Book description
The IT Regulatory and Standards Compliance Handbook provides comprehensive methodology, enabling the staff charged with an IT security audit to create a sound framework, allowing them to meet the challenges of compliance in a way that aligns with both business and technical needs. This "roadmap" provides a way of interpreting complex, often confusing, compliance requirements within the larger scope of an organization's overall needs.- The ulitmate guide to making an effective security policy and controls that enable monitoring and testing against them
- The most comprehensive IT compliance template available, giving detailed information on testing all your IT security, policy and governance requirements
- A guide to meeting the minimum standard, whether you are planning to meet ISO 27001, PCI-DSS, HIPPA, FISCAM, COBIT or any other IT compliance requirement
- Both technical staff responsible for securing and auditing information systems and auditors who desire to demonstrate their technical expertise will gain the knowledge, skills and abilities to apply basic risk analysis techniques and to conduct a technical audit of essential information systems from this book
- This technically based, practical guide to information systems audit and assessment will show how the process can be used to meet myriad compliance issues
Table of contents
- Cover image
- Table of Contents
- Lead Author
- Technical Editors
- Chapter 1. Introduction to IT Compliance
- Chapter 2. Evolution of Information Systems
- Chapter 3. The Information Systems Audit Program
- Chapter 4. Planning
- Chapter 5. Information Gathering
- Chapter 6. Security Policy Overview
- Chapter 7. Policy Issues and Fundamentals
- Chapter 8. Assessing Security Awareness and Knowledge of Policy
- Chapter 9. An Introduction to Network Audit
- Chapter 10. Auditing Cisco Routers and Switches
- Testing the Firewall
- Chapter 12. Auditing and Security with Wireless Technologies
- Chapter 13. Analyzing the Results
- Chapter 14. An Introduction to Systems Auditing
- Chapter 15. Database Auditing
- Chapter 16. Microsoft Windows Security and Audits
- Chapter 17. Auditing UNIX and Linux
- Chapter 18. Auditing Web-Based Applications
- Chapter 19. Other Systems
- Chapter 20. Risk Management, Security Compliance, and Audit Controls
- Chapter 21. Information Systems Legislation
- Chapter 22. Operations Security
- Index
Product information
- Title: The IT Regulatory and Standards Compliance Handbook
- Author(s):
- Release date: July 2008
- Publisher(s): Syngress
- ISBN: 9780080560175
You might also like
book
Information Security Policies, Procedures, and Standards
This book supplies a blueprint on how to develop effective information security policies and procedures. It …
book
Information Privacy Engineering and Privacy by Design: Understanding Privacy Threats, Technology, and Regulations Based on Standards and Best Practices
The Comprehensive Guide to Engineering and Implementing Privacy Best Practices As systems grow more complex and …
book
IT Governance: Implementing Frameworks and Standards for the Corporate Governance of IT
Use an IT Governance strategy to reduce risk An Introduction for Directors and IT professionals The …
book
Privacy, Regulations, and Cybersecurity
Protect business value, stay compliant with global regulations, and meet stakeholder demands with this privacy how-to …