Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Security-Management
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

RE: bank audit checklist

from [jameschanlon] Network Security [Permanent Link]
Subject: RE: bank audit checklist
Date: Wed, 26 Oct 2005 09:59:58 -0400 
The best place I know to send you is to the FFIEC IT Examination Handbook.

Also the URSIT standards (under the Tier II objectives) have an attachment
that directly maps their requirements to CoBiT.

 

We used these to develop our practices for preparing our clients for
upcoming examinations regarding their security control environment.

 

You can  find the handbook on the FFIEC website at www.ffiec.gov
<http://www.ffiec.gov/> .

 

 

Jim Hanlon 

President and CEO

JC Hanlon Consulting, Inc.

 

Phone:     US (248) 823-5890

Email:       jhanlon@JCHCI.com

Website:  http://www.JCHCI.com

 

Information Security at the Speed of Business

This electronic message and all contents and attachments contain information
from the firm JC Hanlon Consulting, Inc. and/or its affiliates, which may be
privileged, confidential or otherwise protected from disclosure.  The
information is intended to be for the addressee only.  If you are not the
addressee, or otherwise have reason to believe that you have received this
message in error, then any disclosure, copy, distribution or use of this
message, or its contents or any of its attachments, is prohibited.  If you
have received this electronic message in error, please notify us immediately
and destroy the original message and all copies. Neither this information
block, the typed name of the sender, nor anything else in this message is
intended to constitute an electronic signature unless a specific statement
to the contrary is included in this message.

-----Original Message-----
From: sectraq@gmail.com [mailto:sectraq@gmail.com] 
Sent: Monday, October 24, 2005 5:35 PM
To: security-management@securityfocus.com
Subject: bank audit checklist

 

hey all,

 

i donno how it happened but i ended up in the middle of a project to audit
the information scurity system of a bank :) 

now since ive never done this before and i dont have much time to prepare i
thought the quickest way is to find/develop some questionnares. so i would
appriciate any pointers on the topic. if there are ready made questionnares
on auditing IS of banks that would be excellent too.

if anybody has other suggestions on how to tackle this dump i got myself in,
am totally open to ur thoughts.

 

thnx
[More with this subject...]




<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  RE: Top Information Security Management Challenges in the Enterprise Today?, Mark Brunner
Next by Date:  Re: IT Department Size, Kurt Buff
Previous by Thread:  RE: bank audit checklist, Mike Bailey
Next by Thread:  Re: bank audit checklist, Larry Marin
Indexes:  [Date] [Thread] [Top] [All Lists]