Best IT Blog

Simple – Approach to Starting an IT Security Project

Posted in Projects (400) by Guest on the April 30th, 2013

Project Task Activity

  1. Perform Project Kick-Off
  2. Document Project Organization and 

Success Factors

  1. Finalize Project Team Members
  2. Prepare For Kick-Off Meeting
  3. Arrange For Project Logistics
  4. Setup Project Electronic Filing System
  5. Conduct Kick-Off Meeting
  6. Initiate Project RFCs if needed
  7. Review/Familiarize With Standards
  8. Review Architecture Standards
  9. Review Batch Requirements
  10. Review Release Services Standards
  11. Review Change Services Standards
  12. Review Enterprise Architecture 


  1. Review Data Management Standards
  2. Review Security Standards
  3. Develop Customer Requirements
  4. Conduct Customer Requirements Meeting
  5. Analyze Current Business Processes
  6. Document Technical Requirements 

Task Activity

  1. Document Business Requirements
  2. Prioritize Requirements
  3. Obtain User Sign-Off On 


  1. Conduct Infrastructure Analysis
  2. Review Current Infrastructure
  3. Identify Target Areas For Improvement
  4. Research Alternative Solutions
  5. Identify Potential Vendors
  6. Gather Information From Vendors
  7. Evaluate Information From Vendors
  8. Select Solutions For Further Evaluation
  9. Prepare For Solutions Review Meeting
  10. Conduct Solution Review Meeting
  11. Conduct Solution Demos (If needed)
  12. Prepare For Solution Demos
  13. Conduct Solution Demos
  14. Conduct Solution Review Meeting 


  1. Manage Vendor Relations
  2. Maintain Dialog With Vendors
  3. Facilitate Q&A Between Project Team 


  1. Manage Vendor Expectations 

Task Activity

  1. Obtain Corporate Architecture Design Standards 


  1. Prepare Approval Documentation
  2. Obtain Approval From Architecture Office
  3. Obtain Waiver From AO Standards (if needed)
  4. Re-Propose Solution (if waiver request declined
  5. Model Potential Solutions In Test Lab
  6. Arrange For “Demo” Use Of Solutions
  7. Implement Solution In Test Lab
  8. Develop Testing Strategy
  9. Conduct Evaluation Testing
  10. Document Results Of Solution Modeling 

Task Activity

  1. Conduct Discovery Phase Gate Exit
  2. Develop Cost Estimate
  3. Conduct Discovery PM Review
  4. Update Project Files
  5. Asses Readiness For Design 

Phase 1

  1. Obtain Approvals To Proceed To
    1. Design Phase


Comments Off on Simple – Approach to Starting an IT Security Project

Sample Grouped – Patch Management Products

Posted in Compliances (1300),O S (375),Security (1500) by Guest on the April 30th, 2013


Microsoft SMS & WSUS Citadel
Bigfix Altiris
SecureInfo PatchLink
Bladelogic Symantec
Marimba Ecora
Secure Elem ConfigureSoft ECM
St Bernard Vigilent
Shavik HFNetChk BMC Marimba
McAfee (Citadel) Hercules Asset Insight
Night Watchman EEYE
Apple (Darwin) Remote Desktop & Workgroup Manager ZNQ3 Softpatch


Comments Off on Sample Grouped – Patch Management Products

Sample Grouped – IPS / Network Behavior Monitoring Products

Posted in Compliances (1300),Security (1500) by Guest on the April 30th, 2013


Mirage Networks Maze Networks
Lancope Stealthwatch Q1 Labs
Cisco MARS PacketFence (OpenSource)
Arbor Networks PeakFlow NetFort Technologies
GraniteEdge Networks SourceFire
NETINFO Okena (Stormwatch)
EEYE TippingPoint


Comments Off on Sample Grouped – IPS / Network Behavior Monitoring Products

Sample – User Roles Server Assessment Considerations – Part 2

Posted in Compliances (1300),Information Rights Management (100),Security (1500) by Guest on the April 30th, 2013

Partial list of questions to consider. 

Business issue



0 time spent with / Managing Authentication today Dedicate resource time on solution to leverage tool and reduce AD administration time Agreement; reduce workload & leverage automation
No Automation Create further policies  
Approval process needed for Groups and users (owner) Use built in approvals for critical groups, user changes, etc that are all built in today Documentation
Reporting data Update to full version of SQL Need process
Upgrade   Need to find time
Approvals Workflow of critical changes to the AD environment and who is responsible for each change. Ease audit requirements, best practices for AD administration / delegation and segregation of duties
Attestation Object lifecycle and ownership removal from IT to the business owner Removal of stale objects from the directory
Group Families (dynamic) Ease security delegation and administration of groups to the end user of the groups IT as a service; remove IT responsibility of ownership
Unmanaged account domains Read from other unmanaged / non migrated domains today and manage until migration project completed. Leverage infrastructure in place today and reduce overall admin time Allows group management across domains for security / delegation purposes
Manage Computer Services Ability to delegate computer management to OU / Site Admins. Reduce workload Another delegation reducing workload, Enforcement of policies
Publish Groups for self-subscription Reduce administration workload Self service requests
Notifications Quicker administration / reduce workload Speed process  / automation for change requests on activities


Comments Off on Sample – User Roles Server Assessment Considerations – Part 2

Sample – SAP CRM “Managed Service Provider” Considerations

Posted in Business (600),Compliances (1300),Security (1500) by Guest on the April 30th, 2013

Business Issues / Business Drivers

  • Integrating SAP CRM with Client’s existing suite of products
  • Facilitate growth in high growth geographies and markets
  • Innovation – Bringing new and exciting products in an aggressive timeline, to meet customers’ increasing expectations
  • Cost Competition – Slow economic conditions forced auto manufacturers to cut costs across the supply chain and set targets for cost reduction with suppliers
  • Pressure of declining margins – Due to pricing squeeze from customers, need to find ways to sustain operating profit
  • Major challenges were faced during the requirements gathering, where different Business Units had different requirements revolving around the same functionality. The challenge was to cater to every unit’s requirement for the same functionality within the scope defined.
  • Cost effective and efficient deployment of Global delivery model in both technical and functional areas with 24×7 support in all time zones
  • Support globalization
    • Support integration activities
    • Provide opportunities for cost reduction
    • Multiple levels of globally spread dynamic Supply Chains
    • Highly regional Demand Planning Process.
    • Project delivery in Multi Vendor Organizational Structure.
    • Prepare activities
      • Scale down system complexity, thereby reducing total cost of ownership 

Problematic Business Areas

  • Disparate systems to support similar functions across different plants
  • Top management unable to have good visibility into the metrics for different plants
  • Discrepancies within business processes, especially those related to purchasing
  • Unable to leverage on high volume of purchasing from its vendors towards cost benefits, due to decentralized purchasing
  • Need to consolidate shared functions across plants and reduce costs related to management of these functions
  • SAP Implementation project, to support business changes, was continuously in firefighting mode – Inadequate focus on testing and post Go-Live scenarios 

Tactical Global Sourcing

  • Cost reduction the primary driver
  • “Discretionary” decision making on off shoring
  • Ad-hoc requirements based staffing model
  • Joint program and change management office
  • Collaborative project and budget planning
  • SLA based incentive system, not necessarily tied to business outcomes
  • Improved Business-IT Alignment
  • Strategic partnership with few selected vendors
  • Balanced scorecard and program level metrics for measuring business value
  • Managing outsourced projects
  • Outcome based relationship
  • SLA pilots in key business areas
  • Training vendor resources on domain and company managers on global delivery processes
  • “Staff augmentation” approach for offshore resources
  • Organization change initiation for adjusting to Global Delivery
  • SLA driven governance tied to program and business outcomes
  • Strategic imperative at top management level to access larger global resource pools, not just reduce costs


Comments Off on Sample – SAP CRM “Managed Service Provider” Considerations

Sample Visio – PSTN DSL

Posted in Networking (340),Security (1500) by Guest on the April 29th, 2013
Comments Off on Sample Visio – PSTN DSL

Sample Word – ISP Data Security Guidelines

Comments Off on Sample Word – ISP Data Security Guidelines

IT Business Risk Impact Considerations

Posted in Networking (340),Security (1500) by Guest on the April 29th, 2013

Risk is based on a systematic examination of assets, threats, and vulnerabilities that provides the foundation for the development of an appropriate IT Security Program.  Adequate risk analysis is the key to determining the level of protection required for all computing assets such as networks, applications, systems, facilities and other enterprise assets.  A risk analysis will:

  • Identify dependence on existing IT assets.
  • Identify vulnerabilities of existing IT assets.
  • Assess the probabilities of threats occurring to existing IT assets.
  • Determine the impact of losses if they do occur.
  • Identify the value of safeguards or countermeasures designed to reduce the threats and vulnerabilities to an acceptable level. 

Identify dependence on existing IT Assets. Identify vulnerabilities of existing IT  Assets. Assess the probabilities of threats occurring to existing IT assets. Determine the impact of losses if they do occur. Identify the value of safeguards or countermeasures designed to reduce the threats and vulnerabilities to an acceptable level. 

The goal of the risk analysis process is to determine an acceptable level of risk that considers security, the security of shared resources business strategy and the overall cost of countermeasures.  Conducting an adequate risk analysis will aid efforts to better apply available resources to their security program. 

To conduct a risk analysis, Organizations shall complete the following steps: 

A.   Information Asset Review

An information asset review shall be performed to identify, at a minimum, those information assets that are critical to ongoing operations or which contain confidential or critical data.  The criteria for this inventory assessment shall be documented.  

B.   Business Impact Analysis

A business impact analysis shall be performed for all information assets identified in the Information Asset Review.  The purpose of the business impact analysis is to document the potential impact of loss of the assets.  Consideration shall be given to operational, financial, and legal impacts. 

C.   Vulnerability Analysis

A vulnerability analysis is used to identify vulnerabilities associated with information assets.  The vulnerability analysis shall identify specific vulnerabilities related to information assets identified in the information asset review, as well as where those vulnerabilities exist. 

D.   Threat Analysis

A threat analysis shall be conducted to identify threats that could result in the intentional or accidental destruction, modification or release of data, computer, or telecommunication resources.

E.   Risk Analysis

A risk analysis is a collective review of the vulnerabilities and threats to all identified assets to determine the likelihood and impact.  This analysis forms the foundation for security program planning. 

While no specific format is required for the risk analysis, instructions and suggested formats, as well as links to risk analysis resources, can be found in the Information Technology Security Guidelines.  Organizations may also consider leveraging disaster recovery reviews, specifically relating to critical assets and business impact, when completing IT security risk assessments.


Comments Off on IT Business Risk Impact Considerations

SPLAT – Nokia Appliances IP / IPSO Security Configuration Standards


This document will provide standards for the configuration of Nokia IP Security Appliances.  These standards will provide continuity across the enterprise for all Nokia Appliances. 


Nokia IP Security Appliances are purpose built security devices, which are deployed at strategic locations throughout the Corporate Security to run Check Point Firewall-1.  These appliances run a hardened operating system called IPSO which is a derivative of FreeBSD Unix.  It is important to note that some configurations will be device dependant due differences in the Nokia models. 

InterFace Configuration

Each interface that configured will:

  • Have Link Speed and Duplex Hardcoded
  • Have Autoadvertise and Flow Control disabled

Each interface that not configured will:

  • Be disabled in the physical and logical configurations 


Static ARP configurations will be network design dependant. 

Transparent Mode/Link Aggregation/FWVPN Tunnels

  • Not Configured 

System Configuration

  • Not Configured 

Disk Mirroring

Device Dependant:  Disk based systems with two hard drives will have disk mirroring configured. 

Optional Disk

Device Dependant:  Flash based systems which are purchased with an hard drive will be configured in Hybrid mode with Optional Disk parameter. 

System Failure Notification/Mail Relay

  • Not Configured 


  • All Corporate Security devices are set to GMT 

Host Address

The Host Address will be set to the Management interface of the firewall. 

System Logging

Network Logging:

  • Set to On
  • Primary Log Server: XXX.XXX.XXX.XXX
  • Threshhold 0% 

Local Logging

  • Set to Off
  • Flush Frequency: 4 Hours 

System Configuration Audit Logs

  • Logging of Transient and Permanent Changes 

System Voyager Audit Logs

  • Enabled 

Core Dump Server

  • Not Configured 


The Hostname is configured as part of the initial setup and should not be changed. 

Configuration Sets

Left to default configuration of “initial” 

Job Scheduler

A Cron called Delete_Old_Backups is set to run on the 6th day of each week at 23:00. 


A backup the default directories, /config and /var/cron is set to run on the 6th day of each week at 23:15 


  • Only one IPSO image will be kept on the system  


  • Only the Check Point and CPInfo packages will be Enabled 


Authentication of users will be facilitated by the following radius servers



SNMP v1/v2/v3

Read Only Community String: U4Ria$a

  • Trap Receiver: XXX.XXX.XXX.XXX 

Trap Community String: $Shadow!r3m0N


  • Enable linkUp/linkDown traps
  • Enable systemTrapConfigurationChange traps
  • Enable systemTrapConfigurationFileChange traps
  • Enable systemTrapConfigurationSaveChange traps
  • Enable systemTrapNoDiskSpace traps
  • Enable systemTrapDiskFailure traps
  • Enable vrrpTrapNewMaster traps
  • Enable systemFanFailure traps
  • Enable systemOverTemperature traps
  • Enable Authorization traps 

High availability


VRRP will be configured using Legacy Mode.

  • Accept Connections to VRRP IPs: Enabled
  • Monitor Firewall State: Enabled
  • Each Clustered Interface will be set as a Monitored Circuit
  • Priority: 100 & 95 on the Primary and Secondary respectively
  • Hello Interval 1
  • VMAC Mode: VRRP
  • Preempt Mode: Enabled
  • Each Cluster Interface will be monitored by all other Cluster Interfaces
  • Priority Delta 10
  • Auto-deactivation: Disabled
  • Authentication: Simple
  • Password:  Firewall Name.Interface Name 

Security And access


The Following Accounts will be created on each Firewall

  • Fwbackup (Used to pull System Backup files)
  • User1
  • User2
  • User3
  • User4 – 8

Network Access and Services

  • The only Network Access that is enabled is “Allow Admin Network Login”
  • All Services are Disabled 

Voyager Web Access

  • Voyager Web Access is set to;
    • “Require 128 Bit Encryption or Higher”
  • Encryption use a Self-Signed 1024 Bit X509 Certificate 


  • SSH is enabled to allow SSH v2 only


  • All Routing configuration will be network design dependant. 

Traffic Management

  • Not Configured 

Router Services

  • Router Services will be network design dependant 


NTP Masters are:

  • Xxx.Xxx.Xxx.Xxx
  • Xxx.Xxx.Xxx.Xxx


Comments Off on SPLAT – Nokia Appliances IP / IPSO Security Configuration Standards

Enterprise IT Incident Response – Network Forensic Considerations

Network Forensics allows your organization to capture valuable, actionable intelligence to help secure your network and help ensure its availability. By capturing raw network data and using advanced forensics analysis, your IT and security staff can effectively identify how your business assets are affected by network exploits, internal data theft, and security or HR policy violations.  Network Forensics helps your organization mitigate risk, comply with regulations, and reduce analysis and investigation cost through its patented technology that allows you to visualize network activity, uncover anomalous traffic and investigate security breaches. 

Network Forensics effectively answers the question – often recurring in the aftermath of a security incident – What happened?. It tackles the difficult task of capturing, analyzing and visualizing intelligence regarding anomalous network activity, and aiding to ensure organization-wide and regulatory compliance.  Network Forensics is a passive network monitoring solution that integrates both security and network management disciplines. 

Enterprise Infrastructure Management strategy, is a network-based technology which captures network traffic in near real-time, proactively recording this into a knowledge base that can be queried. It visualizes network activity by creating a dynamic picture of communication flows to swiftly expose break-in attempts, vulnerabilities, abnormal usage, policy violations and misuse, anomalies, and more before, during and after an incident.  Operating like a surveillance camera, Network Forensics can play back events from thousands of communications to validate system threats. It can identify the offender or rings of perpetrators, and help you mitigate the recurrence of the same security incident. Its advanced forensics, content and pattern analysis; reporting; and visualization tools can create a complete view of how network communications are affecting the security and availability of network resources. This enables security professionals to rapidly and efficiently build crucial, actionable intelligence about network usage, thereby reducing investigation cost, while improving operational efficiencies in virtually all phases of security planning, deployment and recovery, as well as creating valuable information that directly contributes towards demonstrable compliance to internal policies and government regulations. 


  • Network Forensics delivers a unique value to an organization’s security infrastructure by providing a dynamic and comprehensive picture of network communications. As a result, network security professionals can build crucial intelligence about network asset utilization, validate existing architecture and security policies, comply with an auditor’s requirements and enable forensics network analysis. 
  • Network Forensics provides a common ground for the capture, analysis and visualization of enterprise security and network data to support an organization’s effort to protect critical intellectual property, content control and privacy. 
  • Network Forensics capability to import data from third-party firewalls, intrusion detection systems, and other blocking or alerting devices it can support proactive prevention efforts, and rapidly perform further drill-down, targeted investigations. 

Key Feature considerations:

Network Traffic Recording, Analysis and Visualization

  • Visualizes network activity
  • Uncovers anomalous traffic
  • Real-time taxonomy and recording of packet headers and full content sessions
  • Dynamic graphical representations can rapidly identify abnormal network behaviors
  • Build crucial intelligence about network usage
  • Provide the means for anomaly detection through advanced visualization rendering
  • Offers incident response teams a graphical representation of anomalous activities, providing visibility into network communications before, during and after a suspicious event
  • Records network traffic and analyses for later playback and scrutiny
  • Displays a holistic view of security events and animates sequences of attacks
  • Shows logical network connections and their interdependencies 

Communications Knowledge Base

  • Creates and stores valuable information that directly contributes towards demonstrable compliance 

Network Forensics Investigation and Reporting

  • Perform network forensic investigations to identify incidents and preclude reoccurrence
  • Solves specific problem areas with general audits and targeted investigations
  • Enables security due diligence and provides effective answers to common, but difficult-to-answer questions, including:
  • Who is on your network?
  • When are they there?
  • What do they do?
  • Where are the breaches?
  • How is your network being exploited?
  • Supplements true security management with a powerful investigative tool
  • Investigates security breaches
  • Exposes abnormal usage 

Pattern and Content Analysis

  • Distinguish between diversionary and truly malicious incidents
  • Spot potential threats
  • Visualizes behavioral patterns
  • Analyzes emails, keywords, binary files, or other references to reveal improper data exchange or leakage 

Architecture Flexibility considerations

  • Enhances current security perimeter solutions (such as firewall and intrusion detection systems) by providing additional insight into network data that caused a system alert
  • Correlates log data from various systems over the period of time surrounding a suspicious event to facilitate more holistic investigations

What business value does Network Forensics provide?

  • Reduce analysis time
  • Non-invasive investigation
  • Portable, convenient solution (optional)
  • More investigations done with the same number of investigators
  • Faster data capture and information analysis and visualization than traditional means
  • Quickly identifies the perpetrator, and finds when and where the incident occurred
  • Increase response time by reconstructing network events
  • Solid ROI – time and cost savings in planning, deploying and maintaining security
  • Enable security due diligence
  • Quantify security risk
  • Utilize existing investments
  • Support audit or compliance requirements
  • Increase effectiveness and efficiency of IT and security staff
  • Faster identification of network security issues that impact your business
  • Improve enterprise security awareness to recurring exploits of identified security flaws
  • Better use of security resources leaving staff to focus on business-critical projects


Comments Off on Enterprise IT Incident Response – Network Forensic Considerations

Java Enviroment on your own Telephone

Posted in Mindmap (100) by Guest on the April 26th, 2013

Futuremark declared 3DMarkMobile06, any artwork overall performance benchmarking software regarding businesses creating 3 dimensional mobile-device equipment. The merchandise could also be used simply by buyers.

3DMarkMobile06 is actually actuallt the sole merchandise created particularly in order to standard following era cell equipment.

Using the discharge of 3DMarkMobile06, cellular components designers, producers and also testers may have the very first standard meant to supply precise, steady efficiency proportions associated with inlayed images options. The actual edition, 3DMarkMobile06 Developers’ Model, is made for experience improvement Three dimensional equipment. It helps website, layout analysis, as well as cell components mass media critiques associated with next-generation products.

Using this screening computer software, that you simply put in in your cellular phone, you can attempt the cell phones Coffee performance. You can find Three variations accessible. The very first customer edition is really a free of charge item, and also the sophisticated model along with complete screening characteristics can be obtained with regard to $3.

The main objective party for that software programs are propably system suppliers, however like a customer there is no need to become a technical nut or even product fan to put in this in your cellular phone. Along with SPMarkJava06 you may get the particular use of details in regards to the Coffee setup current the telephone.

“3DMarkMobile06 characteristics potential workloads as well as video game encoding systems which customers may operate within next-generation cellular Three dimensional equipment,Inch stated Tero Sarkkinen, Professional V . p . associated with Marketing and sales regarding Futuremark. “It is essential for many businesses within the worth sequence to gauge exactly how this kind of components has the capacity to help brand new content material as well as solutions. High-detail video game articles, for instance, creates workloads that will make considerable calls for on cell Three dimensional equipment. Firms that make use of our own equipment within their website routine can provide more effective components within reach of the greatest test candidates, the buyer.Inches

I believe that the application had been an easy task to put in and possesses a few good characteristics in which normal customers may use. There is no need to become technology nut to put in that.

Comments Off on Java Enviroment on your own Telephone

Cisco PIX – Logging Command Reference Shortcuts

Posted in Networking (340),Security (1500) by Guest on the April 26th, 2013


Logging Message Filtering

No logging message buffer-number:
Do not manages with “number x”


Logging Message Filtering


Configuration mode
change messages








Privilege Level Change Message

611103 – 611104

User Logout Messages


HTTP Path Messages

Pix Logging – Syntax:

  • loggin on
  • enable logging 

Cisco Pix Logging Levels


0 – Emergencies


System Un-usable

Syslog Definition



1 – Alerts Immediate action needed LOG_ALERT
2 – Critical Critical Conditions LOG_CRIT
3 – Errors Error Conditions LOG_ERR
4 – Warnings Warning Conditions LOG_WARNING
5 – Notification Normal but Significant Conditions LOG_NOTICE
6 – Informational Informational Messages Only LOG_INFO
7 – Debugging Debugging Messages LOG_DEBUG


Comments Off on Cisco PIX – Logging Command Reference Shortcuts

Sample Mindmap – All of our Mindmap files

Posted in Mindmap (100) by Guest on the April 26th, 2013

We found a strange problem downloading mindmap files.

So we zipped them and put them here to download at your convenience.

All Mindmap files


Comments Off on Sample Mindmap – All of our Mindmap files

Facial Recognition Device Vendor Considerations


The Facial Recognition Reader standard considerations:

  • Identify presence detection,
  • Integrate with the standard Enterprise Authentication solutions that:
    • Allow for fast access
    • Allow for automatic logoff upon lack of presence detection.
    • Take advantage of a centralized architecture, 

The recommended vendor standard facial recognition readers is: 

  • Sensible Vision; Sensible Vision works stand alone. Readers will be purchased via Sensible Vision.
  • Facial recognition software can be integrated with the Sig-Tec solution, and work with several cameras on the market.


Comments Off on Facial Recognition Device Vendor Considerations

Passive Proximity Badge Reader and Sonar Device Vendor Considerations


The Passive Proximity Badge Reader and Sonar Device vendor consideration will:

  • Integrate with the standard existing / future Enterprise SSO solutions,
    • Allow for fast access,
    • Allow for password save (configurable time),
    • Allow for tap out to lock or logoff the system,
  • Work with several of the building access cards already being used in the market,
  • Take advantage of a centralized architecture, 


The vendor considerations for passive proximity badge readers and sonar devices are detailed below. 

The following types of cards, card readers and sonar devices are recommended:

  • BDG-1326 HID ProxCard II
  • BDG-1386 HID ISOProx II
  • BDG-1336 HID DuoProx II
  • BDG-1346 HID ProxKey II
  • BDG-1391 HID MicroProx II 


  • RDR-6082AKU pcProx HID USB
  • RDR-6282AKU pcProx CASI USB
  • RDR-6382AKU pcProx Indala 26 bit USB
  • RDR-6372AKU-xxxxx pcProx Indala other formats USB
  • RDR-6472AKU pcProx Pyramid USB
  • RDR-6782AKU pcProx Kantech ioProx USB
  • RDR-6982AKU pcProx AWID USB
  • RDR-6E82AKU pcProx EM USB
  • RDR-6K82AKU pcProx Keri 26 bit USB
  • RDR-6T82AKU pcProx Tiris USB
  • RDR-7082AKU AIR ID Enroll iClass ID# USB
  • RDR-7582AKU AIR ID Enroll Mifare/15693 CSN USB 

Sonar Devices:

  • BSE-PCPRX-SNR pcProx-Sonar presence detector


Comments Off on Passive Proximity Badge Reader and Sonar Device Vendor Considerations

Sample – Powerpoint Driving The IT Processes

Posted in Business (600),Sample - IT Spreadsheets - PowerPoints (251) by Guest on the April 25th, 2013
Comments Off on Sample – Powerpoint Driving The IT Processes

Sample ITIL – Security’s Methodology Framework

1)    Project Initiation – The project is setup in this phases.  A project manager (PM) is assigned, the project scope is clearly identified, the project organization is established, and an initial project plan is drafted. 

2)    Discover – This is the most critical of all phases.  During this phase, the business and technical requirements are identified. Because these requirements guide the other phases, care must be taken to identify and understand the impact of each. Additionally points of pain or concern are documented for increased scrutiny in the following phases. 

3)    Strategy – Based on the requirements gathered in the discovery phase, ‘Consultant’ begins the process of establishing the desired security state. 

4)    Penetration and Vulnerability Assessment – In this phase, a external security assessment and review of the technology and architecture with business and technical requirements is performed.  Host and network configuration detail is captured; risks and system dependencies are also documented.  All possible impacts to the customer’s environment are reviewed and documented for analysis. 

5)    Data Assimilation and Analysis – Technical brain storming session occurs with various subject matter experts. Security experts, using ‘Consultant’s methodology and a combination of in-house and industry tools, create a set of best business practice recommendation’s based on gathered data and facilitated discussions. 

6)    Document and Recommend – A formal document outlining the current state of the client’s environment is created. All detailed configuration information, which was gathered during this process, is included in this document with identified areas of concern and appropriate recommendations for remediation. 

7)    Baseline Presentation – This phase is a formal presentation of the current state of security. The delta to the desired state is defined and the remediation plan is presented.  

8)    Remediation – The corrective measures are implemented in this phase. 

9)    Management – This phase is the ongoing maintenance of the corporate assessments. It includes periodic assessments, server management, network device management as well as security monitoring of mission critical devices and networks.


Comments Off on Sample ITIL – Security’s Methodology Framework

Sample – Partial Personal Firewall Standard

Posted in Compliances (1300),Firewalls (75),Networking (340) by Guest on the April 25th, 2013

The IT Client Computing will install the IT approved antivirus software on all workstations, laptop computers and mobile computing devices that access the Corporate network or confidential data, if antivirus software is available. The antivirus software programs will:

  • All Desktop’s and Laptop are required to have a Malware / Spyware application installed / maintained by corporate such as (McAfee, Symantec, Trend, AVG etc…)
  • General user access on the local host should be restricted to non administrative accounts to prevent configuration changes and un-authorized software install / un-installs
  • Require that virus updates and signatures be updated at least once each day;
  • Centrally record malware signature and program updates to record when updates are installed;
  • Verify that antivirus logs are being generated and that logs are centrally captured to identify potential threats;
  • Confirm that the antivirus program performs a comprehensive scan of removable media, when installed; and
  • If IT approved antivirus software is not available, the system owner is responsible to deploy a mitigating control and obtain approval from the Manager, Security Architecture & Security Assessment Center. 

Malware protection will include the following systems administration controls:

  • All remote or third party systems will be checked for effective malware protection prior to allowing access to Corporate systems, network, or confidential data.
  • The examination of electronic mail attachments, data, and software downloads for malicious code before use on corporate systems.
  • Procedures for users of systems and data to report known malicious software and requirements to prohibit users from disabling malware protection systems. 

Provide user training and awareness to include:

  • Identification of malicious software.
  • Reporting of malicious software.
  • Effective use antivirus software.
  • Procedures to avoid downloading or receiving malicious software. 
  • Any workstation or laptop computer (to include third party systems) connecting to the Corporate network must have a personal firewall implemented in accordance with the Malware and End Point Protection Standard.
  • Laptop computer personal firewalls must be configured to deny all inbound connections with only the exception of authorized encrypted network protocols and only for use for authorized remote support purposes.
  • Personal firewalls must be configured to restrict inbound and outbound traffic at a minimum of medium protection level.
  • Personal firewalls must be configured to generate and save audit logs.

No un-authorized applications are to be installed on the dekstop / laptops for any reason unless explicit permission is granted by the Information Security team.


Comments Off on Sample – Partial Personal Firewall Standard

What Is ITIL All About?

Posted in Compliances (1300),ITIL - Change Management - Help Desk (95) by Guest on the April 24th, 2013
  • Aligning IT services with business requirements 
  • A set of best practices, not a methodology
  • Providing guidance, not a step-by-step, how-to manual; the implementation of ITIL processes will vary from organization to organization 
  • Providing optimal service provision at a justifiable cost
  • A non-proprietary, vendor-neutral, technology-agnostic set of best practices.


Comments Off on What Is ITIL All About?

Sample Word – Considerations – Alternatives for Managed Print Services

Posted in Networking (340),Security (1500) by Guest on the April 24th, 2013
Comments Off on Sample Word – Considerations – Alternatives for Managed Print Services

Sample Visio – TACACs Design Overview

Posted in Networking (340),Security (1500) by Guest on the April 24th, 2013
Comments Off on Sample Visio – TACACs Design Overview

Sample Word – Network Oversubscription Considerations

Posted in Networking (340),Security (1500) by Guest on the April 23rd, 2013
Comments Off on Sample Word – Network Oversubscription Considerations

Sample – Device Configuration Backup Network Management Standard

Posted in Networking (340),Security (1500) by Guest on the April 23rd, 2013


Device configuration backup standard means that the running configuration must be saved into the router start-up configuration file first and then it must also be saved to an offline location a regional NMIS Archive server. To maintain the versions of the configuration files on the offline server first the existing configuration must be saved by running the back command on the existing file before over-writing it with the new version. The only protocols supported for saving the configuration file to the offline location are FTP or SCP. TFTP cannot be used to save the file to the archive location due security issues. Although a configuration file may be restored to the device using TFTP. There is a local ID created on the NMIS archive server called “cfgftp” that could be used to FTP or SCP files to the server. Network Management Team will run periodic audits to ensure that the running vs. start-up vs. achieved configurations match. The location on the NMS archive server where these configurations are archived is /tftpboot/. The following network standard template should be used to save the configuration file using the FTP protocol.

Standard Template

ip ftp username cfgftp
ip ftp password [set password]

ip ftp source-interface [interface] <- Same interface used for the Tacacs source interface.


Comments Off on Sample – Device Configuration Backup Network Management Standard

Sample Excel – Cisco – debug ip http transaction cheat sheet

Comments Off on Sample Excel – Cisco – debug ip http transaction cheat sheet

A Road Map for Healthcare and Clinical Care Alignment

Posted in Compliances (1300),Security (1500) by Guest on the April 21st, 2013

Corporate advocates for the kind of systemic change that will provide all Americans with affordable health care. We and our market-based organizations communicate with legislators at local, state and federal levels on important health care issues. 

Healthcare faces significant challenges with regulatory impacts, consolidations and IT Organizations workforce shifts, including the potential for staff reductions in some areas with hiring and training in others, can be disruptive to both function and morale. Understanding and respect for the culture and priorities must be taken into account along with the needs of the system. The challenges of managing the changes implied by consolidation must be weighed against the potential benefits and the ability to execute. 

Hospital leaders can facilitate improved hospital physician alignment by working to:

  • Ensure the visibility/accessibility of senior management, including the CEO
  • Create a positive organizational culture
  • Focus on communication, openness, trust, and respect
  • Create opportunities for physician leadership development
  • Allow for substantive physician involvement in decision making
  • Provide integrated information systems
  • Insist on high-quality and safe patient care
  • Support physician practice growth
  • Support infrastructure improvements that increase efficiency/accessibility of care
  • Explore multiple strategies for alignment of economic interests 

Despite the many differences and conflicts between clinicians and hospitals, coming up with a common wish list isn’t difficult. Both hospitals and clinicians want:

  • A continuum of care
  • Lower malpractice insurance premiums
  • Financial rewards
  • Integrated technology
  • Quality and safety
  • Recognition
  • Cost containment
  • Consistent regulation
  • Educated consumers


Comments Off on A Road Map for Healthcare and Clinical Care Alignment
Next Page »