Cybersecurity is the practice of protecting systems, networks, and programs from digital attacks. The goal is to prevent unauthorized access to devices and online services and protect the stored information. Cybersecurity is a big topic, and most organizations focus on cybersecurity controls. In this session, we explore the NIST Cybersecurity Framework (CSF).
This course is a part of IT Audit Bytes series. The other Segments of this series are:
- IT Audit Bytes - Access Control
- IT Audit Bytes - Backup and Recovery
- IT Audit Bytes - Change Management
- IT Audit Bytes - Cybersecurity
- IT Audit Bytes - Data Loss Prevention
- IT Audit Bytes - Disaster Recovery and BCP
- IT Audit Bytes - IT Control Frameworks/li>
- IT Audit Bytes - Job Monitoring
- IT Audit Bytes - Logging and SEIM
- IT Audit Bytes - Network Security and Detection
- IT Audit Bytes - Password Management
- IT Audit Bytes - Physical Security
- IT Audit Bytes - Provisioning and Deprovisioning
- IT Audit Bytes - SDLC Controls
- IT Audit Bytes - Security Awareness Training
- IT Audit Bytes - Separation of Duties Controls
- IT Audit Bytes - SOC Reports
- IT Audit Bytes - Strategy and Governance
- IT Audit Bytes - Third-Party IT Risk Management (TPRM)
Prerequisites
No advanced preparation or prerequisites are required for this course.Learning Objective
- discover and describe the NIST CSF framework.
- Identify the key concepts auditors should review in each domain.
- Recognize potential control gaps when performing a cybersecurity audit.
Last updated/reviewed: January 29, 2025
(0) Reviews
(0 rating)Lesson Questions and Answers0 Questions
There are no questions.
Answers to Frequently Asked Questions (FAQs)
Toby DeRoche
Owner
INTRODUCTION AND OVERVIEW
- Introduction to IT Audit Bytes - Cybersecurity 1:54
- What is Cybersecurity and Key Terminologies 10:06
- Control Testing 13:54
CONTINUOUS PLAY
SUPPORTING MATERIAL
REVIEW AND TEST
- REVIEW QUESTIONS quiz
- FINAL EXAM exam
Ask the instructor a question about this lesson