home.aspx
 
. https://thycotic.com/company/blog/2019/01/08/privileged-access-management-compliance-through-the-eyes-of-an-auditor/
blog article
PRIVILEGED ACCESS MANAGEMENT COMPLIANCE THROUGH THE EYES OF AN AUDITOR
Compliance audits are a stressful, time-consuming effort for many companies. In the Lockdown blog, we often talk about the tools and processes customers use to prepare for both internal and external information security audits. This time we thought we’d turn the tables and speak directly to an auditor to hear his perspective. In this post, auditor and Information Security Specialist Edgar Perez Espinosa shares what’s on his security audit checklist and what really goes through his mind when he’s conducting an information security audit. Thycotic: How prepared are companies you audit? Auditor: There is not much advance notice in terms of process. Basically, companies focus more on investing in the “new generation” tools for increasing security and account management, but 70% of them lack a complete lifecycle to dispose accounts correctly. 50% of the time companies do not properly understand the scope of the audit. Thycotic: How long do you spend on an audit? Auditor: Usually audits take from two weeks to one month. It will depend on the scope of the audit. READ MORE