BACKGROUND AND KEY RISKS: Microsoft Windows is one of the most widely used Operating Systems ever. Effectively securing Windows systems requires a variety of safeguards to be in place at the server and workstation levels. Microsoft’s Active Directory service, which runs on Windows server operating systems, is crucial to secure. It represents the keys to the kingdom; it stores information about a variety of objects in the network such as user accounts, computer accounts, groups, software applications, and services running on the entire network.

IT Audit typically evaluates common Windows security ‘problem areas’ that result in compromise of a network (e.g., gaps in antivirus and antimalware deployments, incomplete patching, outdated applications and operating systems, misconfiguration, excessive access privileges). The team also evaluates the effectiveness of logging and monitoring controls in place that could be used to detect inappropriate activity.