Templates

Download Free Taxation Risk Control Matrix Templates

This templates cover the major process and the related department in the Risk Control Matrix
Major Process
- Bank Disbursement - Prepaid Income
- Bank Disbursement - Taxes Payable - Income Tax
- Bank Disbursement - Taxes Payable - Income Tax Article 25
- Bank Disbursement - VAT In,Taxes Payable - VAT Out, VAT Self Assessed

Download Free IT Project Risk Management Checklist Template:

Schedule creation
- Schedule, resources, and product definition have all been dictated by the customer or upper management and are not in balance.
- Schedule is optimistic, ‘best case’, rather than realistic, ‘expected case’.
- Schedule omits necessary tasks.
- Schedule was based on the use of specific team members, but those team members were not available.
- Cannot build a product of the size specified in the time allocated.
- Product is larger than estimated (in lines of code, function points, or percentage of previous project’s size).
- Effort is greater than estimated (per line of code, function point, module, etc.).
- Re-estimation in response to schedule slips is overly optimistic or ignores project history.
- Excessive schedule pressure reduces productivity.
- Target date is moved up with no corresponding adjustment to the product scope or available resources.
- A delay in one task causes cascading delays in dependent tasks.
- Unfamiliar areas of the product take more time than expected to design and implement.

Download Free ISO 27001 Data Security Protection Policy Statement Templates

Data must not be disclosed to a third party without the express consent of the data subject or owner. In practice this means that documents, information, or the means to access them, should not be given to others or to external individuals or agencies, including the police, unless in exceptional circumstances

Information System Security Assessment Framework (ISSAF) 0.2 has detailed methodology and how to about Wirelesss Security Assessment. This document can be downloaded at
http://www.oissg.org/downloads/issaf-0.2/index.php
Below the summary of the Wireless LAN Security Assessment

Information Gathering
Wireless access points and clients send beacons and broadcasts respectively. Beacons are sent by APs at predefined intervals. They are invitations and driving directions that enable the client to find the AP and configure the appropriate settings to communicate. A beacon announces the SSID and the channel that the network is using. WLAN scanners allow users to identify WLANs through the use of a wireless network interface card (NIC) running in monitor mode and software that will probe for APs. Linux has Kismet which is not graphical and not as user friendly as NetStumbler, but it provides superior functionality. Kismet is a WLAN sniffer, where NetStumbler is a scanner.

Scanning
- Detect and Identify the wireless network
- Test for channels and ESSID
- Test the beacon broadcast frame and recording of broadcast information
- Test for rogue access points from outside the facility
- IP address collection of access points and clients
- MAC address collection of access points and clients
- Detect and Identify the wireless network
- Audit & Review – Questionnaire

Download free SysTrust Audit Framework Templates