The role of the IT team spans the full lifecycle of assets. It begins with the procurement and onboarding of IT resources, followed by configuration, governance, and identification of critical infrastructure. To ensure operational continuity, the IT team should establish robust backups, monitor system thresholds, and execute strategic capacity planning.
This book is about learning the IT landscape, perimeter setup, and the interfaces to business applications. The landscape covers all appliances in network, server, and storage management, their configuration, and maintenance. Capacity, incident, and change management are governance activities of the IT team. In addition to these, the auditor has to understand security policies, patching practices, and segregation of networks for proper access control.
Learning IT auditing helps one become an efficient IT engineer. Auditors bring a strong foundation in systems, controls, and risk management. With focused learning and the right mindset, they can transition into engineers who build secure, efficient, and compliant systems from the beginning. Learning IT auditing will help one to become a good IT service executive, administrator, and architect.
WHAT YOU WILL LEARN
● Defining the scope of the IT landscape in supporting the business.
● Implementing controls based on ITIL and ISO 20000.
● Governance mechanisms, assets, configuration, and change management.
● Administering devices, appliances, and storage systems.
● Ensuring continuity and recovery for critical business operations.
● Importance of logging and monitoring for ensuring availability.
● Security controls for IT infrastructure, network, and operations.
● Conducting audits, writing audit reports, and ensuring remediation.
WHO THIS BOOK IS FOR
This book is intended for the middle management team involved in IT service management, risk, quality, and audit management activities. Server, network, and endpoint device administrators, IT architects, risk managers, crisis managers, and system monitoring team leads will benefit by learning to implement required governance and compliance mechanisms in IT service management for their career growth.
TABLE OF CONTENTS
1. IT Audit and Assurance Standards Statements
2. IT Audit Defined, Charter and Criteria
3. Planning, Scheduling, Reporting and Follow-ups for Audit
4. Types of Audits
5. IT Policies, Processes and SOPs
6. Risk Management and Impact Analysis
7. Procurement, Asset, Capacity, and Cloud Service Management
8. Access Management and Acceptable Usage Policy
9. Network, Server, Storage and Endpoint Management
10. Business Continuity and Disaster Recovery Planning
11. Organization Context and IT Services
12. Logging and Monitoring Services
13. KPIs and Status Reports
14. BCP Drills, Plans and Reports
15. Configuration and Change Management
16. IT Audit Frameworks ISO 20000 and ITIL
17. Organizations, People, Data and Technology Processes
18. Partners, Value Streams and Processes
19. Scope of Audit and Audit Plan
20. Review of Policy and Controls
21. Interviews, Site Visits and Technical Testing
22. Audit Findings and Actionable Audit Report
23. Evolving with the Audit Landscape
Loading...
Loading...
