Search icon CANCEL
Subscription
0
Cart icon
Your Cart (0 item)
Close icon
You have no products in your basket yet
Arrow left icon
Explore Products
Best Sellers
New Releases
Books
Videos
Audiobooks
Learning Hub
Free Learning
Arrow right icon
Arrow up icon
GO TO TOP
IT Audit Field Manual

You're reading from   IT Audit Field Manual Strengthen your cyber defense through proactive IT auditing

Arrow left icon
Product type Paperback
Published in Sep 2024
Publisher Packt
ISBN-13 9781835467930
Length 336 pages
Edition 1st Edition
Tools
Arrow right icon
Author (1):
Arrow left icon
Lewis Heuermann Lewis Heuermann
Author Profile Icon Lewis Heuermann
Lewis Heuermann
Arrow right icon
View More author details
Toc

Table of Contents (18) Chapters Close

Preface 1. Part 1: Foundations of IT Auditing FREE CHAPTER
2. Chapter 1: Introduction to IT Auditing 3. Chapter 2: Audit Planning and Preparation 4. Part 2: Auditing IT Systems and Networks
5. Chapter 3: Cisco Switches and Routers: Access Methods and Security Assessments 6. Chapter 4: Next-Generation Firewall Auditing 7. Chapter 5: Cloud Security Auditing 8. Chapter 6: Endpoint Security: Windows 10 and Windows 11 9. Chapter 7: Linux Systems Auditing 10. Chapter 8: Wireless Access Points and Storage Technology Auditing 11. Chapter 9: Data Protection and Privacy Considerations 12. Chapter 10: Reporting and Remediation 13. Chapter 11: Advanced Topics in IT Auditing 14. Chapter 12: Building an IT Audit Career 15. Index 16. Other Books You May Enjoy Appendix: Conclusion and Future Outlook

Defining audit scope and objectives

Understanding how to plan effectively is crucial because it directly influences the setting of your audit objectives. These objectives determine the course of your audit. For example, you may need to assess compliance with data protection regulations or evaluate cybersecurity measures. Without well-defined objectives, an audit lacks direction and purpose.

Good planning starts with a comprehensive understanding of the organization’s core business goals, IT and regulatory environments, and potential risks. This foundation allows you to set specific, measurable, achievable, relevant, and time-bound (SMART) objectives. For instance, in an organization concerned about data breaches, an objective could be to assess the current data security measures and identify improvement areas.

Let’s review some ways these objectives can be written. Imagine you’re auditing a company that has recently migrated its data to the cloud. Your audit...

lock icon The rest of the chapter is locked
Register for a free Packt account to unlock a world of extra content!
A free Packt account unlocks extra newsletters, articles, discounted offers, and much more. Start advancing your knowledge today.
Unlock this book and the full library FREE for 7 days
Get unlimited access to 7000+ expert-authored eBooks and videos courses covering every tech area you can think of
Renews at $19.99/month. Cancel anytime
Banner background image