Firewall Wizards mailing list archives
Re: Where do firewall Admins Sit in An Company
From: "Bill Royds" <Bill () royds net>
Date: Tue, 3 Jun 2003 18:55:05 -0400
Security should also be reviewing logs and usage as well. Any policy needs constant review and maintenance and firewall policy is no different. There should be an incident response policy that guides network/server administration whenever there are alerts from the firewall. Reports from log processing (1543 attempts to connect to port 27373 today etc.) should also be given to security. But security should be looking after exceptions, not operations. ----- Original Message ----- From: "Tony Miedaner" <miedaner () twcny rr com> To: <firewall-wizards () honor icsalabs com> Sent: Tuesday, June 03, 2003 6:37 AM Subject: Re: [fw-wiz] Where do firewall Admins Sit in An Company : Thanks for the reply. : : OK. Security develops policy and does approval of changes but where is : oversight? : : Since obviously the networking and server folks do not wear a security hat, : at least that is not what they get pay raises for. : : TIA : : At 09:40 PM 6/2/2003 -0400, Bill Royds wrote: : >You really have to differentiate between firewall administration and : >firewall rule development, although often they will be the same in smaller : >places. : >Firewall administration is part of operations, often servers if you are : >looking at an application gateway running on a server OS, or networking if : >it is an appliance or stateful inspection like a PIX working more closely : >with the network. : >But the firewall policy and rule development should be part of security, so : >that rules fit needs of security policy, rather than the needs of : >operational efficiency. This is alos a good form of separation of duties by : >having at least two independent reviews of the ruleset so both operational : >needs (availability) and security needs are fulfilled. : > : > : >----- Original Message ----- : >From: "Tony Miedaner" <miedaner () twcny rr com> : >To: <firewall-wizards () honor icsalabs com> : >Sent: Monday, June 02, 2003 7:38 AM : >Subject: [fw-wiz] Where do firewall Admins Sit in An Company : > : > : >: Hi All, : >: : >: A couple questions: : >: : >: 1. Typically what part of an organization do firewall administrators : >belong : >: to in a large Enterprise (Example Networking, Server, Security)? : >: : >: 2. If the firewall administrators sit in a non-security group what type of : >: oversight is typically performed over them. : >: : >: : >: 3. If firewall administrators sit in a security group what type of : >: oversight is done on them? : >: : >: TIA. : >: : >: _______________________________________________ : >: firewall-wizards mailing list : >: firewall-wizards () honor icsalabs com : >: http://honor.icsalabs.com/mailman/listinfo/firewall-wizards : : _______________________________________________ : firewall-wizards mailing list : firewall-wizards () honor icsalabs com : http://honor.icsalabs.com/mailman/listinfo/firewall-wizards _______________________________________________ firewall-wizards mailing list firewall-wizards () honor icsalabs com http://honor.icsalabs.com/mailman/listinfo/firewall-wizards
Current thread:
- Where do firewall Admins Sit in An Company Tony Miedaner (Jun 02)
- Re: Where do firewall Admins Sit in An Company Bill Royds (Jun 03)
- Re: Where do firewall Admins Sit in An Company Tony Miedaner (Jun 03)
- Re: Where do firewall Admins Sit in An Company Mitch Pirtle (Jun 03)
- Re: Where do firewall Admins Sit in An Company Bill Royds (Jun 03)
- Re: Where do firewall Admins Sit in An Company Tony Miedaner (Jun 03)
- Message not available
- Re: Where do firewall Admins Sit in An Company Tony Miedaner (Jun 06)
- Re: Where do firewall Admins Sit in An Company Tony Miedaner (Jun 03)
- Re: Where do firewall Admins Sit in An Company Bill Royds (Jun 03)
- RE: Where do firewall Admins Sit in An Company Tony Miedaner (Jun 03)
- Re: Where do firewall Admins Sit in An Company Mikael Olsson (Jun 06)