EuroPub
Search
Apply

PROCEDURAL FRAMEWORK FOR CONDUCTING INFORMATION SECURITY AUDITS

Journal Title: International scientific journal Science and Innovation - Year 2025, Vol 4, Issue 4

Abstract

This paper presents a comprehensive analysis of the various types of audits that should be undertaken within the scope of an information security audit. Information security auditing represents a fundamental element of an effective cybersecurity management program, serving to identify and mitigate risks, compliance gaps, and system vulnerabilities that may compromise organizational data and operational continuity. A robust audit framework should incorporate multiple evaluation methodologies, including compliance audits, which assess the extent to which an organization conforms to applicable legal, regulatory, and industry-specific standards. The findings of such audits are essential for strengthening organizational resilience and ensuring ongoing adherence to best practices in information security management.

Authors and Affiliations

D. S. Fayziyeva, M. U. Zokirjonova

Keywords

information security audit methodology security policy risk assessment system vulnerabilities compliance audit security standards ISO/IEC 27001 risk management data protection encryption authentication vulnerability assessment penetration testing internal audit cybersecurity governance audit reporting cyber threats security controls compliance assurance.

Related Articles

SCIENTIFIC METHODS AIMED AT IMPROVING WORKING CONDITIONS AND WORKPLACES IN ECONOMIC SECTORS

This article is devoted to the analysis of the results of the research work carried out in the framework of innovative research. The article presents the role of mobile applications in the life of a modern person and a v...

CHEMICAL COMPOSITION OF THE PLANT HELIANTHUS TUBEROSUS L

In the article, the chemical composition and biologically active substances, macro- and microelement composition of the medicinal Jerusalem artichoke (Helianthus tuberosus L.), introduced in the conditions of old irrigat...

ANALYSIS OF THE COLOR AND TONE OF UZBEK NATIONAL CLOTHING IN THE 19TH CENTURY

This article describes the colors of Uzbek materials and the elements of artistic decorations in it, the symbolism of the patterns and their analysis. Each region as had its own costumes from ancient times. The appearanc...

IMPROVING THE MECHANICAL PROPERTIES OF PARTS MADE OF HIGH-MANGANESE STEEL WITH METALLOID TYPE MODIFIER

This study examined the effect of adding metalloid is a type as a modifier on changes in the mechanical properties, microstructure, and wear mechanism of high-Mn steel. Several tests were carried out with different metal...

THE EVALUATION OF THE THICKNESS OF FUNCTIONAL COATINGS OBTAINED BY THE ION-PLASMA METHOD

In the paper represented a mathematical model of the spray particles distribution on the substrate surface for a magnetron sputtering system, and on this basis calculated thickness of the aluminium and nickel coatings. T...

Download PDF file
  • EP ID EP765268
  • DOI 10.5281/zenodo.15305302
  • Views 17
  • Downloads 0

How To Cite

D. S. Fayziyeva, M. U. Zokirjonova (2025). PROCEDURAL FRAMEWORK FOR CONDUCTING INFORMATION SECURITY AUDITS. International scientific journal Science and Innovation, 4(4), -. https://europub.co.uk/articles/-A-765268

Sign In Europub

For faster login or register use your social account.

or
Lost Your Password?
Register