IT Audit Field Manual: Strengthen your cyber defense through proactive IT auditing
by 作者: Lewis Heuermann (Author)
Publisher Finelybook 出版社: Packt Publishing
Publication Date 出版日期: 2024-09-13
Language 语言: English
Pages 页数: 336 pages
ISBN-10 书号: 1835467938
ISBN-13 书号: 9781835467930
Book Description
Master effective IT auditing techniques, from security control reviews to advanced cybersecurity practices, with this essential field manual
Key Features
- Secure and audit endpoints in Windows environments for robust defense
- Gain practical skills in auditing Linux systems, focusing on security configurations and firewall auditing using tools such as ufw and iptables
- Cultivate a mindset of continuous learning and development for long-term career success
- Purchase of the print or Kindle book includes a free PDF eBook
Book Description
As cyber threats evolve and regulations tighten, IT professionals struggle to maintain effective auditing practices and ensure robust cybersecurity across complex systems. Drawing from over a decade of submarine military service and extensive cybersecurity experience, Lewis offers a unique blend of technical expertise and field-tested insights in this comprehensive field manual.
Serving as a roadmap for beginners as well as experienced professionals, this manual guides you from foundational concepts and audit planning to in-depth explorations of auditing various IT systems and networks, including Cisco devices, next-generation firewalls, cloud environments, endpoint security, and Linux systems. You’ll develop practical skills in assessing security configurations, conducting risk assessments, and ensuring compliance with privacy regulations. This book also covers data protection, reporting, remediation, advanced auditing techniques, and emerging trends.
Complete with insightful guidance on building a successful career in IT auditing, by the end of this book, you’ll be equipped with the tools to navigate the complex landscape of cybersecurity and compliance, bridging the gap between technical expertise and practical application.
What you will learn
- Evaluate cybersecurity across AWS, Azure, and Google Cloud with IT auditing principles
- Conduct comprehensive risk assessments to identify vulnerabilities in IT systems
- Explore IT auditing careers, roles, and essential knowledge for professional growth
- Assess the effectiveness of security controls in mitigating cyber risks
- Audit for compliance with GDPR, HIPAA, SOX, and other standards
- Explore auditing tools for security evaluations of network devices and IT components
Who this book is for
The IT Audit Field Manual is for both aspiring and early-career IT professionals seeking a comprehensive introduction to IT auditing. If you have a basic understanding of IT concepts and wish to develop practical skills in auditing diverse systems and networks, this book is for you. Beginners will benefit from the clear explanations of foundational principles, terminology, and audit processes, while those looking to deepen their expertise will find valuable insights throughout.
Table of
Contents
- Introduction to IT Auditing
- Audit Planning and Preparation
- Cisco Switches and Routers: Access Methods and Security Assessments
- Next-Generation Firewall Auditing
- Cloud Security Auditing
- Endpoint Security: Windows 10 and Windows 11
- Linux Systems Auditing
- Wireless Access Points and Storage Technology Auditing
- Data Protection and Privacy Considerations
- Reporting and Remediation
- Advanced Topics in IT Auditing
- Building an IT Audit Career
- Appendix: Conclusion and Future Outlook
About the Author
Lewis Heuermann, CISSP, PMP, with a background in cybersecurity and a passion for IT auditing, brings a unique blend of practical experience and academic knowledge to the field. As a Navy submarine veteran and cybersecurity consultant, Lewis has been at the forefront of implementing and assessing IT controls in diverse environments. His interest in IT auditing stems from a commitment to strengthening cybersecurity postures through rigorous and comprehensive auditing practices. His experience as a professor has further fueled his dedication to educating the next generation of IT auditors, making him a trusted voice in the field.
