessment in a hospital environment?
Possible questions to ask to employee working in a hospital enironment when you are conducting security assessment?
Answer Question
| May 20, 2009 9:47 AM
Risk management, Security accessment, Security audits
Possible questions to ask to employee working in a hospital enironment when you are conducting security assessment?
Answer Question
| May 20, 2009 9:47 AM
Risk management, Security accessment, Security audits
Road to become a Security Auditor?
Hi, I am really confused about way to follow to become a Security Auditor… and the opportunities it has in future.. esp. in India ?? Currently I am working as a Security Consultant but dealing only with Security Related products including Firewalls, NMS, IPS etc and not Standards like BS7799, ISO27001, CoBit etc.. Being in [...]
Answer Question
| February 29, 2012 8:22 AM
CCIE, Certified Information Systems Auditor, CISA, Cisco Certified Internetwork Expert, Information Security Management System, ISMS, IT careers, Security auditing, Security Auditor, Security audits, Security careers
Hi, I am really confused about way to follow to become a Security Auditor… and the opportunities it has in future.. esp. in India ?? Currently I am working as a Security Consultant but dealing only with Security Related products including Firewalls, NMS, IPS etc and not Standards like BS7799, ISO27001, CoBit etc.. Being in [...]
Answer Question
| February 29, 2012 8:22 AM
CCIE, Certified Information Systems Auditor, CISA, Cisco Certified Internetwork Expert, Information Security Management System, ISMS, IT careers, Security auditing, Security Auditor, Security audits, Security careers
Checklists for Router, Firewall and Switch security
I have recently been shifted to Information security audit department. I need some checklists to check the security compliance for Router, Switch, and Firewall. Please provide me some checklists to audit the same.
Answer Question
| March 5, 2009 6:03 AM
Audit and compliance, Auditing (compliance), Compliance checklist, ISMS, Security audits, Security compliance
I have recently been shifted to Information security audit department. I need some checklists to check the security compliance for Router, Switch, and Firewall. Please provide me some checklists to audit the same.
Answer Question
| March 5, 2009 6:03 AM
Audit and compliance, Auditing (compliance), Compliance checklist, ISMS, Security audits, Security compliance
Network Security refresher training
Hello, I was wondering if anyone can refer me to a good and basically free online network auditing, testing, documentation resource available online. thank you.
Answer Question
| February 17, 2009 8:12 PM
IT training, Network security, Security audits
Hello, I was wondering if anyone can refer me to a good and basically free online network auditing, testing, documentation resource available online. thank you.
Answer Question
| February 17, 2009 8:12 PM
IT training, Network security, Security audits
Can a company do an ISO 17799/27001 certification in-house?
Can a company do an ISO 17799/27001 certification in-house or does it require a third party to come in and do it? what about after that – are recertifications required or can that be done in house with an internal auditor?
Answer Question
| June 6, 2011 10:17 PM
Information security, Information Security Management System, ISO 17799, ISO 27001, ISO/IEC 27001, Security audits, Security certifications
Can a company do an ISO 17799/27001 certification in-house or does it require a third party to come in and do it? what about after that – are recertifications required or can that be done in house with an internal auditor?
Answer Question
| June 6, 2011 10:17 PM
Information security, Information Security Management System, ISO 17799, ISO 27001, ISO/IEC 27001, Security audits, Security certifications
Security Audit
what form or procedeure would you use for a final security Audit after the Avaya system is installed?
Answer Question
| October 21, 2008 9:04 PM
Audit and compliance, Auditing, Avaya, IT audit, Security audits
what form or procedeure would you use for a final security Audit after the Avaya system is installed?
Answer Question
| October 21, 2008 9:04 PM
Audit and compliance, Auditing, Avaya, IT audit, Security audits
how i can make auditing in windows 2003 server and how we can see who is last one access the file
auditing features in windows 2003 server
Answer Question
| May 28, 2008 8:51 AM
Auditing software (security), Security audits, Windows Server 2003
auditing features in windows 2003 server
Answer Question
| May 28, 2008 8:51 AM
Auditing software (security), Security audits, Windows Server 2003
windows server 2003 file auditing
I activated auditing on the local security policy and then defined auditing on a file being accessed as part of our site through IIS. Even tons of people are accessing that script to view our site, no events are appearing in the event viewer about this activity.
Answer Question
| May 29, 2008 8:17 AM
Auditing, IIS, Internet Information Services, Security audits, Windows Server 2003
I activated auditing on the local security policy and then defined auditing on a file being accessed as part of our site through IIS. Even tons of people are accessing that script to view our site, no events are appearing in the event viewer about this activity.
Answer Question
| May 29, 2008 8:17 AM
Auditing, IIS, Internet Information Services, Security audits, Windows Server 2003
Auditing administration tasks via the GUI
I have a requirement to monitor (audit) administrator users in our Windows environment but can’t find anybody who can provide a tool that will let me record and play back the GUI-based activity. I can track the CLI based activity. Anybody know of a utility/tool that will let me track the GUI activity?
Answer Question
| April 29, 2008 4:10 AM
Audit trails, Auditing software (security), Security audits, Security products, security solution.
I have a requirement to monitor (audit) administrator users in our Windows environment but can’t find anybody who can provide a tool that will let me record and play back the GUI-based activity. I can track the CLI based activity. Anybody know of a utility/tool that will let me track the GUI activity?
Answer Question
| April 29, 2008 4:10 AM
Audit trails, Auditing software (security), Security audits, Security products, security solution.
evaluation security system
i want to know what is the cod to find the posible number of keys for 4 or 8 char, by using vb.net
Answer Question
| April 3, 2008 12:44 PM
Security audits, VB.NET
i want to know what is the cod to find the posible number of keys for 4 or 8 char, by using vb.net
Answer Question
| April 3, 2008 12:44 PM
Security audits, VB.NET
1
