Auditing IT Infrastructures for Compliance

Description

Information systems and IT infrastructures are no longer void from governance and compliance given recent U.S.-based compliancy laws that were consummated during the early to mid-2000s. As a result of these laws, both public sector and private sector verticals must have proper security controls in place. Auditing IT Infrastructures for Compliance identifies and explains what each of these compliancy laws requires. It then goes on to discuss how to audit an IT infrastructure for compliance based on the laws and the need to protect and secure business and consumer privacy data. It closes with a resource for readers who desire more information on becoming skilled at IT auditing and IT compliance auditing.

This textbook is accompanied by a comprehensive supplements package, including all of the following: Instructor Resource Guide organized by learning objectives, with lesson plans, test questions, and Powerpoint presentation slides; lab simulations and lab manuals (labs available at additional cost), and online courseware compatible with your LMS.

About the Series

This book is part of the Information Systems Security and Assurance Series from Jones and Bartlett Learning. Designed for courses and curriculums in IT Security, Cybersecurity, Information Assurance, and Information Systems Security, this series features a comprehensive, consistent treatment of the most current thinking and trends in this critical subject area. These titles deliver fundamental information-security principles packed with real-world applications and examples. Authored by Certified Information Systems Security Professionals (CISSPs), they deliver comprehensive information on all aspects of information security. Reviewed word for word by leading technical experts in the field, these books are not just current, but forward-thinking - putting you in the position to solve the cybersecurity challenges not just of today, but of tomorrow, as well.

CONTENTS:

Part 1 The Need for Compliance

  Chapter 1 The Need for Information Systems Security Compliance

  Chapter 2 Overview of U.S. Compliancy Laws

  Chapter 3 What Is the Scope of an IT Compliance Audit?

Part 2 Auditing for Compliance: Frameworks, Tools, and Techniques

  Chapter 4 Auditing Standards and Frameworks

  Chapter 5 Planning an IT Infrastructure Audit for Compliance

  Chapter 6 Conducting an IT Infrastructure Audit for Compliance

  Chapter 7 Writing the IT Infrastructure Audit Report

  Chapter 8 Compliance Within the User Domain

  Chapter 9 Compliance Within the Workstation Domain

  Chapter 10 Compliance Within the LAN Domain

  Chapter 11 Compliance Within the LAN-to-WAN Domain

  Chapter 12 Compliance Within the WAN Domain

  Chapter 13 Compliance Within the Remote Access Domain

  Chapter 14 Compliance Within the System/Application Domain

Part 3 Ethics, Education, and Certification for IT Auditors

  Chapter 15 Ethics, Education, and Certification for IT Auditors