Educause Security Discussion mailing list archives

Re: Domain Access Rights

From: Miguel Hernandez <miguel.hernandez () DOMAIL MARICOPA EDU>
Date: Tue, 7 Mar 2017 14:30:13 -0700

You will surely get a variety of opinions on this with a variety of
reasons.  But for my team, they have domain access.  My rationale is, if I
am to held accountable and responsible for securing my institution, then I
need my team to have the ability to take immediate action when required,
obtain real-time metrics, and have the ability to validate security at any
time on any system.

[image: eSig Logo]
Miguel Hernandez IV, Ph.D. CISSP, CISA
Associate Vice Chancellor ITS
Chief Information Security Officer
2411 West 14th Street, Tempe AZ 85281
email | miguel.hernandez () domail maricopa edu
website | https://www.maricopa.edu
*Follow me on Twitter <https://twitter.com/mh4phd>.*

This message contains information which may be confidential and/or
privileged. If you are not the intended recipient of this message, please
notify the sender, delete and do not use or disseminate this information.

On Tue, Mar 7, 2017 at 2:19 PM, Barton, Robert W. <bartonrt () lewisu edu>
wrote:

Afternoon,



We are discussing what domain access rights the security team should have
to get their work done.  What rights do some of you with small teams have?
Different by level (CISO vs tech)?  Do you have a portion of the team with
very little access, so they can do pen testing (small teams may not have
option…)?



Robert W. Barton

Director of Information Security

Lewis University

One University Parkway

Romeoville, IL  60446-2200

815-836-5663 <(815)%20836-5663>



This message (including any attachments) is intended only for the use of
the individual or entity to which it is addressed and may contain
information that is non-public, proprietary, privileged, confidential, and
exempt from disclosure under applicable law or may constitute as attorney
work product. If you are not the intended recipient, you are hereby
notified that any use, dissemination, distribution, or copying of this
communication is strictly prohibited. If you have received this
communication in error, notify us immediately by telephone at
(815)-836-5950 <(815)%20836-5950> and (i) destroy this message if a
facsimile or (ii) delete this message immediately if this is an electronic
communication. Thank you.

Current thread:

Domain Access Rights Barton, Robert W. (Mar 07)
- Re: Domain Access Rights Miguel Hernandez (Mar 07)
- Re: Domain Access Rights Brad Judy (Mar 07)
- Re: Domain Access Rights Adam Maynard (Mar 07)