Network Security Checklist

This section is a lengthy one and is intended to provide you with a thorough review of the types of things you should review, assess, and think about when you prepare your infrastructure security project plan. Even though we've created a detailed list, there's always a chance there are additional elements your plan will need. Certainly, there's also a strong likelihood that there are things in these checklists that you don't have and don't need. That's okay. The point is to try to help you think through all the details you possibly can about your network infrastructure, to ensure that you are thorough and don't leave any stone unturned. At the end of this process, you may decide not to address some aspects of infrastructure security, or you might choose to work on some of these items in a Phase 2 or Phase 3 project plan.This should give you a great start in thinking all this through.

We've divided the infrastructure project into four main areas, though you may choose to parse it out differently. We'll look at devices and media and ways to secure network devices (excluding servers and user computers) and the network media. Media could mean secure network area storage devices (NAS), backup media, or other storage devices.The "Topologies" section includes how you segment the network for security, including creating DMZs and implementing firewalls, and how you secure network traffic. Intrusion detection and prevention systems are pretty popular these days (for good reason), so we'll look at best practices for implementing IDS/IPS that you can utilize in your project plan.

Finally, we'll look at system hardening, including hardening infrastructure servers (DNS, DHCP, and so on), application and database servers, and other computers on the network. Keep in mind that this is not a "how to" as much as it is a list of things to consider and include in your project plan. There are volumes filled with information on these topics; it would be far outside the scope of this book to talk about how you do these things. Our intent is to provide a framework and a solid starting point for your infrastructure security project-planning process. If you're not sure what some of these things are or if you're uncertain as to how to address these issues, you'll need to do further research on these topics.

Project Management Made Easy

Project Management Made Easy

What you need to know about… Project Management Made Easy! Project management consists of more than just a large building project and can encompass small projects as well. No matter what the size of your project, you need to have some sort of project management. How you manage your project has everything to do with its outcome.

Get My Free Ebook


Post a comment