What to Expect During an IT Audit
There are many types of audits you can go through within the IT and Cybersecurity field. This is a high level overview of what to expect. After your organization has selected an auditor, you'll typically have a kick off meeting where the engagement is explained and everyone gets on the same page. Your auditor(s) will send you a request list of documents or evidence they need to complete the audit. They may schedule interviews with questions for you or other IT staff. You'll then work to provide the evidence over a set period of time. Your auditor(s) will review it and may schedule additional calls with follow up questions. At the end of the engagement, you'll get a report and likely had a debrief meeting with the auditor(s) and management. You may be provided with remediation steps for any findings.
#vciso #passwords #authentication #cybersecurity #achubbard #achsysadmin #ciso #security #it #sysadmin #systemadministration #systemadmin #itsecurity #itsec #infosec #informationsecurity #audit #auditing #nist #cis #sans #informationsecurity#informationsecurity
