Why to Audit a Network

1
Why to Audit a Network ?

• Jagadeesh Sunkavalli
• 05B5734811

2
Overview

• Audit Tools and checklists that help determine
  the Organization's gap in regulatory Compliance.
• Types of Audit
• i. Internal Audit - Conducted by an internal
  auditor.
• ii. External Audit Conducted by an External
  Auditor or Agency.

3
Are we ready for a Network Audit?

• Complying with regulations in an on going
  process.
• Prior to an external audit it is the best
  practice to have an internal audit, so that the
  organization is ready for the main Audit.

4
Questions to be answered before a network audit.

• Are passwords difficult to crack?
• Are there access control lists (ACLs) in
  place on network devices to control who has
  access to shared data?
• Are there audit logs to record who accesses
  data?
• Are the audit logs reviewed?
• Are the security settings for operating
  systems in accordance with accepted industry
  security practices?

5
Continued.....

• Have all unnecessary applications and computer
  services been eliminated for each system on the
  network?
• Are these operating systems and commercial
  applications patched to current levels?
• How is backup media stored? Who has access to
  it? Is it up-to-date?
• Is there a disaster recovery plan? Have the
  participants and stakeholders ever rehearsed the
  disaster recovery plan?

6
Continued.....

• Are there adequate cryptographic tools in place
  to govern data encryption, and have these tools
  been properly configured?
• Have custom-built applications been written
  with network security in mind?
• How have these custom applications been tested
  for security flaws?

7
Outcome of a Network Audit

• Find the potential network issues.
• Conduct the Outgoing Briefing.
• Suggesting the solutions for the problems found
  during the audit.
• Degree of compliance to the network and security
  policies.
• Plan for the next stage of policies.
• Apply for Accredition based on the audit report
  (Eg ISO, ISSA).