Presentation is loading. Please wait.

Presentation is loading. Please wait.

Server Security Policy

Published byJean-Louis Lavallée Modified over 6 years ago

Similar presentations

Presentation on theme: "Server Security Policy"— Presentation transcript:

1 Server Security Policy
By Thomas Jenkins

2 Background This policy is created to keep a companies files and data safe. It is made up of rules and regulations that regulate the use of the company’s servers and internal networks. All employees of that company must follow this policy. If policy is upheld, it will keep their servers secure. Each individual company creates their own policy.

3 But, SANS provides a policy that they think is the best way to keep a server secure.
SANS makes this policy available on their website and will allow a company to put their name in the policy and adopt it.

4 Server Security Policy:
1.0 – Purpose - The purpose is to establish standards for the configuration of server equipment. This policy will limit unauthorized access to the company’s information. 2.0 – Scope - This scope tells what company falls under this policy and what equipment used also falls under this policy. 3.0 –Policy

5 3.1 – Ownership and Responsibility.
- There should be a group that runs the server for said company. They should monitor it and keep it up to date. 3.2 – General Configuration Guidelines. - Guidelines that the administrator group should follow while configuring the server. 3.3 – Monitoring. - Server should be monitored for security issues and these issues should be recorded. Security issues should be reported to management and resolved.

6 3.4 – Compliance. - Audits will be performed on a regular basis to make sure server is running correctly. Findings will be reported to support staff for remediation or justification. 4.0 – Enforcement. - Any employee found violating this policy may be subject to disciplinary action, up to and including being fired. 5.0 – Definitions. - DMZ- demilitarized zone- A network segment external to the corporate production network. - Server-.

7 6.0 – Revision History. - History of all revisions will go here.

Download ppt "Server Security Policy"

Similar presentations

OCCUPATIONAL SAFETY AND HEALTH ADMINISTRATION

OCCUPATIONAL SAFETY AND HEALTH ADMINISTRATION
Example policy elements and their role in bandwidth management and optimisation.

Example policy elements and their role in bandwidth management and optimisation.
Road Map for Audit Preparation FRCC Compliance Workshops September / October 2008.

Road Map for Audit Preparation FRCC Compliance Workshops September / October 2008.
Center for P – 20 Safety and Security Campus Safety.

Center for P – 20 Safety and Security Campus Safety.
Changes to HIPAA (as they pertain to records management) Health Information Technology for Economic Clinical Health Act (HITECH) – federal regulation included.

Changes to HIPAA (as they pertain to records management) Health Information Technology for Economic Clinical Health Act (HITECH) – federal regulation included.
6-1 Full and Fair Reporting Electronic Presentation by Douglas Cloud Pepperdine University Chapter F6.

6-1 Full and Fair Reporting Electronic Presentation by Douglas Cloud Pepperdine University Chapter F6.
IT security Are you protected against hackers?. Why are we in danger?  The Internet is worldwide, publicly accessible  More and more companies and institutes.

IT security Are you protected against hackers?. Why are we in danger?  The Internet is worldwide, publicly accessible  More and more companies and institutes.
Information Security Policies and Standards

Information Security Policies and Standards
CST 481/598 x.2.  Broad overview of policy material  What is a “process”  Tiers (not tears) Many thanks to Jeni Li.

CST 481/598 x.2.  Broad overview of policy material  What is a “process”  Tiers (not tears) Many thanks to Jeni Li.
INTRANET SECURITY Catherine Alexis CMPT 585 Computer and Data Security Dr Stefan Robila.

INTRANET SECURITY Catherine Alexis CMPT 585 Computer and Data Security Dr Stefan Robila.
95752:11-1 Security Policy. 95752:11-2 Policy Set of detailed rules as to what is allowed on the system and what is not allowed. User Policy System Policy.

95752:11-1 Security Policy :11-2 Policy Set of detailed rules as to what is allowed on the system and what is not allowed. User Policy System Policy.
Lesson 10 – SECURING YOUR NETWORK Security devices Internal security External security Viruses and other malicious software OVERVIEW.

Lesson 10 – SECURING YOUR NETWORK Security devices Internal security External security Viruses and other malicious software OVERVIEW.
ACCEPTABLE An acceptable use policy (AUP), also known as an acceptable usage policy or fair use policy, is a set of rules applied by the owner or manager.

ACCEPTABLE An acceptable use policy (AUP), also known as an acceptable usage policy or fair use policy, is a set of rules applied by the owner or manager.
Network security policy: best practices

Network security policy: best practices
Database Auditing Models Dr. Gabriel. 2 Auditing Overview Audit examines: documentation that reflects (from business or individuals); actions, practices,

Database Auditing Models Dr. Gabriel. 2 Auditing Overview Audit examines: documentation that reflects (from business or individuals); actions, practices,
Chapter 7 Database Auditing Models

Chapter 7 Database Auditing Models
CSIS 43100 Database Security, Dr. Guimaraes Adapted from Afyouni, Database Security and Auditing Database Auditing (Ch. 7) Overview of Auditing Overview.

CSIS Database Security, Dr. Guimaraes Adapted from Afyouni, Database Security and Auditing Database Auditing (Ch. 7) Overview of Auditing Overview.
Presented by Manager, MIS.  GRIDCo’s intentions for publishing an Acceptable Use Policy are not to impose restrictions that are contrary to GRIDCo’s.

Presented by Manager, MIS.  GRIDCo’s intentions for publishing an Acceptable Use Policy are not to impose restrictions that are contrary to GRIDCo’s.
© 2009 The McGraw-Hill Companies, Inc. All rights reserved. 1 McGraw-Hill Chapter 5 HIPAA Enforcement HIPAA for Allied Health Careers.

© 2009 The McGraw-Hill Companies, Inc. All rights reserved. 1 McGraw-Hill Chapter 5 HIPAA Enforcement HIPAA for Allied Health Careers.
Network Security Policy Anna Nash MBA 737. Agenda Overview Goals Components Success Factors Common Barriers Importance Questions.

Network Security Policy Anna Nash MBA 737. Agenda Overview Goals Components Success Factors Common Barriers Importance Questions.

Similar presentations

Ads by Google