Chapter 11: Security and Network Personnel

• The security administrator should not report to the network administrator of their responsibilities have different focuses. Network administrators have a focus on high availability and performance of the network and resources. The focus on performance and user functionality is usually a trade-off for security. 
• The following tasks are tasks that should be carried out my security administrators:
• Implements and maintains security devices and software
• security products require monitoring and maintenance to get their full value, this includes version updates and upgrades.
• Carry out security assessments
• security administrator identify vulnerabilities in the system, networks, software, and in-house developed products used by a business
• assessments enable business to understand risks it faces in order to make sensible business decisions about products and services it considers purchasing, risk mitigation strategies i chooses to fund vs. risks it chooses to accept.
• Creates and maintains user profiles and implements and maintains access control mechanisms
• Configures and maintains security labels in mandatory access controls (MAC) environments
• MAC environments are mostly found in government and military agencies.
• Access decisions are based on comparing object's classification and subject's clearance.
• Sets initial passwords for users
• New accounts must be protected from attackers who might know patterns used for passwords.
• Reviews audit logs