Security Basics mailing list archives

Previous By Date Next
Previous By Thread Next

Re: Operational Security

From: Pranay Kanwar <warl0ck () metaeye org>
Date: Wed, 02 May 2007 13:15:21 +0530
Hi Roman,

Implementing security in an organization is a big challenge
as for the basic checklist is concerned the following are
necessary

1. Security Policies
2. Access Controls
3. Auditing
4. Vulnerability Analysis
5. Intrusion detection
and many more depending on the type of organization.

Now above may be easy to say, but hard to comprehend.
The following resources are a good place to start

1. Cobit -
http://www.isaca.org/Template.cfm?Section=COBIT6&Template=/TaggedPage/TaggedPageDisplay.cfm&TPLID=55&ContentID=7981
2. NIH Security Policies,Guidelines and Regulations -
http://irm.cit.nih.gov/security/sec_policy.html
3. NSA's Security Configuration Guides -
http://www.nsa.gov/snac/index.cfm?MenuID=scg10.3.1
4. ISO 17799 - http://www.iso-17799.com/
5. SANS Security Policy Project - http://www.sans.org/resources/policies/

Regards

warl0ck // MSG
http://www.metaeye.org
Previous By Date Next
Previous By Thread Next

Current thread: