Can I ask from a low tech management standpoint -
- what should our audit and risk team be looking when reviewing high availability / best practice for uptime/availability of the organisations Internet service - i.e staffs availability to visit www.google.com
from the corporate network.
- what pieces of the infrastructure need to be up to allow staff to visit the internet from corporate assets (i.e. servers and workstations), i.e. what can break in between user (on their coporate laptop) and the outside internet - that would mean the user didnt have internet access, i.e. we have a corporate proxy server with websense installed - whats the risk if that server fails? what else makes up the chain between client and the internet in corporate networks?
- what would constitute a poor design for corporate internet access, i.e. single point of failures/poor designs/lead to performance issues?
I am coming at this from a management risk angle, and not the most network tech proficient, so please bare in mind with your answers..