
	Home > Ask the Security Experts > Network Security Questions & Answers > The top 5 network security practices

Ask The Security Expert: Questions & Answers

EMAIL THIS

The top 5 network security practices

EXPERT RESPONSE FROM: Mike Chapple, featured expert

		Pose a Question

		Other Security Categories

		Meet all Security Experts
		Become an Expert for this site

Digg This!

StumbleUpon

Del.icio.us

QUESTION POSED ON: 03 June 2009
What are the top 5 actionable tasks that enterprise network security managers must do to ensure security on a network and why?

BROWSE BY TAG

Network Security, Network Intrusion Detection and Analysis, Security Event Management, Enterprise Network Security, Information Security Jobs and Training, Information Security Careers, Training and Certifications, VIEW ALL TAGS

Digg This!

StumbleUpon

Del.icio.us

RELATED CONTENT

	Network Security
	How to set up a split-tunnel VPN in Windows Vista
	What is the difference between static and dynamic network validation?
	Port scan attack prevention best practices
	Securing the intranet with remote access VPN security
	How to prevent network sniffing and eavesdropping
	How to implement virtual firewalls in a complex network infrastructure
	How to manage network bandwidth with distributed ISP bandwidth
	How to edit group policy objects to give a user local admin rights
	How to prevent operating system cloning with AES 256-bit encryption
	How to securely connect a LAN POS to a remote point-of-sale device

Security Event Management

Network traffic collection, analysis helps prevent data breaches

Best Security Information and Event Management Products

Understanding PCI DSS compliance requirements for log management

Data breach notification legislation: What info must be released?

How to prevent a denial-of-service (DoS) attack

Mature SIMs do more than log aggregation and correlation

SIMs tools and tactics for business intelligence

SIEM: Not for small business, nor the faint of heart

Should IDS and SIM/SEM/SIEM be used for network intrusion monitoring?

Tying log management and identity management shortens incident response

Information Security Jobs and Training

Straight from the inbox: Your infosec career questions answered

Despite recession, information security certification pay continues to climb

Bruce Schneier on outsourcing, awareness training

Creating a personal brand in information security

Feds push cybersecurity jobs, PCI DSS changes ahead.

Feds announce 1,000 new security jobs

Some IT security certifications are overvalued, analyst says

How to prepare for an information security job interview

Security industry remains resilient to tough economy

Top social networking sites to boost your information security career

RELATED GLOSSARY TERMS

Terms from Whatis.com − the technology online dictionary

security information management (SIM) (SearchSecurity.com)

RELATED RESOURCES

2020software.com, trial software downloads for accounting software, ERP software, CRM software and business software systems

Search Bitpipe.com for the latest white papers and business webcasts

Whatis.com, the online computer dictionary

That's a great question. Let's see if we can boil down the top ways to protect the security of your enterprise network into a five-point list:

Perform security vulnerability scanning on a regular basis. I've sung this refrain before and I'll continue to tout the virtues of a strong enterprise vulnerability scanning program. Proactive scanning tools allow security pros to detect network security flaws before they're exploited.
Manage the firewall rulebase through solid auditing practices. Don't underestimate the importance of auditing firewall activity. It's easy for rulebases to become overpopulated with orphaned rules, leading to firewall misconfigurations that severely undermine the security of a network.
Deploy network intrusion prevention and detection systems (IPS/IDS). A properly tuned IPS can limit malicious traffic's ability to enter the network; search out a best-of-breed IPS/IDS and deploy it on your network. Don't be thwarted by cost; there are several solid open source product options available.
Use network access control to ensure endpoint security. (Link to this month's tip) NAC products offer the ability to scan endpoints to make sure they are compliant with an organization's security policies before the endpoints can ever gain network access. Every security problem you prevent is one less issue that needs mitigation.
Content filtering protects your organization from liability. Check with any large corporation's legal department and you'll probably hear at least one litigation story related to the viewing of inappropriate materials in the workplace. Use content filtering tools to limit the organization's liability in this space.

That's a brief rundown of my top five network security practices. Deploying these in your organization should keep you busy for a while!

For more information:

Looking to transition to a career in information security? Get some expert advice.
Use the open source tool Nessus for vulnerability scanning in the enterprise.

Search and Browse the Expert Answer Center
Search and browse more than 25,000 question and answer pairs from more than 250 TechTarget industry experts.

Browse our Expert Advice
Operating Systems IT Management Networking Database	Security Servers and Storage Applications and Development Career Center

Find Security Solutions for Your Business

View this month\\'s issue and subscribe today.

Apply online for free conference admission.

SEARCH :

Site Index

TechTarget provides technology professionals with the information they need to perform their jobs - from developing strategy, to making cost-effective purchase decisions and managing their organizations' technology projects - with its network of technology-specific websites, events and online magazines.


TechTarget Corporate Web Site \| Media Kits \| Site Map All Rights Reserved, Copyright 2003 - 2009, TechTarget \| Read our Privacy Policy