Cng 125 – chapter 12 network policies

20
CNG 125 – Network Policies and Procedures Frank Vianzon

Transcript of Cng 125 – chapter 12 network policies

Page 1: Cng 125 – chapter 12   network policies

CNG 125 – Network Policies and Procedures

Frank Vianzon

Page 2: Cng 125 – chapter 12   network policies

Network Design• Conducting a needs assessment • Physical and logical topology • What services?

– DHCP– DNS– Directory Services – File and Print – Database – Web Servers

Page 3: Cng 125 – chapter 12   network policies

Network Documentation • Policy

– Document that describes the overall goals • Regulation

– Requirement published by a government body• PCI DSS -

https://www.pcisecuritystandards.org/security_standards/

– Data at rest – Data in transit

• HIPPA• GLBA – Gramm Leach Bliley Act

Page 4: Cng 125 – chapter 12   network policies

Classification of Data • Category 4:  Highly sensitive corporate and

customer data that if disclosed could put the organization at financial or legal risk. 

• Category 3: Sensitive internal data that if disclosed could negatively affect operations. 

• Category 2:  Internal data that is not meant for public disclosure.

• Category 1:  Data that may be freely disclosed with the public.

Page 5: Cng 125 – chapter 12   network policies

Procedure • Step by Step process outlining how to implement

a specific action

Page 6: Cng 125 – chapter 12   network policies

Network Diagram • Shows the logical and/or physical layout of your

network• Also related is wiring schematic

Page 7: Cng 125 – chapter 12   network policies

Configuration • Identifies specific configuration information for a

device.

Page 8: Cng 125 – chapter 12   network policies

Change / Job Logs• Logbook • Tickets • Change Management

Page 9: Cng 125 – chapter 12   network policies

Baseline • Snapshot of performance statistics of the network

or devices

Page 10: Cng 125 – chapter 12   network policies

Asset Management Facts• Procurement

– Who to buy it from? – Lifecycle

• Deployment • Operations

– AUP • Decommission • Disposal

Page 11: Cng 125 – chapter 12   network policies

Safety Facts • Electrical Safety • Physical Hazards • Employee and Visitor Safety • Hazardous Materials

Page 12: Cng 125 – chapter 12   network policies

12.2 Fire Safety Facts • Fire Safety

– Portable – Fixed

• Deluge (dry)• Wet Pipe

Page 13: Cng 125 – chapter 12   network policies

12.2.5 ESD • Electrostatic

Page 14: Cng 125 – chapter 12   network policies

12.2.7 Emergency Facts• Lighting • Egress• Fire Safety

Page 15: Cng 125 – chapter 12   network policies

12.3.2 Risk Management• Asset• Threat• Vulnerability• Threat Agent • Threat Vector • Threat Probability • Attack• Countermeasure • Exposure • Loss• Risk Residual Risk

• Compensating Controls • Breach!

Page 16: Cng 125 – chapter 12   network policies

Risk Management • Asset Identification • Threat Identification • Risk Assessment

– Where is the device located? • Risk Response

Page 17: Cng 125 – chapter 12   network policies

12.3.4 Business Continuity • Business Continuity Plan• Business Impact Analysis • Disaster Recovery Plan

Page 18: Cng 125 – chapter 12   network policies

12.4.2 Security Policy• Acceptable Use • Authorized Access • Change and Configuration Management • Code of Ethics • Human Resource Policies • Password • Privacy• User Education and Awareness Training • User Management

Page 19: Cng 125 – chapter 12   network policies

12.4.4 Third Party• Onboarding • Ongoing Operations • Off-Boarding

Page 20: Cng 125 – chapter 12   network policies

12.4.6 Security Assessment