Want to protect your cyber security and still get fast solutions? Ask a secure question today.Go Premium

x
?
Solved

Network security questions for change control requests...

Posted on 2016-11-08
2
Medium Priority
?
141 Views
Last Modified: 2016-11-14
I am putting together a list of default questions that users need to fill out to request a change to our security systems.  Here is what I have so far...

1. Is there a project associated with this change? If so, what is the project identification information?

2. What is the expected business impact of the change?

3. Provide an explanation of the requested change (what is the business case/goal for this change?):

4. Can you provide information regarding the sources/destinations requested in the change (noted below):
      Source:
      IP Address - FQDN - Type of server
      Example:
            192.168.1.100 - windows001.example.com - Microsoft Web Server
      Destination:
      IP Address - FQDN - Type of server
      Example:
            172.16.1.100 - windows095.example.com - Microsoft SQL Server

5. Can you provide an explanation for each port/port range requested in the change.  Also, please       specify if the port is either TCP or UDP.
      Ports:
      TCP/UDP - Port # - Reason needed for port
      Example:
            TCP - 1433 - This port is required to allow the DMZ server connect to the MSSQL database instance on the internal server.

6. What is the timetable for this change?
0
Comment
Question by:Michael Kowalski
2 Comments
 
LVL 22

Accepted Solution

by:
eeRoot earned 2000 total points
ID: 41882196
A few other things to ask:

1) Has the change been tested on a test system?

2) Is there any expected down time for the change window?  If so, what systems will be impacted and who needs to be notified?

3) Is there a rollback plan in case the change is unsuccessful?

4) Who is the owner of the systems be impacted and do they approve the change?
0
 

Author Closing Comment

by:Michael Kowalski
ID: 41886260
Thank you for your input.  This is very useful.
0

Featured Post

Free Tool: SSL Checker

Scans your site and returns information about your SSL implementation and certificate. Helpful for debugging and validating your SSL configuration.

One of a set of tools we are providing to everyone as a way of saying thank you for being a part of the community.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

With more and more companies allowing their employees to work remotely, it begs the question: What are some of the security risks involved with remote employees and what actions should we take to secure them?
This blog will spread awareness about Dropbox. We have given the statements based upon our experience. Along with this, there is a section of some new plans that should be added in Dropbox this year. This will make the storage service enhanced from …
With Secure Portal Encryption, the recipient is sent a link to their email address directing them to the email laundry delivery page. From there, the recipient will be required to enter a user name and password to enter the page. Once the recipient …
If you're a developer or IT admin, you’re probably tasked with managing multiple websites, servers, applications, and levels of security on a daily basis. While this can be extremely time consuming, it can also be frustrating when systems aren't wor…

572 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question