Mid TN ISACA - Hands On Windows Server IT Audit Training
Name: Mid TN ISACA - Hands On Windows Server IT Audit Training
Date: April 16, 2019 - April 17, 2019
Speaker: Jacob Arthur, Formos Consulting LLC Session Description: Sponsored\Hosted By Formos Consulting LLC and Microsoft. With the prevalence of Windows and Active Directory in the Enterprise environment, auditors need to understand the security model used by these products and the risks that are present. Although many auditors are generally familiar with the basics of auditing these systems, often the audit procedures are executed by individuals who don't have a deep understanding of why they're auditing what they're auditing. The goal of this course is to bridge that gap and provide a deeper understanding of the security model and capabilities, along with the options available for auditing. Along the way, we'll review: - The Active Directory domain model, diving into specific audit concerns related to domain controllers, group policy, and general security settings. - The differing pathways available for extracting data for audit purposes including the built-in Windows tools, Powershell, and popular third-party tools. - Common gaps in IT audit methodologies and testing approaches that may leave some areas of risk unaddressed. Bonus - students will be able to go hands-on with a domain controller to explore the settings available and the impact of changes made to those settings while we work through IT audit practice exercises. ** Special opportunities to network\socialize with participants will also be provided either during or after the event. Bring at least 20 business cards! Learning Objectives: This highly anticipated course will explore Windows IT Audit principles from Windows Server and provide the participant with practical examples of audit practices that can be readily utilized. Intermediate technical topics will be explored in a hands-on virtual environment and require some basic prior knowledge of IT Audit principles and practices. Prerequisities: This course assumes a basic knowledge of IT auditing and standard Windows and Active Directory audit procedures. Advanced Preperation: To fully experience this course, you'll need a laptop/tablet computer capable of running an MS-RDP-compatible Remote Desktop Client, and access to basic Office suite tools such as Microsoft Word and Excel. All documentation will be provided electronically and some setup/tool configuration will be recommended prior to onsite class/lab. Program Level: Intermediate Speaker Bio: Jacob is a Partner with Formos Consulting, LLC where he leads the Security and Technology practice area. His team’s expertise includes Security Program Roadmap and Management, Network Security Design and Assessment, Red Teaming/Penetration Testing, IT Audit, Systems Implementation, and Network Design and Management, and Emerging Technologies. He also enjoys teaching at Lipscomb University, where he works to introduce business students to the challenges of operating and securing enterprise systems, technology audit, and analytics. Jacob is married with three children, and enjoys creating memories with family in his free time. He is originally from Nashville, Tennessee and earned degrees in Computer Science and Accounting from Lipscomb University in 2008, as well as a PhD in Computer Information Systems from Nova Southeastern University in 2017. Prior to his current role, Jacob served in various engineering, IT leadership and IT executive roles for companies ranging from 10 million to 2 billion in revenue.