Skip to content. Skip to navigation Oracle Application Development & System Programmer Sacramento California
Go to TELECOMMAND HOME  
Home | Services | Contact US | Solutions | Industries | News/Events | About Us  
 
Document Actions

Procedure Step:Intrusion Detection System

by Ritesh Saxena last modified 2007-03-02 00:07

Audit Step:

Determine whether the agency has taken adequate steps to implement an IDS for the application according to State IS Policy including:

  1. Identifying critical host computers (such as user workstations, peripherals [i.e., printers], specialized servers including web servers, or network components [i.e., firewalls, routers, and switches]);
  2. Conducting penetration tests to validate potential vulnerabilities;
  3. Installing an approved IDS on all critical hosts and any host that is storing or processing sensitive information;
  4. Installing an approved IDS on all critical network segments; and,
  5. Scanning critical hosts monthly and critical networks quarterly with an accepted vulnerability-scanning product (i.e., ISS) to ensure IDS's continue to address known vulnerabilities.

 

Purpose:

To obtain an understanding of application information security controls.   
 
Telecommand Software and Services

This site conforms to the following standards: