« False impression | Main | Think when you ask a question. Twice. »

Cut your coat according to your cloth

If you like it here, please consider subscribing to the RSS feed or spreading the news among your friends who also care about security.

Imagine you've got a small team responsible for a project. Say like ten people. They're basically taking care of the whole project, meaning they design, develop and deploy the application and do the O/S, database and infrastructure administration. And here's the question: how do you exactly enforce segregation of duties in such environment?

When you can afford expanding a team or having some interdepartmental administration/infrastructure/deployment/etc. teams, that's great. But sometimes the environment is too isolated and you just can't do that. In such case insisting on having a separate Tape Librarian person in a team is quite extravagant, if not stupid. So what should you do? Reasonably figure out what roles' separation is really important and try to enforce it. You will at least have some better arguments for it than just a usual "because that's the way it's supposed to be".

Posted by Michał Sobiegraj on October 18, 2006 1:20 AM | | Digg It

TrackBack

TrackBack URL for this entry:
http://sobiegraj.com/blog/mt-tb.cgi/18

Post a comment

(If you haven't left a comment here before, you may need to be approved by the site owner before your comment will appear. Until then, it won't appear on the entry. Thanks for waiting.)

© 2006-2007 Michał Sobiegraj. All rights reserved. The views expressed here are my own, and not necessarily endorsed by any former or current employer.

Search


About

This page contains a single entry from the blog posted on October 18, 2006 1:20 AM.

The previous post in this blog was False impression.

The next post in this blog is Think when you ask a question. Twice..

Many more can be found on the main index page or by looking through the archives.

Subscribe to this blog's feed
[What is this?]
Powered by
Movable Type 3.34