Consulting Archives - Page 2 of 2

IT Audit Techniques – Inquiry, Observation, Inspection

The first thing I try to explain to new auditors (or clients going through an audit for the first time) is what techniques IT auditors use to audit. Most people [...]

By Christian Hyatt|2020-08-27T17:37:03+00:00April 13th, 2015|IT Audit and Compliance|1 Comment

Advice for Taking the CISA Exam

This past December I took the ISACA CISA exam and I’m pleased to announce that last week, I got my confirmation letter stating that I passed in the top 10 [...]

By Christian Hyatt|2020-12-03T21:00:40+00:00January 22nd, 2015|IT Audit and Compliance|29 Comments

Pen Testing: Malicious File Execution

What is a Malicious File Execution Vulnerability?Malicious file execution vulnerabilities (also called File Inclusion Vulnerabilities) is a vulnerability that occurs due to user input or uploads to websites not being [...]

By Christian Hyatt|2021-03-05T18:23:08+00:00January 8th, 2015|Cyber Risk Management|5 Comments

Analysis of Strong VS Weak Passwords

Data breaches are a dime a dozen these days. But when hackers steal databases full of customer info, login names and passwords, the passwords themselves aren’t usually sitting out in [...]

By Christian Hyatt|2020-08-27T17:35:28+00:00November 13th, 2014|Cyber Risk Management, ISO 27001 Compliance, IT Audit and Compliance, SOC Reporting|0 Comments

What is a Stateful Firewall

Stateful refers to the “state” of the connection between the outside internet and the internal network. A stateful firewall keeps track of the connections in a session table. When a [...]

By Christian Hyatt|2023-06-06T14:08:11+00:00November 6th, 2014|Cyber Risk Management|2 Comments

Previous 12