Information, Articles, Tools, and Useful LinksCommittee Listings, Member Forums, and Find a CITPInformation on AICPA Tech. Conference, Seminars, Webcasts, and ConferencesIT Section Membership Information, CITP Credential Information, Members Only Tools and Communications, and MorePublications, CPE, Conferences, and Webcasts
 
Search
 

Search Options

Printer Friendly View

Infotech Home > Resources > System Security & Reliability > Security > Vulnerability Assessment > Managing and Auditing IT Vulnerabilities
Managing and Auditing IT Vulnerabilities
Source: The Institute of Internal Auditors

Global Technology Audit Guide—6: Managing and Auditing IT Vulnerabilities was developed to help Chief Audit Executives (CAEs) and internal auditors better assess the effectiveness of an organization’s internal vulnerability management procedures. It recommends specific IT management practices intended to help organizations increase the effectiveness and efficiency of their vulnerability management efforts.

 

Managing and Auditing IT Vulnerabilities will help you:

 

·         Obtain a working knowledge of vulnerability management processes

 

·         Differentiate between high- and low-performing vulnerability management efforts

 

·         Understand the typical progression of vulnerability management capability

 

·         Share personal information in accordance with the organization's privacy policy.

 

·         Advise IT management of best practices for vulnerability management

 

·         Be more effective when “selling” your recommendations to executive-level officers

 

Here are some of the topics covered:

 

·         Identifying Poor Vulnerability Management

 

·         Improving Vulnerability Management

 

·         How Vulnerability Management Drives Changes to IT Infrastructure

 

·         Identification and Validation of Vulnerabilities

 

·         Risk Assessment and Prioritization

 

·         Vulnerability Remediation

 

·         Vulnerability Management Performance

 

Download the Guide

Copyright 2006, GTAG Volume 6: Managing and Auditing IT Vulnerabilities by The Institute of Internal Auditors, 247 Maitland Avenue, Altamonte Springs, FL 32701-4201 U.S.A. Posted with permission.