Cyber Law Consulting >> Audit >> Network Audit

Information Security Auditing will be review of auditee's existing Information Security Policy and controls for their adequacy as per the best practices vis-à-vis establishment information security framework outline in standard such as COBIT, COSO, ITIL, BS7799 /ISO17799, ISO27001, ISO15150, etc standards. Information security involves.

1. Network Mapping

2. Vulnerability assessment

3. Exploitation of the vulnerabilities

4. Network Penetration testing

5. Review and assessment of security policy and controls as per best practices

6. Application security assessment

7. Password cracking

8. Log review, incidence response and forensic auditing

9. Integrity Checks 10. Virus Detection 11. War Dialing

Detailed 'Risk Assessment' and mapping of all Vulnerabilities' of systems and network shall be documented, along with the security measures that are in place and the level of protection that they provides Detailed "Penetration Test' and possible exploitation of the "Vulnerabilities' in the systems and the networks shall be documented, along with the security measures that are in place and the level of protection that they provide.

Detailed Information Security Audit report clearly bringing out the actionable items will be prepared and submitted to the client Cyber Law Consulting shall define 'Information Security Audit Methodology' being followed for conducting the information security audit and ensure compliance with the same.