TAILIEUCHUNG - Lecture Information systems security - Chapter 8: Conducting security audits

After studying this chapter you should be able to: Define privilege audits, describe how usage audits can protect security, list the methodologies used for monitoring to detect security-related anomalies, describe the different monitoring tools. | Conducting Security Audits Contents Define privilege audits Describe how usage audits can protect security List the methodologies used for monitoring to detect security-related anomalies Describe the different monitoring tools Privilege Auditing A privilege can be considered a subject’s access level over an object Principle of least privilege Users should be given only the minimal amount of privileges necessary to perform his or her job function Privilege auditing Reviewing a subject’s privileges over an object Requires knowledge of privilege management, how privileges are assigned, and how to audit these security settings Privilege Management The process of assigning and revoking privileges to objects The roles of owners and custodians are generally well-established The responsibility for privilege management can be either centralized or decentralized Centralized and Decentralized Structures In a centralized structure One unit is responsible for all aspects of assigning or revoking privileges All custodians are part of that unit Promotes uniform security policies Slows response, frustrates users A decentralized organizational structure for privilege management Delegates the authority for assigning or revoking privileges more closely to the geographic location or end user Requires IT staff at each location to manage privileges Assigning Privileges The foundation for assigning privileges The existing access control model for the hardware or software being used Recall that there are four major access control models: Mandatory Access Control (MAC) Discretionary Access Control (DAC) Role Based Access Control (RBAC) Rule Based Access Control (RBAC) Auditing System Security Settings Auditing system security settings for user privileges involves: A regular review of user access and rights Using group policies Implementing storage and retention policies User access and rights review It is important to periodically review user access privileges and rights Most organizations

• An ninh - Bảo mật
• Information systems security
• Lecture Information systems security
• Information security
• Conducting security audits
• Privilege audits
• Privilege management
• Lecture On safety and security of information systems
• On safety and security of information systems
• Introduction to information systems security
• History of information security
• Bài giảng Bảo mật hệ thống thông tin
• Goals of information security
• Security process
• Security topologies
• Wireless network security
• Wireless security protections
• IEEE 802
• 11 security
• Protecting systems
• Harden operating systems
• Communications based attack
• Controls for information security
• Accounting information systems
• Lecture Accounting information systems
• Hệ thống thông tin kế toán
• Trust services framework
• Potential risks
• Privilege escalation
• Các phần mềm có hại
• Cryptography basics
• Cryptographic terminology
• Transposition cipher
• Public key infrastructure
• Cryptographic attacks
• Public domain cryptography
• Access control
• Access control models
• Authentication models
• Virtual Private Network
• Authentication credentials
• Risk management
• Attributes of assets
• Determining relative value
• Cryptographic hash funtionns
• Simple hash functions
• Requirements and security
• Accounting information systems
• Lecture Accounting information systems
• Information systems controls
• System reliability
• Management information systems
• Information systems
• Lecture Management information systems
• Computer based information systems
• Managing information resources
• Monitoring activity
• Intrusion detection
• Secure network
• Malicious attacks
• Malicious Attack
• The common types of malicious attacks
• Basic terminology of cryptography
• History of cryptography
• Symmetric cipher
• Symmetric ciphers
• Block cipher principles
• Data encryption standard
• Advanced encryption standard
• Asymmetric ciphers
• Principles of public Key cryptosystems
• Four parts of access control
• Types of access control
• Firewall concept
• Commercial firewalls
• Network Security Fundamentals
• Guide to Network Security Fundamentals
• Security Baselines
• Disable nonessential systems
• Introduction to management information systems
• Business information technology
• Information security management
• Data safeguards are available