CISSPEssentials:MasteringtheCommonBodyofKnowledgeClass10:OperationssecurityLecturerShonHarris,CISSP,MCSEPresident,LogicalSecurityCISSPEssentialsLibrary:www.searchsecurity.com/CISSPessentialsClass10Quiz:www.searchsecurity.com/Class10quizClass10Spotlight:www.searchsecurity.com/Class10spotlightCISSPEssentials:MasteringtheCommonBodyofKnowledgeOperationssecurityobjectivesOperationsresponsibilitiesOperationspersonnelConfigurationmanagementMediaaccessprotectionSystemrecoveryFacsimilesecurityVulnerabilityandpenetrationtestingAttacktypesComputeroperationsOperationsresponsibilities•Systemadministration•Routineactivitiesrequiredtokeepsystemsandnetworksupandrunning•Fixinghardwareandsoftwareissues•Applyingpatchesandhotfixes•Maintainingsecuritymechanisms•Backupsandrecovery•Medialibrary•Configurationmanagement•Controllingandmaintainingremoteaccess•Maintaininginput\outputcontrols•Contingencyplanning•Variancedetection•Incidenthandling•Penetrationtesting•LicensingissuesUnusualorunexplainedoccurrencesDeviationsfromstandardsUnscheduledinitialprogramloadsPersonnelOperatorsinamainframeenvironment•Monitorexecutionofsystem•Controlflowofjobs•Mountinput/outputvolumes•InitialProgramLoad(IPL)•Rename/relabelresources•Reassignports/linesPersonnelcontrols–Administrativecontrols•Separationofduties•Jobrotation•Activitylogging•Mandatoryvacations•Need-to-know•LeastprivilegeThesearethepeoplewiththemostprivilegedaccess!SecurityoperationspersonnelSecurityadministrator•Implementsandmaintainssecuritydevicesandsoftware•Carriesoutsecurityassessments•Createsandmaintainsuserprofiles•Implementsandmaintainsaccesscontrolmechanisms•ConfiguresandmaintainssecuritylabelsinMACenvironments•Bestifthisisadifferentrolethananetworkadministrator•Thesecurityadministratorshouldnotreporttothenetworkadministrator!•Shouldreporttoasecurityofficer•SeparatechainsofcommandshouldexisttoavoidconflictsofinterestSomethreatstocomputeroperationsThreats•Usererrorsandomissions•Internalfraud•Lossof...
