Oh snap, just realized that perhaps this should have been posted in the firewalls sub-forum. I'm looking to build up technical IT audit skills (I've done the soft stuff like auditing for system change approvals, configuration, etc.), thought this would be a good place to post for a noob like myself. I've studied vendor-neutral stuff like Comptia Security+ and Network+ (thank you Professor Messer and Mike Myers!) and now I'm looking to translate this into hands-on, practical IT auditing.