EuroPub
Search
Apply

PROCEDURAL FRAMEWORK FOR CONDUCTING INFORMATION SECURITY AUDITS

Journal Title: International scientific journal Science and Innovation - Year 2025, Vol 4, Issue 4

Abstract

This paper presents a comprehensive analysis of the various types of audits that should be undertaken within the scope of an information security audit. Information security auditing represents a fundamental element of an effective cybersecurity management program, serving to identify and mitigate risks, compliance gaps, and system vulnerabilities that may compromise organizational data and operational continuity. A robust audit framework should incorporate multiple evaluation methodologies, including compliance audits, which assess the extent to which an organization conforms to applicable legal, regulatory, and industry-specific standards. The findings of such audits are essential for strengthening organizational resilience and ensuring ongoing adherence to best practices in information security management.

Authors and Affiliations

D. S. Fayziyeva, M. U. Zokirjonova

Keywords

information security audit methodology security policy risk assessment system vulnerabilities compliance audit security standards ISO/IEC 27001 risk management data protection encryption authentication vulnerability assessment penetration testing internal audit cybersecurity governance audit reporting cyber threats security controls compliance assurance.

Related Articles

THE SIGNIFICANCE OF ENGLISH IN MEDICINE FOR UZBEK SPEAKERS. TERMS OF CHILDREN'S DISEASES IN ENGLISH AND UZBEK

There are many reasons to study English for people working in the medical field. The first one is that most modern scientific literature is published in English. It is obvious that some essential details of the article m...

PSYCHODIAGNOSTIC SERVICE OF A TEACHER-PSYCHOLOGIST IN PERSONALITY FORMATION

In general, any psychodiagnostic activity within the framework of the support paradigm is an element of an integral process and acquires meaning and value only in conjunction with other elements, most often in conjunctio...

DIGITAL MARKET REGULATION

This article discusses why it's important to regulate digital markets effectively in the rapidly changing digital economy. It looks at the special challenges of digital markets, such as protecting data privacy, dealing w...

SAND IN THE IMAGE OF RELATIVES TO ESTABLISH EDUCATION IN THE NATIONAL SPIRIT THROUGH RACES

The article describes how dolls created by puppeteers or designers acquire a national image, embody the nation to which they belong, educate preschool children with the help of national dolls, our rich history, and the h...

THE ROLE OF INNOVATIVE TECHNOLOGIES IN THE FORMATION OF YOUTH READING CULTURE

Formation and development of the reading culture of young people is one of the urgent issues today, and the role of innovative technologies in this process is incomparable. Digital technologies, in particular, electronic...

Download PDF file
  • EP ID EP765268
  • DOI 10.5281/zenodo.15305302
  • Views 30
  • Downloads 0

How To Cite

D. S. Fayziyeva, M. U. Zokirjonova (2025). PROCEDURAL FRAMEWORK FOR CONDUCTING INFORMATION SECURITY AUDITS. International scientific journal Science and Innovation, 4(4), -. https://www.europub.co.uk/articles/-A-765268

Sign In Europub

For faster login or register use your social account.

or
Lost Your Password?
Register