Home page logo

basics logo Security Basics mailing list archives

RE: best place for IT Security team in the company organisation
From: "William Shepherd" <wshepherd1 () woh rr com>
Date: Wed, 8 Aug 2007 17:18:37 -0400

The best practice would be for the Security Team to be totally separate from
the IT department. The best way is to have them report directly to the CEO
and they should handle security related strategy, policy and administration.



-----Original Message-----
From: listbounce () securityfocus com [mailto:listbounce () securityfocus com] On
Behalf Of soul
Sent: Wednesday, August 08, 2007 12:52 PM
To: listbounce () securityfocus com; security-basics () securityfocus com
Subject: best place for IT Security team in the company organisation

Hi All
In my company , there is a issue regarding the ITSEC Team place in the
company organisation. We have IT Department with telecoms & network
division, Applications development Division, and Business process Division.
Initially, the ITSEC team is rattached directly to Director of the IT
Department office. But now, some people want the Security Team to be splited
as follow in two :
 - strategy, BCP & policies rattached to IT Director office or the
Vice-president office
-  and security operations (only Firewall admin, VPN implementation and
admin)  rattached to the telecoms and network Division.

Could you advice me on the issue..... some best practices...

thank you

Ne gardez plus qu'une seule adresse mail ! Copiez vos mails vers Yahoo! Mail

  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]