whowe Posted March 11, 2009 Posted March 11, 2009 We currently reviewing our vendors scope of work in relations to IT auditing. Several questions have arisen which I need other professional input to form a solid conclusion.Here are my questions:Servers that have no direct impact on customers and only contain users files should be audited with Nessus every <x>?Servers that hold customer information and possibly payment information should be audited with Nessus every <x>? Exchange server should be audited with Nessus every <x>?All help in this matter is greatly appreciated!
Recommended Posts
Create an account or sign in to comment
You need to be a member in order to leave a comment
Create an account
Sign up for a new account in our community. It's easy!
Register a new accountSign in
Already have an account? Sign in here.
Sign In Now