Manage

Firewall responsibilities and firewall timeout features

We have a network systems group of more than 150 individuals. Which group is usually responsible for installing firewalls and maintaining their rules? Is there a possible conflict of interest when the systems architecture staff is responsible for maintaining firewalls?

Also, do firewall admin logons utilize a timeout feature on the firewall software, or is timeout usually limited to the operating system (i.e. NT) level?

Some companies combine security with the systems or networks group. Conflict of interest only arises when the same person that sets the rules is also the one that audits the data or the one that determined what the rules should be. It is always good to have a separation of duties.

As for timeouts, every login session to every device should have some type of timeout or password protected screensaver, or some other similar security protection. Admin logins are even more critical as they can change the security parameters of the system. Whether your firewall software supports an independant timeout is something that you will need to discuss with your firewall vendor.

For more information on this topic, visit these other SearchSecurity.com resources:
Network Security Tip: Firewall redundancy: Deployment scenarios and benefits
Network Security Tip: Q&A: Developments in firewalls
Security Policies Tip: The security policy document library: Firewall policy

This was last published in July 2004

Dig Deeper on Network device security: Appliances, firewalls and switches

SearchCloudSecurity

Firewall responsibilities and firewall timeout features

Dig Deeper on Network device security: Appliances, firewalls and switches

firewall

How to test a firewall: A three-step guide for testing firewalls

Firewall management software simplifies firewall rules

How to manage firewall testing using Nmap

Start the conversation

0 comments

Please create a username to comment.

-ADS BY GOOGLE

SearchCloudSecurity

Comparing SASE vs. traditional network security architectures

Defining and evaluating SOC as a service

Get to know the elements of Secure Access Service Edge

SearchNetworking

Tech users weigh in on upcoming approval of more Wi-Fi 6 spectrum

CloudGenix-Palo Alto buy combines SD-WAN with cloud security

A deep dive into the differences between 5G and Wi-Fi 6

SearchCIO

C-suite executives offer advice on working remotely during pandemic

How IT can build an agile business partnership

Former Cisco CEO offers C-suite leadership tips in time of crisis

SearchEnterpriseDesktop

Compare UEM capabilities of Citrix Workspace vs. VMware Workspace One

VMware Workspace One feature speeds remote onboarding

Discover how Catchpoint helps end-user experience monitoring

SearchCloudComputing

5 tips that can lead to Azure cloud management success

AWS security options grow with Amazon Detective

Explore the pros and cons of cloud computing

ComputerWeekly.com

Coronavirus: Video calling, collaboration applications usage rise steeply in UK homes

Business data science teams need to be multi-disciplined, says Trainline

Covid-19 apps pose threat to digital privacy on a global scale

Dig Deeper on Network device security: Appliances, firewalls and switches

firewall

How to test a firewall: A three-step guide for testing firewalls

Firewall management software simplifies firewall rules

How to manage firewall testing using Nmap

Start the conversation

0 comments

Register

Login

Forgot your password?

Your password has been sent to:

Please create a username to comment.