THE GOAL OF INFORMATION SECURITY is to prevent loss by protecting the availability, integrity, and confidentiality of information. You have learned how security controls protect resources and manage controls in a larger environment using group policy. How do you know if your system is meeting your security goals? You can verify that controls are working, but how do you know if they are getting the job done? How do your controls compare to other environments? Are your systems configured with similar controls using recognized best practices? Is your environment radically different?

In this chapter you'll learn how to analyze your current computer settings. You'll learn how to compare ...