IT Audit
From SecurityRatty FAQ
Contents |
[edit] IT Audit CheckList
Rank: best of
Feb 20, 2008: new The IT Audit Checklist for Privacy and Data Protection includes: PDF (requires brief registration for non-members)
- 270 specific checklist items to help assess your internal audit readiness - Advice on assessing the robustness of privacy controls - Pointers on audit planning, preparation, testing, and reporting - Clarification on what auditors want (and don't want) to see
Also in the IT Audit Checklist Series: Logging/Monitoring,/Reporting, Change Management, PCI, IS, IT Governance and Strategy, Risk Management
[edit] HIPAA Checklist
Information Request for Onsite Compliance Reviews PDF, 43KB
[edit] Guidelines
- Feb 20, 2008: 16 steps to set up new internal audit department HTML
[edit] Internal Audit
- Dan's Internal Audit Corner LINKS
[edit] Web Monitoring and Audit
ratproxy
A semi-automated, largely passive web application security audit tool, optimized for an accurate and sensitive detection, and automatic annotation, of potential problems and security-relevant design patterns based on the observation of existing, user-initiated traffic in complex web 2.0 environments. Home
