mailing list archives
Re: best place for IT Security team in the company organisation
From: Doug Schlachta <iccnt () yahoo ca>
Date: Thu, 9 Aug 2007 05:18:23 -0700 (PDT)
I Totally agree with you on this.
But it seems that the ongoing trend in those that do not understand the role of security to place it under IT, and more
often under a director or a IT manager that does not think security is as important as say Network or domain admin.
CISSP, SSCP, MCSE;Security, MCSE, CFOT
Senior Security Professional
----- Original Message ----
From: William Shepherd <wshepherd1 () woh rr com>
To: soul <soul1273 () yahoo fr>; listbounce () securityfocus com; security-basics () securityfocus com
Sent: Wednesday, August 8, 2007 5:18:37 PM
Subject: RE: best place for IT Security team in the company organisation
The best practice would be for the Security Team to be totally separate from
the IT department. The best way is to have them report directly to the CEO
and they should handle security related strategy, policy and administration.
From: listbounce () securityfocus com [mailto:listbounce () securityfocus com] On
Behalf Of soul
Sent: Wednesday, August 08, 2007 12:52 PM
To: listbounce () securityfocus com; security-basics () securityfocus com
Subject: best place for IT Security team in the company organisation
In my company , there is a issue regarding the ITSEC Team place in the
company organisation. We have IT Department with telecoms & network
division, Applications development Division, and Business process Division.
Initially, the ITSEC team is rattached directly to Director of the IT
Department office. But now, some people want the Security Team to be splited
as follow in two :
- strategy, BCP & policies rattached to IT Director office or the
- and security operations (only Firewall admin, VPN implementation and
admin) rattached to the telecoms and network Division.
Could you advice me on the issue..... some best practices...
Ne gardez plus qu'une seule adresse mail ! Copiez vos mails vers Yahoo! Mail