A PBX Audit Checklist

This list was compiled from a brave posting made on the CISSA's mailing list and then augmented with principles from Protection and Security on the Information Superhighway .

Part G - Incident Response

Check all that apply:

Incident response is provided for the following classes of incidents:

Toll fraud.
Abusive telephone calls.
Employees using facility for unauthorized purposes.
PBX and component failures.
Short-term power failure.
Long-term power failure.
Corruption of PBX data.
Corruption of PBX programs.
Disruption of wiring.
Catastrophic failure of the PBX.
General disasters affecting the locality or region.

The incident response team is well versed in all aspects of the PBX security program.
The Incident response team plays an active role in the awareness, training, and education programs.
Data relating to all detected incidents is kept in an easily accessible form by the incident reponse team.
PBX backups are stored off-site and tested for proper operation on a regular basis.
Maintenance agreements guarantee technician response time.
The incident response team has a comprehensive set of tools for dealing with PBX incidents.
The incident reponse team has well documented response procedures that have been approved by the legal department.
Incident reponse creates detailed reports on each incident and summary reports of incidents on a regular basis.
With maximum value of