Download Network Security Auditing by Chris Jackson PDF

By Chris Jackson

This entire new advisor to auditing community safety is an quintessential source for defense, community, and IT execs, and for the experts and know-how companions who serve them.

Cisco community safeguard professional Chris Jackson starts with an intensive review of the auditing method, together with insurance of the most recent laws, compliance matters, and most sensible practices. the writer then demonstrates how you can phase protection architectures into domain names and degree safety effectiveness via a complete platforms approach.

Network safety Auditing completely covers using either advertisement and open resource instruments to aid in auditing and validating safety coverage assumptions. The e-book additionally introduces best IT governance frameworks akin to COBIT, ITIL, and ISO 17799/27001, explaining their values, usages, and powerful integrations with Cisco safeguard items.

This publication hands you with targeted auditing checklists for every area, life like layout insights for assembly auditing requisites, and functional suggestions for utilizing complementary options to enhance any company’s safety posture.
• grasp the 5 pillars of defense auditing: evaluate, prevention, detection, response, and restoration.
• realize the foundational roles of safety guidelines, techniques, and criteria.
• comprehend present legislation on the topic of hacking, cracking, fraud, highbrow estate, junk mail, and reporting.
• study safety governance, together with the jobs of CXOs, safety administrators, directors, clients, and auditors.
• evaluation humans, methods, and technical safety controls via a system-based technique.
• Audit safeguard companies enabled via Cisco items.
• research defense coverage and compliance necessities for Cisco networks.
• investigate infrastructure protection and intrusion prevention structures.
• Audit community entry keep watch over and safe distant entry platforms.
• evaluate defense in consumers, hosts, and IP communications.
• assessment the functionality of safeguard tracking and administration systems.

This safeguard publication is a part of the Cisco Press Networking know-how sequence. protection titles from Cisco Press aid networking pros safe serious facts and assets, hinder and mitigate community assaults, and construct end-to-end, self-defending networks.

Show description

Read Online or Download Network Security Auditing PDF

Best networking books

Introduction to Wireless Local Loop: Broadband and Narrowband Systems (2nd Edition)

That includes constructing applied sciences, up-to-date industry forecasts, and present regulatory projects, this article goals to maintain the reader on the leading edge of rising items, providers and concerns affecting the sector of instant neighborhood loop (WLL) expertise. the second one version comprises new chapters on WLL deployment, the WLL industry, and a considerable evaluate of broadband applied sciences, in addition to new sections on prediction of person necessities and the rising UMTS ordinary.

Practical RF Circuit Design for Modern Wireless Systems Vol. 2: Active Circuits and Systems

The second one of 2 volumes, this can be a finished therapy of nonlinear circuits, introducing the complex issues that pros have to comprehend for his or her RF (radio frequency) circuit layout paintings. It offers an advent to energetic RF units and their modelling, and explores nonlinear circuit simulation options.

Additional info for Network Security Auditing

Example text

Management understands the severity much better and is in a better position to allocate resources if it has an idea of how much money the event could cost the company. Step 7. Determine risks: The values identified in previous steps are compiled to provide a snapshot of the risks the business faces. This step provides the prioritized list of security issues that need to be addressed. Step 8. Recommend controls: A key part of an auditor’s role is to recommend controls to reduce risk. These recommendations help the organization under audit better protect its assets.

This analysis requires an auditor’s experience and professional knowledge to determine how to prioritize any deficiencies identified. If the audit is done in response to regulatory compliance requirements or industry standards, then the auditor should also map the observed controls to the applicable standard or law to identify if anything is missing or incomplete. Finally, most audits also have an opinion component where the auditor must state his professional opinion regarding the effectiveness of the organization’s controls, and recommend solutions about how to improve the quality of the control to reduce risk.

This knowledge can help auditors identify questionable activities that they might uncover during an audit. C § 1030) has undergone many changes throughout the years as Congress struggles with the pace of technology proliferation and misuse. The Identity Theft Enforcement and Restitution Act of 2008 is the most recent modification to the provisions of this law. The CFAA is one of the more important statutes because it covers the “breaking-and-entering” aspect of computer criminal law. ” As an auditor, you can avoid violating the CFAA by making sure that you have full authorization, in writing, before conducting any type of auditing engagement.

Download PDF sample

Rated 4.17 of 5 – based on 47 votes