Seamus Tuohy
Seamus Tuohy
Be more explicit about what information is shared during an audit in the audit agreement, when it is shared, and who will get access to that information. This is critical...
When auditors are connected to, or supporting, an organization already they may have a higher level of access than they would have as an auditor. They should negotiate what level...
"what aspects of the audit process do you need to spend more time preparing the organization for? This will help an auditor prepare the organization through e-mails, conversations, etc. before...
The installation of OpenVAS is a complex multi-step process and has been a large barrier for new auditors. An installation script could simplify the process significantly. Existing ansible scripts on...
For newer auditors, a timetable of how long tasks generally take could be very helpful for time management and audit planning.
http://www.telecomindustrydialogue.org/resources/country-legal-frameworks/
> This risk assessment can help you identify and assess threats that can emerge through digital channels and help minimise the risks they pose. In this section, you can download...
References for objectives should include two types. "Must read" and "optionally read" to help potential auditors know the vital content for review and the additional, but not required external content...
Why should funders & organizations pay for a safetag audit when they can just have a trainer come in and give basic digital security support.
See: #122 for why scope development is changing to focus more on the process instead of the document.