We have an external IT company auditing our security and policies. What kind of access should we give them? Should we be worried about auditing the auditors?
Thanks! We'll email you when relevant content is added and updated.
I have a requirement to monitor (audit) administrator users in our Windows environment but can't find anybody who can provide a tool that will let me record and play back the GUI-based activity. I can track the CLI based activity. Anybody know of a utility/tool that will let me track the GUI...
Thanks! We'll email you when relevant content is added and updated.
I have recently been shifted to Information security audit department. I need some checklists to check the security compliance for Router, Switch, and Firewall. Please provide me some checklists to audit the same.
Thanks! We'll email you when relevant content is added and updated.
Hi, I am really confused about way to follow to become a Security Auditor... and the opportunities it has in future.. esp. in India? Currently I am working as a Security Consultant but dealing only with Security Related products including Firewalls, NMS, IPS etc and not Standards like BS7799,...
Thanks! We'll email you when relevant content is added and updated.
We need to export the windows server 2003 SAM database to a standalone server for an external security audit. Where do I find this file or how can I export the data needed?
Thanks! We'll email you when relevant content is added and updated.
Hello, could you please tell me where can I find a book, guide or course about Tracking and Analizing Security Audit Journal on iSeries? I have tried Appendix F on Security Guide but there are not all entries and it does not explain how to analize records in journal. Thanks a lot
Thanks! We'll email you when relevant content is added and updated.
We need to do a security audit to see what users have access to what within our Active Directory 2008 network. Is there a free tool to help with this and possibly reassign permissions based on rules?
Thanks! We'll email you when relevant content is added and updated.
Hello, I was wondering if anyone can refer me to a good and basically free online network auditing, testing, documentation resource available online. thank you.
Thanks! We'll email you when relevant content is added and updated.
Hello, I'm a student at UAT and am attempting to find out what would the best way be to implement ISO 27001 framework from the ground up. Has anyone here set it up from nothing, and what recommendations do you have starting this up?
Thanks! We'll email you when relevant content is added and updated.
We have a small network (less than 50 workstations), and I notice in the Security Event Logs of each workstation there will usually be several audit failures. For example: Event Type: Failure Audit Event Source: Security Event Category: Logon/Logoff Event ID: 529 Date: 3/30/2009 Time: 8:19:25 AM...
Thanks! We'll email you when relevant content is added and updated.
In our company, the IT department set some policies to be able to control accessing inappropriate sites and other illegal sites. As an auditor, are we exempt from their policies because even accessing Yahoo mail is banned? There are times we need to research needed by the Top Management but we...
Thanks! We'll email you when relevant content is added and updated.
Dear all ! In our company we are using power 720 server for our application. Some of us in the Admin side we have the access to all the objects and can do any changes. But i as a super admin i just want to record all the activities of another person like changes in PF and job ending and all...
Thanks! We'll email you when relevant content is added and updated.
Can a company do an ISO 17799/27001 certification in-house or does it require a third party to come in and do it? what about after that - are recertifications required or can that be done in house with an internal auditor?
Thanks! We'll email you when relevant content is added and updated.
Hello, im an auditor for global copany risks. One of the things that we look for is sepperation of functions. shortly said, you don't want the same person creating your bill's and be able to pay them (because he presents a serious security risk for commiting fraud.) Now what to do with an Domain...
Thanks! We'll email you when relevant content is added and updated.
The IT auditors have pointed some of my boxes (SUSE, Solaris 10 and AIX) have [strong]remote printer service[/strong] running and that is a potent security violation. I am confused what is remote printer service and how do I disable the same. I need the help. A prompt response is appreciable.
Thanks! We'll email you when relevant content is added and updated.