[ index ]

8 Rules of Security

From Dana Epp's Blog...
  1. Rule of Least Privilege – Only give enough access to a subject as required to do their job.
  2. Rule of Change Management – When you make a new change you expose your business to new risk.
  3. Rule of Trust – You must understand the implications of extending trust to anyone or anything within an organization. The rule of least privilege should prevail.
  4. Rule of the Weakest Link – The old analogy still stands… you are only as strong as your weakest link.
  5. Rule of Separation – To effectively secure something, you must mitigate the risks associated with it by removing the threats around it.
  6. Rule of the Three-Fold Process –You must include implementation, monitoring and maintenance to effectively safeguard your resources.
  7. Rule of Preventative Action – Proactively assess the security in your environment.
  8. Rule of Immediate and Proper Response - Long before you are ever breached, you should have an Incidence Response plan put in place.

2004-02-20 23:37:49
FREE CONTENT: The articles published here are available for public use on websites that abide by the current Google AdSense publishing policies with the provision that a visible and unfettered link back to the original article here must be included immediately following the republished material.

©2008 Echo3 Online Services, LLC