LOCATION/DATE: • Boston: October 12-13, 1998
COURSE OBJECTIVES
Provide an overview of Wide Area Communication Networks (WANs)
Discuss risks exposures of WANs and How To Control and Secure them
Provide approaches and audit guidelines to review telecommunications
WHO SHOULD ATTEND
Audit executives, internal, operational, external and EDP auditors
Network, security, IS professionals, users, designers, and consultants
COURSE OUTLINE
DATA COMMUNICATIONS ENVIRONMENT. • Communication Network (WANs) • Major Hardware and Software components • Communication Links & Carriers • Protocols (OSI) • Front End Processors • Network Control Center
THREATS AND EXPOSURES IN NETWORKS. • Security threats • Business discontinuity • Errors, routing • Transaction authenticity and authorization
CONTROLLING NETWORKS. Key control zones and points for networks. Control Objectives and safeguards for major network control points. Compendium of controls in the form of control matrices • Network connectivity and security issues - Internet, Firewalls, Digital Certificates.
AUDITING THE NETWORK. • Audit approaches & evidence (Operational, static, and active test approaches) • Audit workpapers (Network diagram). Auditing network change control and network administration
Case Study - How to prepare a detailed Network Audit Work Plan.
NETWORK CONTINGENCY PLANNING - Network backup - Hardware & Links