I Believe That There Should Be a Security Design Team and a Security Audit Team. All Security Operations Should Be Performed by Network Operations.

November 1, 2008 by Greg Ferro · Leave a Comment

Hi! If you are new here, you might want to subscribe to the RSS feed to here more from me.

Keith Tokash opens up a topic close to my own heart, and one that I am working on right now. Go there and add comments so that my job is easier

I believe that there should be a Security Design team and a Security Audit team. All security operations should be performed by Network Operations.

The SecAudit team should consists on consulting type people who love writing policies, working with management and reviewing the work that has been delivered matches the plan and design. This includes reviewing Securty Operations (which is most likely delivered by Network Operations). They do not perform hands on work, or any day to day activities.

The SecDes team are used to reference and validate all Security changes against the reference designs derived from Policy. They are Network Engineers with a specialisation in Security and can assess impact on Network Integrity.

Leave comments if you want me to expound more on this topic.

CCIE Candidate — What Roles Do Security Teams Play vs. Infrastructure Teams?: “”

Please rate this post:

Why Rate Posts?

$1 Star - It\\\'s Crud$ $2 Stars - It\\\'s Tosh$ $3 Stars - Something\\\'s missing$ 4 Stars - Needs works

(No Ratings Yet)

Loading ...

Filed under Blog · Tagged with Blog, Security, worklife

Probably Related Posts on the Same Topic

Blessay:Firewalls Are Like Noses:Everyone’s Got One.

The thing about firewalls is that all networks have them. Once, firewall expertise was rare and a special job focus. Now, firewalls are like noses — everyone’s got one.

Read the full article

The Difference Between Network and Server Engineers — Pictorial

I have been planning cloud computing systems recently, and had many long discussions with different teams. I have prepared the following diagram to show the perceptual difference between how each team perceives the data centre. …

Read the full article

Blessay: Designing Enterprise DMZ and Multilayer Firewall Clusters

In modern Enterprise networks, you typically have many clusters of firewalls protecting assets in your network. Since we use two or more layers of firewalls, we can put our DMZ for intermediate security zones in different places in our network. Lets gather together the different options and consider the merits or not, and sometimes how they ‘self-build’.

Read the full article

Blog:a Lot of Major Security Annoucements — Strangely Buried in One Big Press Release.

New ASA 8.2 with botnet and new VPN functions, Major version of IPS firmware — V7.0. New SAFE Design Guides. Really important new features, buried in a press release.

Read the full article

Speak Your Mind

Tell us what you're thinking...
and oh, if you want a pic to show with your comment, go get a gravatar!

A Random Selection of Other Fine Posts (or Not)

Internets of Interest: 29^th Jan

Review of ActivIdentity ActivID 4Tress AAA and 2 Factor Tokens

On Layer 2 Access Designs and MPLS

Network Dictionary — Microsoft Standard

Internets of Interest: 16^th Jun

I Believe That There Should Be a Security Design Team and a Security Audit Team. All Security Operations Should Be Performed by Network Operations.

Please rate this post:

Probably Related Posts on the Same Topic

Blessay:Firewalls Are Like Noses:Everyone’s Got One.

The Difference Between Network and Server Engineers — Pictorial

Blessay: Designing Enterprise DMZ and Multilayer Firewall Clusters

Blog:a Lot of Major Security Annoucements — Strangely Buried in One Big Press Release.

Speak Your Mind

A Random Selection of Other Fine Posts (or Not)

Search

Polls

Twitter - Follow Me

Updates notified by Email

Search

Related Posts

Archives

Latest Posts

I Believe That There Should Be a Security Design Team and a Security Audit Team. All Security Operations Should Be Performed by Network Operations.

Please rate this post:

Probably Related Posts on the Same Topic

Blessay:Firewalls Are Like Noses:Everyone’s Got One.

The Difference Between Network and Server Engineers — Pictorial

Blessay: Designing Enterprise DMZ and Multilayer Firewall Clusters

Blog:a Lot of Major Security Annoucements — Strangely Buried in One Big Press Release.

Speak Your Mind

A Random Selection of Other Fine Posts (or Not)

Search

Favourite Quotes

Polls

Twitter - Follow Me

Latest Posts

Updates notified by Email

Sponsor

Recent Comments

Charity

Search

Related Posts

Archives

Tags

Latest Posts