Chapter 5. Securing Systems
This chapter will introduce organization processes and methods that can be used to secure enterprise computer systems. The systems that we will focus on in this chapter are server systems that are used within the enterprise to conduct business functions. Processes and methods covered are system classification, system protection using anti-virus, host-based intrusion prevention system (HIPS), file integrity monitoring (FIM), and user account management. Additionally, challenges of implementation and opportunities to improve protection of systems will be covered. Each solution in this chapter should be independently evaluated to determine its value and suitability for purchase and implementation within the organization. There are several ways to approach system security, but to be effective, the approach must be in line with the defined security architecture based on the presented trust models. Some of the solutions provide better security advantage than others...
