Hot Tip: Defense in Depth

Layering or defense in depth is the key to a good computer security program. But just what do those terms mean and how does an administrator built a deep, layered security system? Here are some tips from ComputerWorld:

• Set up a team: Start with experienced security professionals, perhaps led by a chief security officer, to design a defense-in-depth strategy.
  
• Establish policies: Have well-communicated policies that clearly define acceptable use of corporate computer resources and promote user understanding of threats to information assets.
  
• Train: Ongoing training of those who will be first responders to an incident is essential.
  
• Prevent: Install and maintain strong user authentication, authorization and access control; configuration (patch) management; and regular assessments to identify vulnerabilities.
  
• Detect: Identify threats using up-to-date anti-virus software, properly configured firewalls, intrusion-detection software, activity-log monitoring and intelligence gathering.
  
• React/respond: Activate a corporate incident-response team to isolate and contain incidents and use forensic tools to gather evidence.
  

Back to articles...