IT auditing under VITA IT security standards
This course is being taught by VITA personnel to familiarize attendees with how to conduct an audit under the VITA IT auditing standards. The course will cover the following modules:
Risk Assessment and prioritization of systems for review.
Background research, data gathering and lead questions before entrance.
Entrance and systems review with audit contacts.
Test work, validation and issue verification.
Interviewing techniques.
Preparing the report and defending the work.
Documentation of test work.
Specific skills needed before testing (AD, DB, web vuln, and physical security reviews)
Attendees must be currently conducting IT security audits under VITA auditing standards.