Upload
others
View
5
Download
0
Embed Size (px)
Citation preview
Network Security Roadmap Update
November 15, 2011
11/15/11 1
Phase 2 Rollout
Phase 1 Tuning
NETWORK SECURITY MILESTONE TIMELINE
11/15/11 2
Jan -‐ Mar Apr -‐ Jun Jul -‐ Sep Oct -‐ Dec
Purchase & install border protecGon equipment
Implement detecGon & protecGon for select network segments
Integrate alert detecGon & user
noGficaGon
Increase breadth of protecGon, targeGng high-‐risk services
Install intelligent log management
Integrate alerts & log management
Cisco ASA 5585 Cisco SCE 8000 Splunk, RT,
Moira
Border ProtecGon
Wire
less
Plan and communicate default secure wireless configuraGon
Deploy secure wireless configuraGon with open guest wireless
Secured wireless
Integrate remediaGon
Managed
Domain
ConGnue Windows Domain deployments Pilot virtual desktop with
high-‐risk groups
WIN domain Virtual desktop
Technology Legend
Jan-‐ Mar Apr-‐ Jun Jul-‐ Sep
CALENDAR YEAR 2011 CALENDAR YEAR 2012
#1
1 – New protecGon devices incompaGble with MITnet backbone network topology. Required re-‐design, purchase of new h/w, and careful installaGon Gming. 2 – AddiGonal campus outreach and update to user experience needed. 3 – Key resources unavailable due to other prioriGes (e.g., Exchange 2010)
#2
#3
Selected IniGaGves
• $450K approved for IT Security Projects and Staff Resources
• Two temporary posiGons approved • Searches underway for an IT Security Incident Response Analyst and an IT Forensics and LiGgaGon Specialist or an IT Security Risk Specialist
• Exploring 3rd party collaboraGons for forensics referrals, risk management assessment.
11/15/11 3
Appendix
Network Security Milestone Slide from February PresentaGon
11/15/11 4
Increase rollout Phase 2
Initial tuning Phase 1
NETWORK SECURITY MILESTONE TIMELINE CALENDAR YEAR 2011
11/15/11 5
Jan -‐ Mar Apr -‐ Jun Jul -‐ Sep Oct -‐ Dec
Purchase & install border protecGon equipment
Implement detecGon & protecGon for select network segments
Integrate alert detecGon and end-‐user noGficaGon
Increase breadth of protecGon, targeGng high-‐risk services
Install intelligent log management
Integrate alerts and log management
Cisco ASA 5585 Cisco SCE 8000 Splunk, RT,
Moira
Border ProtecGon
Wire
less
Plan and communicate default secure wireless configuraGon
Deploy default secure wireless configuraGon and guest wireless
Secured wireless
Integrate remediaGon
Managed
Domain
ConGnue Windows Domain deployments Pilot virtual desktop with high-‐risk groups
WIN domain Virtual desktop
Technology Legend