Open navigation menu

Welcome to Scribd!

Operations Security

Uploaded by

0% found this document useful (0 votes)

11 views1 page

ISMS

Copyright

© © All Rights Reserved

Available Formats

PDF, TXT or read online from Scribd

Share this document

Share or Embed Document

Sharing Options

Did you find this document useful?

Is this content inappropriate?

Report this Document

ISMS

Copyright:

© All Rights Reserved

Available Formats

Download as PDF, TXT or read online from Scribd

Flag for inappropriate content

0% found this document useful (0 votes)

11 views1 page

Operations Security

Uploaded by

ISMS

Copyright:

© All Rights Reserved

Available Formats

Download as PDF, TXT or read online from Scribd

Flag for inappropriate content

Jump to Page

You are on page 1of 1

Search inside document

Separation of duties

Job rotation
Administrative

Mandatory vacations

Controls

Limit boot sequent

1. Discovery - Footprinting and info gathering

2. Enumeration - port scans and resource identification
3. Vulnerability mapping - identify vulnerabilities
4. Exploitation - attempt to gain access

Least privilege

Technical /Logic

Harden Remote Access

Physical - System Hardening

Penetration
Testing

5. Report to management
1. Request for a change to take place
2. Approval of the change
Personnel testing
Physical testing
System and network testing

Change Control
Process

Vulnerability
Testing

5. Implementation

Operations
Security

SMTP
IMAP - can leave on server

E-mail

Replaying - Often left enabled - SPAM redirection

Mike Smith
26/04/10 - Rev.26

New computers or applications installed

Change Control
Documentation

Different configurations implemented

New technologies integrated
etc.

Fax - use an encryptor

Purging

Disk shadowing

Zeroization

Redundant servers

Media Controls

RAID, MAIT, RAIT

Clustering

Dual backbones

4. Tested and presented

6. Report change to management

POP

Backups

3. Documentation of the change

Contingency

Data remanence
Degaussing generates a coercive magnetic force
Physical destruction
Care with object reuse

Direct Access Storage Device

Redundant power
Block diagram of system or control

Mesh network topology - not star

Failure Modes and Effect

Analysis - FMEA

Consider what happens if each block fails

Tabulate failures and effects
Correct the design
Have engineers review

You might also like

Advanced Penetration Testing for Highly-Secured Environments - Second Edition
From Everand
Advanced Penetration Testing for Highly-Secured Environments - Second Edition
Lee Allen
No ratings yet
Bellla, Biba
Document12 pages
Bellla, Biba
kphk2013
No ratings yet
Oracle Data Guard 11gR2 Administration Beginner's Guide
From Everand
Oracle Data Guard 11gR2 Administration Beginner's Guide
Emre Baransel
No ratings yet
Tasks 4 and 5
Document4 pages
Tasks 4 and 5
fieuxmz
No ratings yet
Advanced Penetration Testing for Highly-Secured Environments: The Ultimate Security Guide
From Everand
Advanced Penetration Testing for Highly-Secured Environments: The Ultimate Security Guide
Lee Allen
Rating: 4.5 out of 5 stars
4.5/5 (6)
Final CISSP EXAM STUDY NOTES: TCSEC, CMMI, ACID, Biometrics Types
Document12 pages
Final CISSP EXAM STUDY NOTES: TCSEC, CMMI, ACID, Biometrics Types
Jay Flores
No ratings yet
Red Hat Enterprise Linux Troubleshooting Guide
From Everand
Red Hat Enterprise Linux Troubleshooting Guide
Cane Benjamin
Rating: 4 out of 5 stars
4/5 (1)
Unit Objectives Describe and Explain Common Security Threats Explain Ways To Mitigate Security Threats
Document59 pages
Unit Objectives Describe and Explain Common Security Threats Explain Ways To Mitigate Security Threats
David Williamson
No ratings yet
Bài 4 - Cac Chuc Nang Giam Sat
Document108 pages
Bài 4 - Cac Chuc Nang Giam Sat
Lam Van Bui
No ratings yet
Session 12: Implementation and Maintenance Strategies
Document18 pages
Session 12: Implementation and Maintenance Strategies
toabhishekpal
No ratings yet
CPTE: Certified Penetration Testing Engineer: (5 Days)
Document5 pages
CPTE: Certified Penetration Testing Engineer: (5 Days)
shriram1082883
No ratings yet
Ops Sec Guide
Document74 pages
Ops Sec Guide
lebenikos
No ratings yet
Syllabus: Complete Linux Security and Hardening With Practical Examples
Document4 pages
Syllabus: Complete Linux Security and Hardening With Practical Examples
M3iat
No ratings yet
Course Module Wise
Document12 pages
Course Module Wise
Spup Ms
No ratings yet
Operating System: Time: 3 HRS.) (Marks: 100
Document17 pages
Operating System: Time: 3 HRS.) (Marks: 100
Aditya Darekar
100% (1)
Presnted by Ashwani (09IT16) Navneet (09IT48)
Document21 pages
Presnted by Ashwani (09IT16) Navneet (09IT48)
Ashwani Kumar
No ratings yet
APT IncidentHandling Checklist
Document4 pages
APT IncidentHandling Checklist
Tatiana Skripkar
No ratings yet
RFQ For SOC
Document17 pages
RFQ For SOC
Ali Shahbaz
No ratings yet
Data Domain Student Guide
Document288 pages
Data Domain Student Guide
Nitesh Roy
No ratings yet
Basic Security
Document23 pages
Basic Security
garyart111
No ratings yet
Chapter 5: Evidence Acquisition and Media Analysis
Document27 pages
Chapter 5: Evidence Acquisition and Media Analysis
Rosezh bhandari
No ratings yet
OS services and components
Document16 pages
OS services and components
RavirajOP
No ratings yet
Devops - Basic To Advance
Document10 pages
Devops - Basic To Advance
Muhammad Faisal Faisal
No ratings yet
Storage Security and Management Monitoring
Document28 pages
Storage Security and Management Monitoring
shubhamsria
No ratings yet
Data Ontap 7-Mode Administration: Part Number: STRSW-ILT-D7ADM
Document6 pages
Data Ontap 7-Mode Administration: Part Number: STRSW-ILT-D7ADM
AS Kumar
No ratings yet
IT Infrastructure Operations and Application Management Guide
Document10 pages
IT Infrastructure Operations and Application Management Guide
jeromeking
No ratings yet
CRYPTO40
Document97 pages
CRYPTO40
yatri
No ratings yet
Information Logging Standard: 1. Overview
Document4 pages
Information Logging Standard: 1. Overview
Spit Fire
No ratings yet
ISO 27001 - Operations
Document13 pages
ISO 27001 - Operations
Sasikala Mani
No ratings yet
Network Fundamentals - Ccna-Book Summay
Document3 pages
Network Fundamentals - Ccna-Book Summay
Hungtuan Truong
No ratings yet
UNIT 1. Controlling A Computer
Document15 pages
UNIT 1. Controlling A Computer
Rodjean Simballa
No ratings yet
Domain 7 Security Operations
Document24 pages
Domain 7 Security Operations
AAA
No ratings yet
Distributed Computing
Document13 pages
Distributed Computing
Edgar Osoro
No ratings yet
Administrator To-Do List: Review Physical Hardware Status
Document3 pages
Administrator To-Do List: Review Physical Hardware Status
Okene Graham
No ratings yet
CIA Triad Presentation
Document30 pages
CIA Triad Presentation
Gayashan Perera
No ratings yet
Penetration Test Report
Document12 pages
Penetration Test Report
api-239958350
100% (1)
3 - OS Calls, Operations
Document7 pages
3 - OS Calls, Operations
mano
No ratings yet
Lec 04 D Auscert2016 160526020037
Document17 pages
Lec 04 D Auscert2016 160526020037
kavisandeepani
No ratings yet
Solaris Administrator Day To Day Activities
Document1 page
Solaris Administrator Day To Day Activities
nagaraj
No ratings yet
Operating System Services and Calls in 40 Characters
Document7 pages
Operating System Services and Calls in 40 Characters
Azan Khan
No ratings yet
Cloud Integrator
Document6 pages
Cloud Integrator
sriram
No ratings yet
VP.Y2Vyb3Mub3Jn VP..SL Documents - SL FY10 Industry Day Briefings - SL PEO IWS CEROS Overview September 2010 Final
Document28 pages
VP.Y2Vyb3Mub3Jn VP..SL Documents - SL FY10 Industry Day Briefings - SL PEO IWS CEROS Overview September 2010 Final
Naveen Madabhushi
No ratings yet
Solution JUNEJULY 2018
Document15 pages
Solution JUNEJULY 2018
Yasha Dhigu
No ratings yet
Services and Components of Operating System Services and Components of Operating System System Calls Implementation
Document16 pages
Services and Components of Operating System Services and Components of Operating System System Calls Implementation
53Vaibhav Mohod
No ratings yet
Operating-System USK Genap 2020 2021
Document54 pages
Operating-System USK Genap 2020 2021
Muhammad rudy Hidayat
No ratings yet
Sacramento State Level 1 Systems Access Review Template
Document4 pages
Sacramento State Level 1 Systems Access Review Template
Maxedus Dota
No ratings yet
How to Prepare for the IT Systems Specialist Exam
Document19 pages
How to Prepare for the IT Systems Specialist Exam
Leena Elrayah
No ratings yet
Chap8-System Management
Document6 pages
Chap8-System Management
SHU HAN WONG
No ratings yet
Database Administration Mar'17
Document20 pages
Database Administration Mar'17
cici emilia
No ratings yet
Lecture 9
Document45 pages
Lecture 9
valmirshala1989
No ratings yet
Domain 8 Software Development Security
Document19 pages
Domain 8 Software Development Security
srivatsan_ece
No ratings yet
Company Name Test Plan
Document11 pages
Company Name Test Plan
Amit Rathi
No ratings yet
The Osi Model and Security Measures at Each Level
Document5 pages
The Osi Model and Security Measures at Each Level
Quick Talk
No ratings yet
Generic Hardening Checklist - Queen's University - SCOP
Document4 pages
Generic Hardening Checklist - Queen's University - SCOP
Karen Montalvo Ramos
No ratings yet
Ten Steps To Troubleshooting SAN NAS Performance Problems
Document3 pages
Ten Steps To Troubleshooting SAN NAS Performance Problems
Raj
No ratings yet
Databases Can Be Proactively or Reactively Monitored
Document2 pages
Databases Can Be Proactively or Reactively Monitored
Elie El Rif
No ratings yet
Sample Report
Document11 pages
Sample Report
qzombexzombe114
No ratings yet
Information Logging Standard Policy
Document4 pages
Information Logging Standard Policy
NZ
No ratings yet
EMC2
Document42 pages
EMC2
Ankur Singh
100% (2)
Cnote Audit
Document5 pages
Cnote Audit
Satu Dua Tiga
No ratings yet
CompatibleXRCUserGuide RD70117
Document54 pages
CompatibleXRCUserGuide RD70117
binaybhusann
No ratings yet
ConfigurationGuideforHPOpenVMSHostAtt RD6535
Document50 pages
ConfigurationGuideforHPOpenVMSHostAtt RD6535
binaybhusann
No ratings yet
Cybercrime Due ... : Legal, Regulations, Compliance and Investigations
Document1 page
Cybercrime Due ... : Legal, Regulations, Compliance and Investigations
binaybhusann
No ratings yet
InformationSecurity PDF
Document1 page
InformationSecurity PDF
binaybhusann
No ratings yet
Hitachi Virtual Storage Platform: Documentation Roadmap
Document16 pages
Hitachi Virtual Storage Platform: Documentation Roadmap
binaybhusann
No ratings yet
Curriculum Vitae of Gayle Lewis: IT Manager
Document9 pages
Curriculum Vitae of Gayle Lewis: IT Manager
binaybhusann
No ratings yet
BCPand DR
Document1 page
BCPand DR
binaybhusann
No ratings yet
Architecting On AWS
Document2 pages
Architecting On AWS
binaybhusann
No ratings yet
Contact Center Positional KPIs Under 40 Characters
Document2 pages
Contact Center Positional KPIs Under 40 Characters
binaybhusann
No ratings yet
VSP Powercli 60 Usg
Document98 pages
VSP Powercli 60 Usg
binaybhusann
No ratings yet
VMAX&DMX Difference
Document8 pages
VMAX&DMX Difference
binaybhusann
No ratings yet