Thanks to visit codestin.com
Credit goes to www.scribd.com

Scribd
Upload
3 views12 pages

IT Security Audit Program

Uploaded by

nadeemahmedacca
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as XLSX, PDF, TXT or read online on Scribd
3 views12 pages

IT Security Audit Program

Uploaded by

nadeemahmedacca
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as XLSX, PDF, TXT or read online on Scribd
You are on page 1/ 12

Category Audit Item Description / Reference

Active Directory Configuration Rev Patch Levels Ensure the latest security patches are applied.
Active Directory Configuration Revi User Authentication Password policy & MFA enforcement.
Active Directory Configuration Revi Encryption Data at rest / in transit encryption.
Active Directory Configuration Revi Network Segregation Proper VLAN / subnet isolation.
Active Directory Configuration Revi Logging & Incident Respons Logs enabled and IR plan present.
BeyondTrust PAM Patch Levels Ensure the latest security patches are applied.
BeyondTrust PAM User Authentication Password policy & MFA enforcement.
BeyondTrust PAM Encryption Data at rest / in transit encryption.
BeyondTrust PAM Network Segregation Proper VLAN / subnet isolation.
BeyondTrust PAM Logging & Incident Respons Logs enabled and IR plan present.
Boldon James Patch Levels Ensure the latest security patches are applied.
Boldon James User Authentication Password policy & MFA enforcement.
Boldon James Encryption Data at rest / in transit encryption.
Boldon James Network Segregation Proper VLAN / subnet isolation.
Boldon James Logging & Incident Respons Logs enabled and IR plan present.
Cisco FMC Patch Levels Ensure the latest security patches are applied.
Cisco FMC User Authentication Password policy & MFA enforcement.
Cisco FMC Encryption Data at rest / in transit encryption.
Cisco FMC Network Segregation Proper VLAN / subnet isolation.
Cisco FMC Logging & Incident Respons Logs enabled and IR plan present.
Cisco Firewall FirePower FTD Patch Levels Ensure the latest security patches are applied.
Cisco Firewall FirePower FTD User Authentication Password policy & MFA enforcement.
Cisco Firewall FirePower FTD Encryption Data at rest / in transit encryption.
Cisco Firewall FirePower FTD Network Segregation Proper VLAN / subnet isolation.
Cisco Firewall FirePower FTD Logging & Incident Respons Logs enabled and IR plan present.
Cisco ISE Patch Levels Ensure the latest security patches are applied.
Cisco ISE User Authentication Password policy & MFA enforcement.
Cisco ISE Encryption Data at rest / in transit encryption.
Cisco ISE Network Segregation Proper VLAN / subnet isolation.
Cisco ISE Logging & Incident Respons Logs enabled and IR plan present.
SEG IronPort Cisco Patch Levels Ensure the latest security patches are applied.
SEG IronPort Cisco User Authentication Password policy & MFA enforcement.
SEG IronPort Cisco Encryption Data at rest / in transit encryption.
SEG IronPort Cisco Network Segregation Proper VLAN / subnet isolation.
SEG IronPort Cisco Logging & Incident Respons Logs enabled and IR plan present.
EDR CrowdStrike Patch Levels Ensure the latest security patches are applied.
EDR CrowdStrike User Authentication Password policy & MFA enforcement.
EDR CrowdStrike Encryption Data at rest / in transit encryption.
EDR CrowdStrike Network Segregation Proper VLAN / subnet isolation.
EDR CrowdStrike Logging & Incident Respons Logs enabled and IR plan present.
WAF F5 Patch Levels Ensure the latest security patches are applied.
WAF F5 User Authentication Password policy & MFA enforcement.
WAF F5 Encryption Data at rest / in transit encryption.
WAF F5 Network Segregation Proper VLAN / subnet isolation.
WAF F5 Logging & Incident Respons Logs enabled and IR plan present.
Forcepoint DLP Patch Levels Ensure the latest security patches are applied.
Forcepoint DLP User Authentication Password policy & MFA enforcement.
Forcepoint DLP Encryption Data at rest / in transit encryption.
Forcepoint DLP Network Segregation Proper VLAN / subnet isolation.
Forcepoint DLP Logging & Incident Respons Logs enabled and IR plan present.
FortiAnalyzer Monitoring Patch Levels Ensure the latest security patches are applied.
FortiAnalyzer Monitoring User Authentication Password policy & MFA enforcement.
FortiAnalyzer Monitoring Encryption Data at rest / in transit encryption.
FortiAnalyzer Monitoring Network Segregation Proper VLAN / subnet isolation.
FortiAnalyzer Monitoring Logging & Incident Respons Logs enabled and IR plan present.
Fortigate Firewall Patch Levels Ensure the latest security patches are applied.
Fortigate Firewall User Authentication Password policy & MFA enforcement.
Fortigate Firewall Encryption Data at rest / in transit encryption.
Fortigate Firewall Network Segregation Proper VLAN / subnet isolation.
Fortigate Firewall Logging & Incident Respons Logs enabled and IR plan present.
LinkShadow NDR Patch Levels Ensure the latest security patches are applied.
LinkShadow NDR User Authentication Password policy & MFA enforcement.
LinkShadow NDR Encryption Data at rest / in transit encryption.
LinkShadow NDR Network Segregation Proper VLAN / subnet isolation.
LinkShadow NDR Logging & Incident Respons Logs enabled and IR plan present.
LogRhythm SIEM Patch Levels Ensure the latest security patches are applied.
LogRhythm SIEM User Authentication Password policy & MFA enforcement.
LogRhythm SIEM Encryption Data at rest / in transit encryption.
LogRhythm SIEM Network Segregation Proper VLAN / subnet isolation.
LogRhythm SIEM Logging & Incident Respons Logs enabled and IR plan present.
ManageEngine Patch ManagementPatch Levels Ensure the latest security patches are applied.
ManageEngine Patch Management User Authentication Password policy & MFA enforcement.
ManageEngine Patch Management Encryption Data at rest / in transit encryption.
ManageEngine Patch Management Network Segregation Proper VLAN / subnet isolation.
ManageEngine Patch Management Logging & Incident Respons Logs enabled and IR plan present.
PaloAlto Firewall Patch Levels Ensure the latest security patches are applied.
PaloAlto Firewall User Authentication Password policy & MFA enforcement.
PaloAlto Firewall Encryption Data at rest / in transit encryption.
PaloAlto Firewall Network Segregation Proper VLAN / subnet isolation.
PaloAlto Firewall Logging & Incident Respons Logs enabled and IR plan present.
Security Architecture Patch Levels Ensure the latest security patches are applied.
Security Architecture User Authentication Password policy & MFA enforcement.
Security Architecture Encryption Data at rest / in transit encryption.
Security Architecture Network Segregation Proper VLAN / subnet isolation.
Security Architecture Logging & Incident Respons Logs enabled and IR plan present.
MFA SafeNet Patch Levels Ensure the latest security patches are applied.
MFA SafeNet User Authentication Password policy & MFA enforcement.
MFA SafeNet Encryption Data at rest / in transit encryption.
MFA SafeNet Network Segregation Proper VLAN / subnet isolation.
MFA SafeNet Logging & Incident Respons Logs enabled and IR plan present.
VA Tenable Patch Levels Ensure the latest security patches are applied.
VA Tenable User Authentication Password policy & MFA enforcement.
VA Tenable Encryption Data at rest / in transit encryption.
VA Tenable Network Segregation Proper VLAN / subnet isolation.
VA Tenable Logging & Incident Respons Logs enabled and IR plan present.
Trend Micro Apex One Patch Levels Ensure the latest security patches are applied.
Trend Micro Apex One User Authentication Password policy & MFA enforcement.
Trend Micro Apex One Encryption Data at rest / in transit encryption.
Trend Micro Apex One Network Segregation Proper VLAN / subnet isolation.
Trend Micro Apex One Logging & Incident Respons Logs enabled and IR plan present.
Trend Micro TippingPoint IPS Patch Levels Ensure the latest security patches are applied.
Trend Micro TippingPoint IPS User Authentication Password policy & MFA enforcement.
Trend Micro TippingPoint IPS Encryption Data at rest / in transit encryption.
Trend Micro TippingPoint IPS Network Segregation Proper VLAN / subnet isolation.
Trend Micro TippingPoint IPS Logging & Incident Respons Logs enabled and IR plan present.
Trend Micro Analyzer DDAN Patch Levels Ensure the latest security patches are applied.
Trend Micro Analyzer DDAN User Authentication Password policy & MFA enforcement.
Trend Micro Analyzer DDAN Encryption Data at rest / in transit encryption.
Trend Micro Analyzer DDAN Network Segregation Proper VLAN / subnet isolation.
Trend Micro Analyzer DDAN Logging & Incident Respons Logs enabled and IR plan present.
Trend Micro Deep Discovery Direct Patch Levels Ensure the latest security patches are applied.
Trend Micro Deep Discovery DirectoUser Authentication Password policy & MFA enforcement.
Trend Micro Deep Discovery DirectoEncryption Data at rest / in transit encryption.
Trend Micro Deep Discovery DirectoNetwork Segregation Proper VLAN / subnet isolation.
Trend Micro Deep Discovery DirectoLogging & Incident Respons Logs enabled and IR plan present.
Trend Micro DDEI (Email Inspector)Patch Levels Ensure the latest security patches are applied.
Trend Micro DDEI (Email Inspector) User Authentication Password policy & MFA enforcement.
Trend Micro DDEI (Email Inspector) Encryption Data at rest / in transit encryption.
Trend Micro DDEI (Email Inspector) Network Segregation Proper VLAN / subnet isolation.
Trend Micro DDEI (Email Inspector) Logging & Incident Respons Logs enabled and IR plan present.
Trend Micro DDI (Deep Discovery InPatch Levels Ensure the latest security patches are applied.
Trend Micro DDI (Deep Discovery InUser Authentication Password policy & MFA enforcement.
Trend Micro DDI (Deep Discovery InEncryption Data at rest / in transit encryption.
Trend Micro DDI (Deep Discovery InNetwork Segregation Proper VLAN / subnet isolation.
Trend Micro DDI (Deep Discovery InLogging & Incident Respons Logs enabled and IR plan present.
Tripwire Enterprise FIM Patch Levels Ensure the latest security patches are applied.
Tripwire Enterprise FIM User Authentication Password policy & MFA enforcement.
Tripwire Enterprise FIM Encryption Data at rest / in transit encryption.
Tripwire Enterprise FIM Network Segregation Proper VLAN / subnet isolation.
Tripwire Enterprise FIM Logging & Incident Respons Logs enabled and IR plan present.
Zscaler Proxy Configuration ReviewPatch Levels Ensure the latest security patches are applied.
Zscaler Proxy Configuration Review User Authentication Password policy & MFA enforcement.
Zscaler Proxy Configuration Review Encryption Data at rest / in transit encryption.
Zscaler Proxy Configuration Review Network Segregation Proper VLAN / subnet isolation.
Zscaler Proxy Configuration Review Logging & Incident Respons Logs enabled and IR plan present.
Status Findings / Evidence Risk Level Recommended Action
tches are applied.

tches are applied.

tches are applied.

tches are applied.

tches are applied.

tches are applied.

tches are applied.

tches are applied.

tches are applied.


tches are applied.

tches are applied.

tches are applied.

tches are applied.

tches are applied.

tches are applied.

tches are applied.

tches are applied.

tches are applied.


tches are applied.

tches are applied.

tches are applied.

tches are applied.

tches are applied.

tches are applied.

tches are applied.

tches are applied.

tches are applied.


Action Owner Due Date

You might also like