Skip to main content

The Managing Phase

After implementation of the security design, the administrator is responsible for managing the design to make ensure that it provides the level of security envisioned by the security design team. This would be relatively simple if the network never changed, but since most networks grow and change constantly, administrators must ensure that each change is carefully considered with regard to its impact on the security design.

The help desk will generally provide end-user support, but the administrator is responsible for monitoring the network to make sure that the security policies are being enforced, detect security vulnerabilities and use the system's features to improve protection. The administrator should inform management of any misuse of the network to ensure that the policies are enforced. Success in this phase depends on constant monitoring by an administrator who takes personal responsibility for the security of the network.

Next: Planning for Security Monitoring