Enclave Security "A Leader in Data Protection Services"

• Home
• Auditing
• Services
• Blogs
• Resources
• About Us

Subscribe to This Feed

Recent Posts

• Malware hosted on Google Code project site: Cyber Security Highlights September 3rd
• BadB now charged in RBS WorldPay ATM case: Cyber Security Highlights Sept 2, 2010
• HP holds Navy network Hostage for $3.3 billion: Cyber Security Highlights
• Nuclear plants prepare for cyber attacks: Cyber Security Highlights August 31, 2010
• iPad spam: Cyber Security Highlights August 27th

Categories

• 20 Critical Controls
• 44th Presidency Cybersecurity efforts
• Advanced Persistent Threat
• Assurance
• Audit
• Background Checks
• CISA
• Cyber Warfare
• Cybercrime
• Data Leakage Protection (DLP)
• DHS Infrastructure Reports
• Encryption
• Free Audit Checklists
• Health Information Technology
• Information Security Awareness
• Legal & Privacy
• Malware
• Medical Identity Theft
• Microsoft Windows
• Policy
• Progressive Reforms
• SANS Institute
• Secure Development Lifecycle (SDL)
• Sharpen the Saw
• Social Engineering
• Tools
• Training
• Web 2.0
• Writing Secure Code

Attend an Event

Enclave on Twitter

Audit

« Previous Entries Next Entries »

SANS IS Auditing Essentials Crash Course Discount (Orlando, FL – March 2010)

Tuesday, February 9th, 2010

In about a month I’ll be presenting a crash course on the essentials on IS Audit for the SANS Institute. Basically this is a two day course that covers an introduction to the foundations of how to perform audits of both technical and operational IS controls. It’s been a pretty popular course to give people [...]

Checklists a Day: Change Management Audit Checklists (Week in Review – February 1, 2010)

Monday, February 8th, 2010

Welcome back to our weekly archive of audit checklists! We hope these weekly lists will help you as you build your personalized checklist for auditing your own organizations. We know that sometimes it can be difficult to research each of these topics, so hopefully these lists will help save you some time when you are [...]

Checklists a Day: Web Application Audit Checklists (Week in Review – January 25, 2010)

Monday, February 1st, 2010

Last week we returned to the more traditional approach of posting audit checklists that were just that – checklists for auditing controls. We try our best to alternate between postings on how to audit technical controls and how to audit process based controls. Last week we took the technical approach and posted checklists for how [...]

Daily IT audit checklists via Twitter (free)

Monday, February 1st, 2010

As a part of our effort to provide resources to the audit community we have been sending everyone free audit checklists daily via Twitter. Simply follow @isaudit on twitter to get the latest free checklists.
We try to focus on one topic every week that we thing will be useful to the community. Last week we [...]

Checklists a Day: Week in Review – January 25, 2010

Monday, January 25th, 2010

This week we took a slightly different approach than our normal audit checklist postings. Many times, especially when we take a look at bigger picture issues, like risk assessment, we receive questions on how to make these issues practical. If risk assessment is so important, how do we actually perform a risk assessment?
There are a [...]

Checklists a Day: Week in Review – January 18, 2010

Monday, January 18th, 2010

This week we will be focusing our checklists on guides that will help you to assess your risk management programs. Often times we like to say that risk management drives our audit programs and it drives our information security programs – but how do we know our risk management programs work? I have seen some [...]

Automating Audit Tests with Eventtriggers.exe (20 Critical Control Scripting Tip)

Tuesday, January 12th, 2010

One of the issues that we have been dealing with extensively lately is the issue of auditing and automation. This has come most often been raised when we’ve been discussing how to address automating control assessments in conjunction with implementing the 20 Critical Controls. One of the core principles of the 20 Critical Controls is [...]

Checklists a Day: Week in Review – January 4, 2010

Tuesday, January 12th, 2010

Now that the New Year has begun, we’re back in the saddle providing audit checklists and resource that we hope will help auditors and information security professionals in general with their daily jobs. There are a lot of really good resources on the web that we can take advantage of, but the trouble is who [...]

Checklists a Day: Week in Review – October 5, 2009

Monday, October 5th, 2009

So as promised this last week we focused on the Software Development Lifecycle (SDLC) and how to audit an SDLC in an organization. As usual we also wanted to make sure that we gave everyone some fun technical tools to play with, so to keep with the theme we tweeted on tools that you could [...]

Checklists a Day: Week in Review – September 28, 2009

Monday, September 28th, 2009

So this week we’re back from Tweet-cation, and back to posting audit checklists and tools for everyone to enjoy. Last week I was teaching in San Diego for SANS Network Security and now I’m back and back on the bandwagon. We know everyone’s busy and it’s easy to miss some of these references, so here [...]

« Previous Entries Next Entries »