RSS News Feed Feed Description

Information Technology Service Management ITSM - Change Control, Help Desk, and Service Request

Security Template Sarbanes Oxley

Disaster Recovery Template Sarbanes Oxley

Job Descriptions IT Salary Data

Metrics Internet IT

 
 

 

Back Home Up Next

 

Issue: Volume 12 Number 7

July 13, 2009

IT Productivity Center

 

Five Steps to Prevent and Detect Security Breaches

Denial of service attacks are on the rise - steps that CIOs and CSOs can take...

Security Manual Template

Janco Associates has defined a set of steps that enterprises of all sizes can follow to help to achieve a safe and secure computing environment.  The steps that CIOs and CSOs should follow are:

  • Access the network and computing environment - Have an inventory of all devices, accesses points, security protocols, encryption levels, programs, and users.  This inventory should have limited distribution and should be reviewed and updated frequently (at least quarterly).
  • Conduct in-depth system and network security audits -Test and validate that only the authorized items are running on the systems and network.  Create and review in-depth logs files to monitor compliance to security protocols, violation alerts, and actions taken.
  • Establish network access rules that allow on valid access - Close all un-used ports on routers and disable all unused user ids and passwords.  Implement a "two-factor" authentication and encryption process for all sessions.  Require all users to use "two-factor" authentication.  On the third authentication violation within a specified period, disable the device, port, or user from the system and network.
  • Mechanize and retain detail logs - Record everything possible including dates with full timestamps and implement firewalls that minimize inbound attacks.  Review these logs in detail daily and report at least weekly to the CIO or CSO the types of issues that occur.
  • Assume someone is attacking you now  - Use the logs in a comparative way to see differences between prior periods and the current period to identify how someone could be getting into the system and network.  Have outside third parties try to break in - see if you can identify and block them.

All of these steps have defined policies and procedures that are defined in the Security Manual Template.

Read on...                                  Order Now $499 to $1,399

 

 
 
Email Newsletter icon, E-mail Newsletter icon, Email List icon, E-mail List iconJoin Email List
 

Security Audit

Security Audit Program

Read on

 

Record Management

Record Management Retention and Disposition Policy

Template comes in MS WORD format and is easily modified to meet the needs of enterprises of all sizes.  It comes with a dozen forms which can be used immediately to create a record retention and disposition schedule.

Download Sample....

Read on....
 

IT Infrastructure

IT Infrastructure Drives Cost Control

In today's business environment there is a need to define an effective infrastructure to support operating environment; have a strategy for the deployment and technology; and clearly define responsibilities and accountabilities for the use and application of technology.

Read on...

 

©  2001 - 2009 Janco Associates, Inc. - ALL RIGHTS RESERVED --  Revised: 06/16/09.