Security Basics mailing list archives
Re: Operational Security
From: Pranay Kanwar <warl0ck () metaeye org>
Date: Wed, 02 May 2007 13:15:21 +0530
Hi Roman, Implementing security in an organization is a big challenge as for the basic checklist is concerned the following are necessary 1. Security Policies 2. Access Controls 3. Auditing 4. Vulnerability Analysis 5. Intrusion detection and many more depending on the type of organization. Now above may be easy to say, but hard to comprehend. The following resources are a good place to start 1. Cobit - http://www.isaca.org/Template.cfm?Section=COBIT6&Template=/TaggedPage/TaggedPageDisplay.cfm&TPLID=55&ContentID=7981 2. NIH Security Policies,Guidelines and Regulations - http://irm.cit.nih.gov/security/sec_policy.html 3. NSA's Security Configuration Guides - http://www.nsa.gov/snac/index.cfm?MenuID=scg10.3.1 4. ISO 17799 - http://www.iso-17799.com/ 5. SANS Security Policy Project - http://www.sans.org/resources/policies/ Regards warl0ck // MSG http://www.metaeye.org
Current thread:
- Operational Security Roman Tomazi (May 01)
- Re: Operational Security Pranay Kanwar (May 02)