Master effective IT auditing techniques, from security control reviews to advanced cybersecurity practices, with this essential field manual

Key Features

• Secure and audit endpoints in Windows environments for robust defense
• Gain practical skills in auditing Linux systems, focusing on security configurations and firewall auditing using tools such as ufw and iptables
• Cultivate a mindset of continuous learning and development for long-term career success
• Purchase of the print or Kindle book includes a free PDF eBook

Book Description

As cyber threats evolve and regulations tighten, IT professionals struggle to maintain effective auditing practices and ensure robust cybersecurity across complex systems. Drawing from over a decade of submarine military service and extensive cybersecurity experience, Lewis offers a unique blend of technical expertise and field-tested insights in this comprehensive field manual.

Serving as a roadmap for beginners as well as experienced professionals, this manual guides you from foundational concepts and audit planning to in-depth explorations of auditing various IT systems and networks, including Cisco devices, next-generation firewalls, cloud environments, endpoint security, and Linux systems. You’ll develop practical skills in assessing security configurations, conducting risk assessments, and ensuring compliance with privacy regulations. This book also covers data protection, reporting, remediation, advanced auditing techniques, and emerging trends.

Complete with insightful guidance on building a successful career in IT auditing, by the end of this book, you’ll be equipped with the tools to navigate the complex landscape of cybersecurity and compliance, bridging the gap between technical expertise and practical application.

What you will learn

• Evaluate cybersecurity across AWS, Azure, and Google Cloud with IT auditing principles
• Conduct comprehensive risk assessments to identify vulnerabilities in IT systems
• Explore IT auditing careers, roles, and essential knowledge for professional growth
• Assess the effectiveness of security controls in mitigating cyber risks
• Audit for compliance with GDPR, HIPAA, SOX, and other standards
• Explore auditing tools for security evaluations of network devices and IT components

Who this book is for

The IT Audit Field Manual is for both aspiring and early-career IT professionals seeking a comprehensive introduction to IT auditing. If you have a basic understanding of IT concepts and wish to develop practical skills in auditing diverse systems and networks, this book is for you. Beginners will benefit from the clear explanations of foundational principles, terminology, and audit processes, while those looking to deepen their expertise will find valuable insights throughout.

Table of Contents

1. Introduction to IT Auditing
2. Audit Planning and Preparation
3. Cisco Switches and Routers: Access Methods and Security Assessments
4. Next-Generation Firewall Auditing
5. Cloud Security Auditing
6. Endpoint Security: Windows 10 and Windows 11
7. Linux Systems Auditing
8. Wireless Access Points and Storage Technology Auditing
9. Data Protection and Privacy Considerations
10. Reporting and Remediation
11. Advanced Topics in IT Auditing
12. Building an IT Audit Career
13. Appendix: Conclusion and Future Outlook