Save info   Get password
Home Submit your blog Edit Account Rules RSS-Archive Contact
Show All




Web Catalog F305 C905 webbutveckling Article Directory




10 things you must remember about Antivirus
2008-08-11 23:56:00
The application software/hardware which works against viruses is called Anti-virus. A lot of questions can be framed on this topic. Here are some important points all CISA aspirants and Information... [[ This is a content summary only. Visit my website for full links, other content, and more! ]]
Read more: things

10 Things to consider when auditing a firewall
2008-08-08 02:17:00
A firewall can be software, hardware or combination of both. This article intends to describe in brief the minimum things an IS Auditor / Information Security Professional should consider in... [[ This is a content summary only. Visit my website for full links, other content, and more! ]]


CISA Type Question 08-0708 on audit of firewall
2008-08-07 10:57:00
Which of the following is the LEAST important for an IS auditor auditing a Firewall implementation? Types of services permitted and disallowedFirewall rule setsNumber of ports and services permitted... [[ This is a content summary only. Visit my website for full links, other content, and more! ]]
Read more: Question

CISA Type Question 08- 0608 - Question on IS Audit report presentation for CISA Exam
2008-08-06 06:06:00
Which of the following is the most appropriate way for an IS Audit or to present the audit findings to the auditee management after completion of IS Audit ? 1. The auditor should discuss the... [[ This is a content summary only. Visit my website for full links, other content, and more! ]]
Read more: Question , report , presentation

CISA Type Question 08-0508 - question on media disposal for CISA Exam
2008-08-05 03:18:00
An IS auditor while auditing a firm finds that critical data from Magnetic Disk were copied and handed over to vendor directly for up gradation of the system. IS auditor should recommend for 1.... [[ This is a content summary only. Visit my website for full links, other content, and more! ]]
Read more: Question , media

Designing a secure access control policy
2008-08-04 05:17:00
Access Control Policy of an organization should ensure i. Availability of resources on need to do and need to know basis. ii. Authentication of process iii. ... [[ This is a content summary only. Visit my website for full links, other content, and more! ]]
Read more: Designing

Some Useful links for CISA Preparation
2008-08-03 06:34:00
1. ISACA Website: Mother of all sites for CISA Exam. You may apply for examination, membership, order book and manual through this site. This site contains a lot of study resources useful for CISA... [[ This is a content summary only. Visit my website for full links , other content, and more! ]]
Read more: Useful

CISA Type Question 08-0809 on Change Management
2008-09-08 10:57:00
As an IS Auditor you have been given following information about Change Management : i. Change Management & Patch Management is same.ii. Patch Management is superset of Change Management iii.... [[ This is a content summary only. Visit my website for full links, other content, and more! ]]
Read more: Question

10 important Benefits of Decision Support System (DSS)
2008-09-04 04:09:00
A Decision Support System (DSS) is an Interactive Information System which may encompass Expert System (s), Artificial Intelligence / Business Intelligence whose function is to collect semi... [[ This is a content summary only. Visit my website for full links, other content, and more! ]]
Read more: Benefits

CISA Type question 08-0309 on Decision Support System (DSS)
2008-09-03 08:22:00
Which of the following is false about a Decision Support System (DSS) ?1. Decision Support System (DSS) aims at solving highly structured problems. 2. Decision Support System (DSS) involves high... [[ This is a content summary only. Visit my website for full links, other content, and more! ]]


Error detection & correction by Parity Checking
2008-09-01 06:11:00
In parity checking an extra bit called a parity bit is added to a byte of data or more appropriately a data set to detect if data set is transmitted correctly. This is a means of error detection and... [[ This is a content summary only. Visit my website for full links, other content, and more! ]]
Read more: correction

Corrective Control – Control to correct Information System's detected irregularities
2008-08-28 01:42:00
Corrective Control s are one of the three basic types of internal control which are basically meant to correct detected irregularities of Information System . Success of corrective control (any type... [[ This is a content summary only. Visit my website for full links, other content, and more! ]]


CISA Type Question 08-2608 on Firewall and OSI Model
2008-08-26 06:48:00
An IS Auditor while auditing an IS setup suggested implementation of Application Gateway instead of existing Packet Filter Firewall . Which could be the best reason for the same ? 1. Application... [[ This is a content summary only. Visit my website for full links, other content, and more! ]]
Read more: Question

Use of Sequence Check as a CAAT tool
2008-08-25 08:54:00
Sequence Check is an important CAAT tool which is mainly used in: 1. Validation Control 2. Processing Control This a way by which w ensure whether a set of data is : 1. properly ordered or... [[ This is a content summary only. Visit my website for full links, other content, and more! ]]
Read more: Sequence

Important points to remember about OSI – Application Layer
2008-08-22 03:31:00
The Application layer of TCP/IP suite corresponds to combination of Application Layer , Presentation Layer and Session Layer of OSI Model. This article intends to discuss briefly the Application Layer... [[ This is a content summary only. Visit my website for full links, other content, and more! ]]


CISA Type Question 08-2008 on Good Password Policy
2008-08-20 03:34:00
An IS Auditor while reviewing password policy of an organization finds the following : 1. Password Complexity and length 2. Allowed default username and password 3. Password Rotation policy 4.... [[ This is a content summary only. Visit my website for full links, other content, and more! ]]
Read more: Question , Policy

IDS – an Information security tool to protect your network
2008-09-25 08:00:00
IDS stands for Intrusion Detection System. IDS is primarily used by network administrator, Information Security professionals, IS Auditors and Penetration testers for detection of any external or... [[ This is a content summary only. Visit my website for full links, other content, and more! ]]
Read more: security

CISA Type Question 08-2209 on Kerberos / Single Sign-on
2008-09-22 03:31:00
The Kerberos generally does not take care of 1. Denial of Service attack 2. Password cracking and guessing 3. Spoofing attacks 4. More than one of the above 5. None of the above Answer to CISA... [[ This is a content summary only. Visit my website for full links, other content, and more! ]]
Read more: Question

Presentation Layer - Data Security and Formatting
2008-09-19 02:14:00
Over a network different types of information are transferred. Have you ever thought which layer deals with formatting and syntax checking of these information. As discussed in my earlier article... [[ This is a content summary only. Visit my website for full links, other content, and more! ]]
Read more: Layer , Formatting

Audit Risk Assessment – Risk Types & Relationships
2008-09-17 03:52:00
Risk assessment is one of the most important part of IS Audit process. This article intends to tell you in brief about different types of audit risks and their interrelationships. Audit Risk is the... [[ This is a content summary only. Visit my website for full links, other content, and more! ]]
Read more: Assessment , Relationships

CISA Type Question 08-1609 on Fourth Generation Programming languages (4GL)
2008-09-16 03:19:00
Which of the following statements about Fourth generation Programming Language (4GL) is LEAST appropriate ? 1. Fourth Generation Programming Languages are less nearer to Human beings as compared to... [[ This is a content summary only. Visit my website for full links, other content, and more! ]]
Read more: Question

Five Generations of programming languages
2008-09-15 03:33:00
So far 5 generations of programming languages have been defined. These ranges from machine level languages (1GL) to languages necessary for AI & Neural Networks (5GL). A brief introduction of... [[ This is a content summary only. Visit my website for full links, other content, and more! ]]
Read more: Generations

CISA Type Question 08-1209 on Kerberos
2008-09-12 03:41:00
Tickets are important part of Kerberos system which help in authentication. First Ticket is issued by Kerberos Authentication Server(KAS). Remaining tickets are issued by: 1. Kerberos... [[ This is a content summary only. Visit my website for full links, other content, and more! ]]
Read more: Question

CISA Type Question 08-1009 on Kerberos
2008-09-10 05:18:00
In Kerberos initial ticket is issued by : 1. Kerberos Authentication Server(KAS) 2. Ticket Granting Server (TGS) 3. Authenticator 4. User or Client Answer to CISA Type Question 08-0809 on Change... [[ This is a content summary only. Visit my website for full links, other content, and more! ]]


Kerberos - a Single Sign-on Network Security Tool
2008-09-09 01:45:00
Have you ever worked in an environment where 10 or more different user credentials and passwords are required for different applications and services.What if, the number of applications and user... [[ This is a content summary only. Visit my website for full links, other content, and more! ]]
Read more: Network Security

Control Self-Assessment (CSA)- How,what & why ?
2008-10-13 11:00:00
Control Self-Assessment (CSA) is a technique by which an organization accesses & assesses the effectiveness, reliability and adequacy of existing internal controls which may help the organization... [[ This is a content summary only. Visit my website for full links, other content, and more! ]]
Read more: Control

CISA Type Question 08-1010 on Business Continuity & Disaster Recovery
2008-10-10 07:04:00
An IS auditor while auditing of an Information System finds that system does not force for backup before and after major events/major updates in the system. Although backups are being taken without... [[ This is a content summary only. Visit my website for full links, other content, and more! ]]
Read more: Question , Business , Disaster , Recovery

Auditing a Database Management System (DBMS)
2008-10-08 10:44:00
There can be many types of database system.Some important types of database models are: 1. Simple Flat File Model 2. Hierarchical Model 3. Network Model 4. Relational Model 5. Object Oriented... [[ This is a content summary only. Visit my website for full links, other content, and more! ]]
Read more: Auditing , Database , Management , System

CISA Type Question 08-0610 on Business Continuity Plan (BCP) Auditing
2008-10-06 06:15:00
An IS Auditor is in the process of auditing Business Continuity Plan (BCP) for an organization.He comes across following : i. Incident Management Report ii.Previous reports & Followup audit... [[ This is a content summary only. Visit my website for full links, other content, and more! ]]
Read more: Question , Auditing

How to secure your Network by Firewall implementation and auditing
2008-10-03 03:40:00
Protection of information assets is the major aim of IT Security policy. Firewall is one of the important tools for IT Security. Firewall protects networks from malicious intrusion from outside the... [[ This is a content summary only. Visit my website for full links, other content, and more! ]]


Page 3 of 4 « < 2 3 4 > »
Copyright 2006 - 2007. TopBlogArea.com All Rights reserved. Created by SEOMinds.com
eXTReMe Tracker