01 Information Security Controls 08-17-10

of 23
9 views
PPT
All materials on our website are shared by users. If you have any questions about copyright issues, please report us to resolve them. We are always happy to assist you.
Document Description
Puerto Rico Chapter Audit – Proof Information System Security Controls Wednesday, August 18, 2010 John R. Robles Email: jrobles@coqui.net Tel: 787-647-3961 Audit-Proof IS Security Controls  For those of you who took the CISSP exam, an audit of your institution’s IS security controls is a real-life CISSP exam.  If you pass the CISSP exam, you can get certified.  If you pass the audit examination, you get to keep your job. John R. Robles Email: jrobles@coqui.net Tel: 787-647-3961 Audit-P
Document Share
Document Tags
Document Transcript
   Audit – Proof Information Audit – Proof InformationSystem SecuritySystem SecurityControlsControls Wednesday, August 18, 2010Wednesday, August 18, 2010 John R. RoblesJohn R. RoblesEmail:Email: jrobles@coqui.net jrobles@coqui.netTel: 787-647-3961Tel: 787-647-3961 Puerto Rico Chapter   John R. Robles Email: jrobles@coqui.net Tel: 787-647-3961John R. Robles Email: jrobles@coqui.net Tel: 787-647-3961  For those of you who took the CISSPFor those of you who took the CISSPexam, an audit of your institution’s ISexam, an audit of your institution’s ISsecurity controls is a real-life CISSP exam.security controls is a real-life CISSP exam.  If you pass the CISSP exam, you can getIf you pass the CISSP exam, you can getcertified.certified.  If you pass the audit examination, you getIf you pass the audit examination, you getto keep your job.to keep your job.  Audit-Proof IS Security Controls Audit-Proof IS Security Controls   Audit-Proof IS Security Controls Audit-Proof IS Security Controls  So how can I pass an IS audit? And keep mySo how can I pass an IS audit? And keep my job. job. ã11 stst , Reduce your stress levels., Reduce your stress levels.ã22 ndnd , Prepare for your audit, Prepare for your audit  Have documentation of everything related to IS securityHave documentation of everything related to IS securitycontrols.controls.  Be prepared to answer questions and provideBe prepared to answer questions and provideinformation.information. ã3rd, Argue with the auditor only if you know you are3rd, Argue with the auditor only if you know you areright and he/she is wrong. (Both conditions)right and he/she is wrong. (Both conditions)  (If you are certified (CISA, CISM, CISSP), and he/she is(If you are certified (CISA, CISM, CISSP), and he/she isnot, you might argue)not, you might argue)   Audit-Proof IS Security Controls Audit-Proof IS Security Controls  Reduce your stress levelsReduce your stress levels  Most likely, it’s not your first audit experienceMost likely, it’s not your first audit experience ãIf you are the CISO, then you have already beenIf you are the CISO, then you have already beenthrough an audit.through an audit.ãYour audit results should get better with time.Your audit results should get better with time.ãIf there were recommendations on your last audit,If there were recommendations on your last audit,make sure you have remedied the exceptionsmake sure you have remedied the exceptionsãTry to improve your evaluation scoreTry to improve your evaluation score  If it’s your 1If it’s your 1 stst audit,audit, ã And you are CISA, CISM, and/or CISSP, you know And you are CISA, CISM, and/or CISSP, you knowthe theory. Review that theory, again.the theory. Review that theory, again.ã11 stst timers, et an audit work roram FDIC, etc.timers, get an audit work program FDIC, etc.
We Need Your Support
Thank you for visiting our website and your interest in our free products and services. We are nonprofit website to share and download documents. To the running of this website, we need your help to support us.

Thanks to everyone for your continued support.

No, Thanks
SAVE OUR EARTH

We need your sign to support Project to invent "SMART AND CONTROLLABLE REFLECTIVE BALLOONS" to cover the Sun and Save Our Earth.

More details...

Sign Now!

We are very appreciated for your Prompt Action!

x