FW: Security Simplification



-----Original Message-----
From: Barbara Filkins [mailto:filkins@xxxxxxxxxxx]
Sent: Friday, February 23, 2007 1:46 PM
To: 'Stan'
Subject: RE: Security Simplification

I guess my reply to the VP is that it should not be a matter of simplifying
security but making it easier to practice. In other words, look at the
training issues and the human usability issues involved with security. Is
it password management problems? Backing up systems? Doing the things that
are needed that are too time consuming and that people see as a policy
without much purpose (unless something happens to them.)

-----Original Message-----
From: listbounce@xxxxxxxxxxxxxxxxx [mailto:listbounce@xxxxxxxxxxxxxxxxx] On
Behalf Of Stan
Sent: Wednesday, February 21, 2007 2:14 PM
To: security-basics@xxxxxxxxxxxxxxxxx
Subject: Re: Security Simplification

* [2007-02-21] oligarchicalrule@xxxxxxxxx said the following:
If you were told by a VP to simplify security for your organization,
what you think would be a starting point? It's seems vague. We run
Windows servers/desktops that are built on the same images. We use
Cisco switches/routers/etc. I'm not really sure where to start.

I would start by asking him what, exactly, he meant by that. If your
security stops at the hardware and operating system levels, that's pretty
simple. Are your policies too complex for non-IT staff to understand?
Perhaps people have trouble accessing files due to tight access
restrictions?

--
Stanley D'Arderr
File Descriptor #2
Devices Directory

---------------------------------------------------------------------------
This list is sponsored by: BigFix

If your IT fails, you're out of business - or worse. Arm your enterprise
with BigFix, the single converged IT security and operations engine. BigFix
enables continuous discovery, assessment, remediation, and enforcement for
complex and distributed IT environments in real-time from a single console.
Think what's next. Think BigFix.

http://ad.doubleclick.net/clk;82309979;15562032;o?http://www.bigfix.com/ITNe
xt/
---------------------------------------------------------------------------



---------------------------------------------------------------------------
This list is sponsored by: BigFix

If your IT fails, you're out of business - or worse. Arm your
enterprise with BigFix, the single converged IT security and operations
engine. BigFix enables continuous discovery, assessment, remediation,
and enforcement for complex and distributed IT environments in real-time
from a single console.
Think what's next. Think BigFix.

http://ad.doubleclick.net/clk;82309979;15562032;o?http://www.bigfix.com/ITNext/
---------------------------------------------------------------------------

Relevant Pages

  • RE: General question
    ... We live in a market economy. ... Pure economic reality. ... Founder of 2 security companies and still manager of risk and security with a hand on approach. ... BigFix ...
    (Security-Basics)
  • RE: Security Simplification
    ... Subject: Security Simplification ... BigFix ... engine. ... BigFix enables continuous discovery, assessment, remediation, ...
    (Security-Basics)
  • Re: Hacking Book / Information
    ... hacking but never got myself to do it but now I am going to get serious ... Engineering and Architecting but not security. ... engine. ... BigFix enables continuous discovery, assessment, remediation, ...
    (Security-Basics)
  • Re: Where is the head and tail?
    ... Backup Management - How regularly backup is taken, ... I am a novice when it comes to accounting and finance. ... Information Security Analyst ... BigFix ...
    (Security-Basics)
  • Re: General question
    ... network and servers got paid more than you the security ... Information Security Manager ... entities other than the intended recipient is prohibited. ... BigFix ...
    (Security-Basics)