This week’s network security tip focuses on the issue of shared responsibility. The concept of shared responsibility is a key component of the updates in PCI-DSS 3.0 (which we are examining in an upcoming webcast on January 14, at 11am ET). With more organizations outsourcing IT and security and with more cloud services being used, your service providers need to be held accountable. Just because they manage your network security infrastructure and controls doesn’t mean you don’t need to regularly review these controls.
Jason, a security analyst based in the US offers the following tip:
“Never assume any firewall configuration is secure just because it’s managed by an outside firm. Always include firewall review as a deliverable.”
As always, please keep those network security tips coming!
Receive notifications of new posts by email.