IT Essentials — Assessing Infrastructure and Networks

             TOPIC 7: SUMMARY

            Learning Objectives

            These learning objectives were covered in this course.

              Recognize key infrastructure and network components.
              Determine the appropriateness of devices in the demilitarized zone (DMZ).
              Describe the required competencies of internal auditors performing infrastructure and
               networking audits.
              Identify common infrastructure and network terminology.
              Describe the seven layers of the Open Systems Interconnection (OSI) model and the layers of
               defense-in-depth.

            Additional Resources

            Additional resources for further reading include The IIA Global Technology Audit Guide: “IT
            Essentials for Internal Auditors.”

            Summary

            Today’s internal auditor needs to recognize common terminology used in describing the
            components related to IT infrastructure and networking. As most business processes rely on
            technology, internal audit activities need to expand beyond looking at the financials and the
            effectiveness of the business process. They also need to understand what risks the process faces
            based on the technology in use, its placement on the network (internal or cloud), and how it is being
            secured and monitored.  Evaluating technical controls takes a new skillset, and requires internal
            auditors to become familiar with IT specific terminology.

































            Copyright © 2020 by The Institute of Internal Auditors, Inc. All rights reserved.