This post is in response to Xavier and Grant, who were kind enough to push back a bit on a previous post, Abandon ACL and Others? See their comments on that post.
I will respond to some of their points and reveal some more of my thinking as to why I believe that auditors need to become a LOT more technical.
Some may think I am just digging my hole a little deeper, but I’ve always loved the journey.
Continue reading →
Like this:
Like Loading...
Filed under artificial intelligence (ai), Audit, Data Analytics, Data Science, Machine Learning, Python, Technology
Tagged as abandon, acl, ACL+ tools, Audit, audit logs, big 4, CAEs, caseware, Caseware trend report, champion, data, falling behind, iia, isaca, orcs, Power BI, Python, RAM, SALY, SQL, technical
Several of my friends passed the CISSP exam recently, and told me that it isn’t as technical as I told them it would be.
They said it was more of a security manager certification.
Continue reading →
Like this:
Like Loading...
Filed under Certification, Security
Tagged as certification, cism, CISSP, free, isaca, isc2, issap, issep, issmp, technical, webcast
Back in 2007, Steve Yegge listed 10 technical resume tips for people applying for technical jobs. While his focus is programmers, his tips apply to IT staff and auditors, and anyone technical.
Even though the article is 7 year old as of this writing, it still has staying power. I’ve seen each of these tips ignored in countless resumes.
It’s a long article, but very helpful and funny.
Continue reading →
Like this:
Like Loading...
Filed under Employment
Tagged as cert, expert, HR, loser, lying, resume, scanner, spell check, steve yegge, technical, tips, wank, weasel, words
I recently stumbled across an article discussing how to choose an outside IT auditor by Kevin Beaver that stated, “With a few exceptions, auditors aren’t highly technical”–and may not need to know the difference between firewalls and fire hydrants.
If you know me, you know non-technicality of many IT auditors really bangs my keyboard (see the CISA posts listed below). An IT auditor who doesn’t have technical knowledge about IT is like a person who washes dishes without water.
Continue reading →
Like this:
Like Loading...
Filed under Security, Technology
Tagged as cisa, CISSP, cita, fire hydrant, firewall, it audit, kevin beaver, lightning, mark twain, Security, technical