Manage

Firewall responsibilities and firewall timeout features

We have a network systems group of more than 150 individuals. Which group is usually responsible for installing firewalls and maintaining their rules? Is there a possible conflict of interest when the systems architecture staff is responsible for maintaining firewalls?

Also, do firewall admin logons utilize a timeout feature on the firewall software, or is timeout usually limited to the operating system (i.e. NT) level?

Some companies combine security with the systems or networks group. Conflict of interest only arises when the same person that sets the rules is also the one that audits the data or the one that determined what the rules should be. It is always good to have a separation of duties.

As for timeouts, every login session to every device should have some type of timeout or password protected screensaver, or some other similar security protection. Admin logins are even more critical as they can change the security parameters of the system. Whether your firewall software supports an independant timeout is something that you will need to discuss with your firewall vendor.

For more information on this topic, visit these other SearchSecurity.com resources:
Network Security Tip: Firewall redundancy: Deployment scenarios and benefits
Network Security Tip: Q&A: Developments in firewalls
Security Policies Tip: The security policy document library: Firewall policy

This was last published in July 2004

Dig Deeper on Network device security: Appliances, firewalls and switches

SearchCloudSecurity

Firewall responsibilities and firewall timeout features

Dig Deeper on Network device security: Appliances, firewalls and switches

firewall

Updating firewall policies with the frequency of firewall testing

How to test a firewall: A three-step guide for testing firewalls

How to manage firewall testing using Nmap

SearchCloudSecurity

Unify on-premises and cloud access control with SDP

Get to know cloud-based identity governance capabilities

6 AIOps security use cases to safeguard the cloud

SearchNetworking

Network capacity planning best practices for return to office

Aruba product integrations advance its SASE strategy

Wi-Fi 6 rollout requires careful review of network devices

SearchCIO

CIO role post-pandemic is 'opportunity of a lifetime'

Hybrid care is healthcare's future

Replacing vs. maintaining legacy systems

SearchEnterpriseDesktop

Apple takes its M1 chip to the iMac, iPad Pro

VMware launches Anywhere Workspace to secure remote workers

Incorporating zero trust into endpoint security

SearchCloudComputing

Elastic vs. AWS highlights open source monetization dilemma

How to calculate cloud migration costs before you move

Evaluate Azure CLI vs. PowerShell for resource management

ComputerWeekly.com

How AWS is supporting Asia’s battle with Covid-19

Anti-food waste app Karma taps up Google Cloud to power global expansion plans

NCSC offers teachers free cyber security training