Single User or SOHO Environment
>Business, EDU or Government
Best Practices For....
Business, EDU or Government:
A comprehensive, well-designed network security program provides the foundation for effective enterprise security. It demands tightly integrated policies, technical architecture
and operational procedures. Below is a summary:
Convert regulatory and business requirements into actionable policies and procedures
Best Practice is to develop policies that focus on the business and business end-user first and foremost. Open and monitor only those ports that are needed. Security policy
begins with the approval of the CEO and is conveyed to all employees as acceptable usage. Do not assume that all employees know this. Convey it and demonstrate it. Remember that
policy is always dynamic, affected by the latest changes in OS, intra-network, and internet protocols. Policy created today may not be relevant a year from now.
Design and deploy secured architectures that support your policies
Out-of-box security appliance installation is not enough. A secured platform must be designed and configured to support a policy and the most critical digital assets.
Achieving compliance with industry and government mandates
Maintaining compliance with complex regulatory requirements is a tedious task. Mandates such as: FISMA, GLBA, HIPAA and key practices such as: NIST SP 800-37, NIACAP and
DITSCAP demand and ever increasing awareness from the CSO.
Two heads are better than one
Best practice to have at least one security partner available if the need arises. Allow them to check your policies and test for any vulnerabilities. Attention-to-detail is the
most key factor for proper implementation.
Going forward
Maintaining awareness of new threats and requires constant management of upgrades and patches. Apply these in a timely manner.
Security never takes a holiday
365x24x7. Which programs are you using to monitor the network? Have sufficient on & off-site logs and preferably with good text and GUI tools for each critical device.
| 
