Do you audit users with Sudo access and a log of sudo activity or just users with access to sudo?

like
Posting as :
works at
You are currently posting as works at

Just an A1 here, but I’ve seen us test users with sudo access for appropriateness and/or implement a control that requires users to obtain approval to the use the root account, and then a ticket gets automatically created with the log of the actions the user performed which gets reviewed and approved.

like

If you find yourself needing to go down the route of auditing user activity who have sudo access, then what you're really looking at is a finer SOD issue. In this case, I would not really do an exhaustive user activity test as long as I can obtain evidence of two or three instances of sudo user activity that does not align with the R&R

I would say a point in time test of users is pretty weak (but not unheard of if there arent many users or if the company is small). Typically id like to see a UAR unless inappropriate sudo access has been identified as a problem in the past in which case an activity review may be appropriate. At the end of the day tho - you're testing the client's controls and whatever they have in place is what you test. You can identify a control gap if you feel their control is inadequate to address the risk but you can't test what they're not doing 🤷‍♂️

You define what privileges you’re looking for first and then use the sudoers file to figure out who can access those privileges. If you’re ever needing to track OS activity you’re already pretty fucked unless the client has some sort of monitoring programs in place.

Related Posts

Is there home pick up and drop available at BoA GBS via Cab? In Mumbai

like

Hi all ,
I am looking for a job in
Accenture in HR (operations) , currently working with KPIT Pune
I have 3yrs of experience.
Grateful for any leads , thanks in advance!

like

Hi Fishes,
I joined my current organization 3 months back.
Didnt allocated any project yet.

Now i am looking for a change:
Can someone refer me:
YOE :8.9
Location: Bangalore
Notice period: 30days
DOB : 01/06/1991
skills: java, spring boot, hibernate.

Thanks in advance

Hi all, Does anyone have C_TAW12_750 Dumps. Please Help.

like

I take immense comfort in knowing that chances are, I cross paths with some of you daily. Does anyone else notice this? It’s fascinating.

like

My home had some water damage last year (water heater was leaking), so I had to do some repairs and took care of most of the work myself. If I refi, will my home have to pass an inspection?

like

I have a experience of 7 years in digital media.
Currently managing a team of 20 members, handling 50+ clients.


I started my career in the same company i am currently working.

It was a start up and i started very low.

Now I am currently getting 7.8lac per annum.
I am being underpaid and i know it.

I am sure there is alot of opportunities out there.

Just wanted to know, for my experience. What kinda salaries can I look for?

Does anyone have any side hustles apart from their day-to-day? If so, what are some suggestions that work well while practicing law?

like

I’m a newly barred attorney in Atlanta, Ga and I need two things: (1) a mentor who has time to be a mentor; and (2) a job opportunity. I am open to being a staff attorney or junior associate. CAN YALL HELP ME PLEASE?!?

like

Have worked previously as business consultant, pm in banking domain (10 years) and now as Product manager for a Bank(1 yr) - what are the chances FAANG would be interested in my profile for product manager/ project manager profile?

like
like

Hello all, I am a production manager for a sign design and manufacturing company. I have been with the company for six years now starting as lead graphic designer working my way to the production manager. since becoming the production manager two years ago I am responsible for 4 large format printers and 1 vinyl plotter. I’m wearing too many hats but I love what I do. I would love to be a remote graphic designer but I don’t know where to start. Any suggestions?

MBB Human Capital or FAANG Product Manager? Both are in NYC and compensation is similar. I have 7YOE in risk management at an industry specific (tech) boutique investment bank.

like

How much do strategy directors make these days?

like

Just got laid off do I need cobra? I plan to hopefully have a job soon

like

How long did you stay at your first job?
And what made you change places?

likesmart

Hello fishes
It’s been a month that HR told me that they’ll release offer, but it seems that approval is still in progress, is it normal?

People who pivoted/trying to pivot to PM - what resources did you use/do you recommend? There are some online courses or boot camps that have $1-2k tuition fees - worth it? Which ones are worth it?

like

Additional Posts in Risk Assurance

How do you apply design factors to IT Audits. Just overheard someone explain 'level of aggregation' for IT Security policies by describing how many people have access to it. Why is this a thing???

like

Are the exit opportunities better in Internal Audit/Business Process than IT Audit? All I hear is how awful IT Audit is but don’t hear as much complaining from the business side

like

What’s a good out from RA? Thinking about moving away from audit/accounting

like

Crowe is hiring for quite a few positions across the US (Internal Audit, IT controls and cyber/digital security, Compliance,etc)… I’m a manager and would think some of these niche areas have great opportunity for new folks to excel rather quickly. Great flexibility and mobility policies. I’d be happy to chat if interested and get you directly in touch with the right people internally.

likefunny

What’s your worst experience with a senior? (As an associate)

PWC recruiter contacted me for a SA role in their Process Assurance practice in Austin. How much does it pay? And how is the work compared to external Audit?

like

Is KPMG, EY and PWC considerate about one not wanting to travel and chosing local projects in the IT Assurance practice? Please share your experiences. Thanks!

Is anyone here in KPMG’s CRM Risk practice? If so do you know if they are still hiring??

like

What makes more money IT Audit or IT GRC?

like

Can we work from Puerto Rico without facing VPN issues? Or we need to get some kind of special permission?

likefunny

Anyone hiring for entry level risk compliance roles?

like

Hi! I used to work at PwC and currently work at Friedman. I’ve been at Friedman for about a year and a half and I love it! We are hiring at an experienced associate and senior associate level! Cont..

like

Anyone can share experience working industry for SOX/IA roles? Is there work life balance, good pay, etc.?

like

Has an tested roles for SAP through productive test simulation within production? Is there any risk doing this as the test is in production?

like

When is busy season over for the SOX side of stuff? Please tell it doesn’t go past 12/31.

funny

Does anyone have any good resources for auditing ESG?

For all you in IT audit what has your salary progression been YOY?

like

Mid year promotions, I found out you need to make your own case for it rather than the firm coming to you. If you think you’re ready make sure you speak up!

How do you tell your boss you're quitting without burning bridges? Please note we're in busy season for the engagements I've been staffed on, which is what makes me nervous and guilty. TIA

like
like

New to Fishbowl?

Download the Fishbowl app to
unlock all discussions on Fishbowl.
That was just a preview…
Sign Up to see all discussions
  • Discover what it’s like to work at companies from real professionals
  • Get candid advice from people in your field in a safe space
  • Chat and network with other professionals in your field
Sign up in seconds to unlock all discussions on Fishbowl.

Already a user?
Login here

Share

Embed this post

Copy and paste embed code on your site

Preview

Download the
Fishbowl app

See what’s happening in your industry
from the palm of your hand.

A phone with Fishbowl app

Scan your QR code to download
Fishbowl app on your mobile

Download app

Sign up for free to view this conversation on Fishbowl

By continuing you agree to Terms of Use and Privacy Policy

Already have an account? Log in

Sign up for free to continue using Fishbowl

By continuing you agree to Terms of Use(New) and Privacy Policy(New)
Messaging rates may apply

Already have an account? Log in

For account settings, visit Fishbowl on Desktop Browser or

General

Legal