|
|
|
|
Division of IT: Security
Security Inspection Program LevelsThe Division of IT security inspection program currently offers four levels of service.LAN InspectionA broad overview of a department's local area network. This includes global information about network devices, workstation and server security. This level of inspection is intended to inform the LAN Administrator and key decision makers about the overall state of security related to the department's networked systems. It is meant to identify global trends regarding configuration and management of the department's entire LAN.Information System InspectionA detailed look at a particular information system. This inspection includes the key servers or workstations associated with a particular information system, with a high level understanding of the inter-dependencies of the system. This level of inspection is intended to inform system administrators and key decision makers about the state of security in detail, related to a particular information system. It is meant to identify specific issues related to the configuration and management of a particular information system.Application InspectionA detailed look at a particular application. This inspection includes inspection of application architecture, interfaces and code. This level of inspection is intended to inform application developers and key decision makers about the state of security in detail, related to a particular application. It is meant to identify specific issues related to the application's functionality, or how it may be misused.E-Commerce InspectionA combination of LAN inspection, Information System inspection and Application inspection that is designed to meet the requirements set out by VISA and Master Card. E-Commerce Inspections are required for an application that needs to obtain a University merchant ID number from the Treasurer's Office. |