Network auditing is a topic that can be very vast and can include a lot of procedures and guidelines. Hence, before I end this chapter, I want to present you with a few best practices in the industry that will help you out. We will then follow this discussion with a few emerging trends in network auditing.
Best practices
Here are a few best practices that you, as a network auditor, must follow when auditing your network:
- You should be aware of the latest regulatory requirements.
- The service agreement or statement of work should detail the audit strategy, and the approach and testing techniques, tools, and deliverables. Assumptions should be mentioned clearly.
- Commercial terms should be stated clearly and signed off before the audit.
- You should sign the NDA wherever applicable.
- You must ensure that the business and IT unit managers are involved in the discussions before the audit. This will help to prevent disputes over the access privileges...