Cyber Security Series 04 - Boundary Defense Mechanisms
Field: Auditing | Delivery Method: Self Study | CPE Hours: 2.0
As new information technologies and approaches emerge, associated business risks undergo minor to significant transformation, and, in many cases, have far-reaching consequences for the organizations adopting such technologies and its stakeholders. Organizations are increasingly looking up to their Internal Auditors to provide independent assurance whether risks to the enterprise are managed well and advise thereon. With information technology becoming an inherent critical success factor for every business and the emerging threat landscape, there is significant urgency on internal auditors to equip themselves on IT audit essentials.
This cyber security series is designed to help internal auditors looking to equip themselves with competencies and confidence to handle audit of IT controls and information security, and learn about the emerging technologies and their underlying risks
This series focuses on contemporary IT audit approaches relevant to Internal Auditors and the processes underlying risk-based IT audits.
Cyber Security Part 4 - Boundary Defense Mechanisms
- Denying communications with known malicious IP addresses
- Denying communications with known malicious IP addressesInventory of Authorized and Unauthorized Devices
- Designing and implementing network perimeter proxy servers
- Designing internal network segmentation
- Implementing two-factor authentication
- Implementing a secure Network Architecture
- Implementing Network-based IPS devices
- Seeking unusual attack mechanisms
Deploying network-based IDS sensors on Internet and extranet DMZ systems
Rapidly deployment of filters on internal networks
Course Length = 2 Hours
Delivery Method: Self-Study
AuditNet® is the Global Resource for Auditors, and serves the global audit community as the primary communications resource with an online digital network where auditors share resources, tools, and experiences including audit work programs and other audit documentation.
As the first online portal for the global audit community, AuditNet® has been at the forefront of audit websites dedicated to promoting the use of technology. http://www.auditnet.org/
Jim Kaplan, the founder of AuditNet®, became a Certified Internal Auditor in 1984. He has continuously promoted and encouraged the use of technology and the Internet for audit productivity.
As an active member of the IIA, he has held many positions at the local and International level. He is a founding member of the Northern Virginia Chapter and served as Chapter President in 1989. He retired from his government audit director position in 2005. He is the founder and President of AuditNet®, the global resource for auditors, and has been identified as an Internet for Auditors pioneer. Jim's contributions to the profession were recognized by the IIA (2007 Bradford Cadmus award) and the Association of Local Government Auditors (Lifetime Achievement Award). In addition to the IIA, he is a member of the Association of Local Government Auditors and the Association of Certified Fraud Examiners.