Published Papers

Chapter 12 - Auditing and Security with Wireless Technologies

This chapter outlines the auditing and security with wireless technologies. It describes the wireless sources like Bluetooth, WLAN and Wi-FI, and war driving. Bluetooth is the industry standard...

Published on: 2008-08-14

Topic: Audit

Chapter 11 - Testing the Firewall

This chapter defines the firewall and then the concept of firewall testing. A firewall is an application, device, system, or a group of systems that controls the flow of traffic between two...

Published on: 2008-08-14

Topic: Audit

Chapter 10 - Auditing Cisco Routers and Switches

This chapter focuses on the auditing Cisco routers and switches because Cisco has the largest market share of internet-based routers. The addition of statefull packet filtering and statefull...

Published on: 2008-08-14

Topic: Audit

Chapter 9 - An Introduction to Network Audit

This chapter provides an introduction to network audit. It also explains that system testing is possible over the network, and provides a means to test compliance with: change control processes,...

Published on: 2008-08-14

Topic: Audit

Chapter 8 - Assessing Security Awareness and Knowledge of Policy

None

Published on: 2008-08-14

Topic: Audit

Chapter 7 – Policy Issues and Fundamentals

This chapter discusses the policy issues and fundamentals and also explores the auditor's role in relation to policy and incident handling. It is important to remember that security is not just...

Published on: 2008-08-14

Topic: Audit

Chapter 6 - Security Policy Overview

This chapter defines the security policy that protects people and information. Without policy, the organization is like a ship without a rudder. Most critically, policy is the primary guideline...

Published on: 2008-08-14

Topic: Audit

Chapter 5 - Information Gathering

This chapter deals with the information that the auditor should be requesting to complete their engagement. This is designed as an introduction to formulating a process for researching the...

Published on: 2008-08-14

Topic: Audit

Chapter 4 – Planning

This chapter discusses planning which is one of the most critical stages of any audit. Good planning results in good scope definitions and raises awareness about key issues. While examining or...

Published on: 2008-08-14

Topic: Audit

Chapter 3 - The Information Systems Audit Program

This chapter discusses the information systems audit program. It defines that without being able to inspect documentation, a worthwhile audit, review, or test in a financially realistic time frame...

Published on: 2008-08-14

Topic: Audit