mailing list archives
RE: best place for IT Security team in the company organisation
From: "William Shepherd" <wshepherd1 () woh rr com>
Date: Wed, 8 Aug 2007 17:18:37 -0400
The best practice would be for the Security Team to be totally separate from
the IT department. The best way is to have them report directly to the CEO
and they should handle security related strategy, policy and administration.
From: listbounce () securityfocus com [mailto:listbounce () securityfocus com] On
Behalf Of soul
Sent: Wednesday, August 08, 2007 12:52 PM
To: listbounce () securityfocus com; security-basics () securityfocus com
Subject: best place for IT Security team in the company organisation
In my company , there is a issue regarding the ITSEC Team place in the
company organisation. We have IT Department with telecoms & network
division, Applications development Division, and Business process Division.
Initially, the ITSEC team is rattached directly to Director of the IT
Department office. But now, some people want the Security Team to be splited
as follow in two :
- strategy, BCP & policies rattached to IT Director office or the
- and security operations (only Firewall admin, VPN implementation and
admin) rattached to the telecoms and network Division.
Could you advice me on the issue..... some best practices...
Ne gardez plus qu'une seule adresse mail ! Copiez vos mails vers Yahoo! Mail