PaulDotCom mailing list archives
Re: Managed firewalls
From: chris serafin <chrisserafin () gmail com>
Date: Sat, 12 Feb 2011 00:54:28 -0600
I'm biased since I work for a managed security service provider, but I have to say there is value there. If your a firewall guy, this could be bad. If your goal is to be a comprehensive security guy and put the needs of the business first...this makes sense. I can only deal with firewall BS for so long. I do not want to be making firewall changes while I can be doing better things with my time such as policy issues, compliance, pen testing, IDS/IPS, etc, etc, etc. Depending on your firewall vendor, this make make even more sense. Checkpoint is ALOT of overhead = time not well spent in management, but a market leader in FW. Other vendors equal less overhead, so in house MAY make sense, but still.... do I want to retire as the firewall guy. Been there, done that. --Chris Serafin On Fri, Feb 11, 2011 at 8:29 PM, Josh More <jmore () starmind org> wrote:
I think it's a good idea if the other company can do a better job of it than you can. You trust your ISP with your packets; this is the same thing, just a different place to draw the line. Is it ideal? If course not. However, you can't do it all, so it makes sense to focus where you can. As always, if you extend your trust like that, it would be wise to monitor their actions to make sure they are worthy of your trust. -Josh On Fri, Feb 11, 2011 at 6:12 PM, Matthew Perry <mlperry () gmail com> wrote:All, We have been acquired by another company that is use to outsourcing their management and monitoring of firewalls to another company. I have always been against this especially since they would have the keys for any point to point connections. How does everyone else in the pauldotcom community feel about this and is it a standard practice? -- Matthew Perry _______________________________________________ Pauldotcom mailing list Pauldotcom () mail pauldotcom com http://mail.pauldotcom.com/cgi-bin/mailman/listinfo/pauldotcom Main Web Site: http://pauldotcom.com_______________________________________________ Pauldotcom mailing list Pauldotcom () mail pauldotcom com http://mail.pauldotcom.com/cgi-bin/mailman/listinfo/pauldotcom Main Web Site: http://pauldotcom.com
_______________________________________________ Pauldotcom mailing list Pauldotcom () mail pauldotcom com http://mail.pauldotcom.com/cgi-bin/mailman/listinfo/pauldotcom Main Web Site: http://pauldotcom.com
Current thread:
- Managed firewalls Matthew Perry (Feb 11)
- Re: Managed firewalls Josh More (Feb 11)
- Re: Managed firewalls chris serafin (Feb 12)
- Re: Managed firewalls Jack Daniel (Feb 12)
- Re: Managed firewalls John Strand (Feb 12)
- Re: Managed firewalls Russell Eubanks (Feb 12)
- Re: Managed firewalls Matthew Perry (Feb 15)
- Re: Managed firewalls John Strand (Feb 12)
- Re: Managed firewalls Josh More (Feb 11)