Windows Security – Audit Risk
I am performing internal audit on windows security monitoring process. The client performs periodic review of windows domain administrators to detect if there were any unauthorized access. For one of the review, we found out the individual was reviewing her own activity. My first thought is that this could be an SoD conflict.
I am trying to understand the audit risk with this process. There is no financial systems in scope that sit on Windows OS except for ADP, which is managed by third party vendor. Is there any financial audit risk with this? If the domain admin did attempt to login to windows, would there be any impact to the financial systems or is this just security risk with windows only? Appreciate any insights on this. Thanks. John.
Software/Hardware used:
Windows
I am trying to understand the audit risk with this process. There is no financial systems in scope that sit on Windows OS except for ADP, which is managed by third party vendor. Is there any financial audit risk with this? If the domain admin did attempt to login to windows, would there be any impact to the financial systems or is this just security risk with windows only? Appreciate any insights on this. Thanks. John.
Software/Hardware used:
Windows
ASKED:
November 5, 2009 7:33 PM
UPDATED:
November 7, 2009 12:33 AM
Answer Wiki:
If the ADP database lives on that server, there could a security risk. To avoid the risk the database files should be encrypted and access should be restricted by a separate set of login credentials.
To see all answers submitted to the Answer Wiki: View Answer History.
RSS - Discussions Help
Discuss This Question:
_ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _
