Chapter Home | President's Message | News/ Jobs | Events | Resources | Members Only | IIA Home  

ISACA IT Audit - Identity Management Seminar - Regina

Monday, Feb 27, 2012, 8:00AM - 4:30PM
400.00 Members | 500.00 Non-Members
Contact: Terry Novecosky
 
TBA Regina, Saskatchewan

Identity Management

 

Peter T. Davis, CMA CISA CISM CISSP – Principal, Peter Davis+Associates

Identity management is key to ensuring all internal and external clients and their activity is uniquely identifiable and authenticated. Mechanisms must be in place to enforce these activities. Equally importing is the process of assuring that authenticated clients only have access to authorized resources whether they are network segments, systems, applications or data. Access control is vital to determining the reliability of financial reporting and proving compliance with laws and regulations.

So every organization must manage access. This seminar is one in a series of general seminars focusing on General IT Controls. Whether you are assessing regulatory compliance, evaluating internal control or assisting in a financial audit, you will need to review identity management processes.

In this seminar, we will discuss:

  •  What are the AAA services
  •  What are the authentication models
  •  What are some of the more popular credentials and their strengths and weaknesses
  •  How to enforce accountability using a credential
  •  What are the attributes of a strong password
  •  What to look at when auditing an access control system

 You will leave the session with the tools to:

  •  Establish the objectives for planning an identity management audit or review
  •  Build an IT audit plan to assess identity management
  •  Fulfill compliance and audit requirements
  •  Understand the various standards applying to identity management

 Target Audience

Internal audit professionals including IT auditors, business process auditors and operational auditors

responsible for the management and/or execution of internal audits of IT-enabled projects.

Prerequisites

None.

Seminar Outline

  • Understanding Identity Management
    • The Issues
    • Identity principles
  • Seven Laws of Identity 
  • Identity and Access Management Principles
    • AAA
    • Administration
      • User management
      • Provisioning and de-provisioning
      • Identification
        • Credentials
          • Passwords
          • Tokens
          • Certificates
            • X.509
            • PKI
            • Biometrics
        • Authentication models
        • Authorization
        • Accounting
          • Logging
  • Identity Components
    • RBAC
    • Directory Services
      • LDAP
      • Single Sign-On
      • Federated Identities
  • Identity standards
    • COBIT DS5
    • OASIS
      • SAML
      • XACML
      • WS-Security
      • XCBF
  •  Planning the audit 

Click Here to Register! 

Click Here to View Brochure! 
All contents of this Web site, except where expressly stated, are the copyrighted property of this IIA affiliate.
Chapter Home | President's Message | News/ Jobs | Events | Resources | Members Only