Explore how multifactor authentication and role-based access control lessen the risk of system compromise and privilege abuse, and how data classification uses tags to organize data, in preparation for the CISA exam.
Learning Objectives
Certified Information Systems Auditor (CISA) 2019: IAM & Data Classification
- recognize authentication categories and how authorization then follows
- create Active Directory users and groups on-premises
- create Microsoft Azure AD users and groups
- recognize how multifactor authentication enhances security
- enable MFA for an Azure AD user
- assign built-in Microsoft Azure roles to Azure AD groups
- assign built-in AWS policies
- use the delegation of control wizard to enable others to manage AD objects
- recognize the role of identity federation across organizations, including SSO
- recognize how resource tagging aids in tracking and granting permissions
- configure shared folder and NTFS Windows file system permissions
- configure standard Linux file system permissions
- classify Windows Server files with metadata
- use resource and Active Directory attributes to conditionally grant file system permissions
- create and manage authentication accounts and data tags