Appendix A
External Audit Checklists
Information in this chapter:
• PCI DSS
• Sarbanes-Oxley
• HIPPA
• Summary
The information in this appendix is meant to be a guide. Each audit has a different set of criteria that must be met to be passed, and each auditing company and each individual auditor have a different interpretation of the specification that defines each audit. The information provided here should be used as a guideline to give you the best possible chance of passing the audit on the first try.
Note
Make No Assumptions…
When working with an auditor, always answer the question being asked, and only the question being asked. The auditor will hopefully be asking specific questions, which should require specific answers. If an auditor ...
Get Securing SQL Server, 2nd Edition now with the O’Reilly learning platform.
O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.