Information Security Auditor: Careers in information security

  • 2h 43m
  • Wendy Goucher
  • BCS
  • 2016

Identifying security gaps in an organisation's information systems is a first and vital step in protecting data and information. This is what makes the role of an information security (or assurance) auditor so important. However, this is a role that is often maligned as a 'check list monkey' who adds nothing to the business. This practical book confronts this stereotype and gives an excellent introduction to the role, covering areas such as purpose, required skills, responsibilities, interface and career progression as well as tools, standards and frameworks related to the role. Based on the author's extensive experience, it gives practical guidance to those new to the role or interested in developing a better understanding of what it entails.

About the Author

Wendy Goucher is a senior security consultant. Most of her work is focused on working with organisations to devise policy and procedures that are both compliant with external rules and operationally effective. This can be an interesting balancing act for which her first degree in psychology is useful.

In this Book

  • Abbreviations
  • Glossary
  • Introduction to Information Security Auditing
  • The Role of the Information Security Auditor
  • Tools, Methods and Techniques
  • Career Progression and Related Roles
  • Case Study ‘A Day in the Life of an Auditor’
  • And So…
  • References

YOU MIGHT ALSO LIKE

Course Information Security Practices: InfoSec Vendor Management
Rating 4.6 of 5 users Rating 4.6 of 5 users (5)
Course Certified in Cybersecurity (CC): Security Governance, Policies, & Controls
Rating 4.6 of 123 users Rating 4.6 of 123 users (123)
Course Information Security for Leaders: Elements of InfoSec
Rating 4.6 of 5 users Rating 4.6 of 5 users (5)