Information
-
Document No.
-
Audit Title
-
Client / Site
-
Conducted on
-
Prepared by
- Ben Vrijsen
- Bart van Leeuwen
- Carlo Di Liddo
- Jochem de Hoog
- Edsley Adriën
- Michel de Groot
- Mostafa Sherif
- Paul Leunissen
- Sjors Brul
-
Location
SBit Quarterly Checklist
-
<br>Ask the FC to gain the latest list of E-mail accounts. <br>* The list has to be checked bij HR and signed bij the GM.
-
Ask the FC to gain the latest list of VPN Users. <br>* The list has to be checked and signed by the GM.
-
Ask the FC to gain the latest list of people who have access to the serverroom. <br>* The userlist has to be checked bij HR and signed bij the GM. LIMIT ACCESS!
-
<br>Ask the FC to gain the latest userlist of the Accounting system. <br>* The userlist has to be checked bij HR and signed bij the GM.
-
Ask HR to gain the latest userlist of Carlson logins.<br>* The userlist has to be checked bij HR and signed bij the GM.
-
Ask Rezidor IT to gain the latest overview of the Firewall Rules. <br>* The overview needs to be checked by IT and signed bij the GM.
-
Ask the FC to check the SBit userlist of servicedesk. <br>* Updated list should be send to Ronald to update the system.
-
Ask the FC to gain the latest accounting/financial(Balance Reports) of Iscala system. <br>* The userlist has to be checked bij HR and signed bij the GM.
-
Check with FC whether the file for licenses is updated and compare with licenses in use.<br>* EU legal requirements, PCI compliancy
-
Review Audit pack (see rezportal); Oracle sys password, Opera password, credit card encryption key, Opera users, Opera permissions (see audit instructions) * The userlist has to be checked bij HR and signed bij the GM. No generic Opera accounts allowed! <br>
-
Ask the FO manager to gain the latest userlist of Opera. <br>* The userlist has to be checked bij HR and signed bij the GM.
-
Ask the F&B manager to gain the latest userlist of Micros. <br>* The userlist has to be checked bij HR and signed bij the GM.
-
Print the list of the Active Directory users and check default user accounts.. <br>* The userlist has to be checked bij HR and signed bij the GM.
-
Perform restore test. *Make a copy and attache.
-
A network scanning test with vulnerability and penetration tests is available on RezPortal. Attache to documents.
-
Perform a wireless network scanning for checking which networks are available and whether they are secured or not. Every Floor!
-
Make sure all publicly accessible network outlets are disabled or otherwise secured when not in use.
-
Make sure the Guest HSIA Network is separated from the hotel administrative network by physical or VLAN separation. * Network scanning.
-
Disable all generic accounts.
-
Change your own password for you login with administrator rights, Change Interface password, administrator password (when applicable). * Mail Ronald the new password.
-
Make sure the new passwords are in an envelope and given to the GM. * See Keepass for new passwords! The GM needs to store the envelope in a secure safe.
-
Create NIA report. * Let the FC sign for it.
-
Update all firmware and drivers and reboot servers. * Check wsus whether all administration appliances are in the network.
-
Review of backup-tape sign form
-
Remarks
-
Name and Signature of General Manager for approval.
-
-
Name and Signature of Financial Controller for approval.
-
-
Name and Signature of SBit employee for approval.
-
