登录查看更多内容

How can you improve System Administration security?

由人工智能和领英社区提供技术支持

System administration is a vital role that involves managing and maintaining various aspects of an organization's IT infrastructure, such as servers, networks, databases, security, and backups. However, system administration also comes with many challenges and risks, especially when it comes to security. Cyberattacks, data breaches, unauthorized access, and human errors can compromise the integrity, availability, and confidentiality of the systems and data that system administrators are responsible for. Therefore, system administrators need to constantly improve their security practices and skills to protect their organization's assets and reputation. In this article, we will discuss some of the ways that system administrators can enhance their security, such as:

此文章中的业界达人

由社区从 10 条内容中精选。了解更多

1 Use strong passwords

One of the most basic but essential security measures that system administrators should follow is to use strong and unique passwords for all their accounts and devices. Weak or reused passwords can easily be guessed or cracked by attackers, who can then gain access to sensitive systems and data. System administrators should also change their passwords regularly and use a password manager to store and manage them securely. Additionally, they should enable multi-factor authentication (MFA) whenever possible, which adds another layer of verification to prevent unauthorized login attempts.

添加您的观点

William Hall

UNC Health, CISSP, CISM, CPHIMS
举报内容
1. An account separate from your regular user account should be used for system administration, especially when interacting with on-premises systems. 2. As stated, MFA is important for sensitive system access, especially for cloud environments more directly accessible for adversaries, and where use of a separate admin account may not be practical. 3. Tools like CyberArk and BeyondTrust for Privileged Access Management (PAM) can improve your security too since it’s possible to manage systems without even knowing your password, and having a ridiculously strong password that auto-rotates.

已翻译

赞
Maria S.

Cybersecurity & AI Strategist | Product Owner @ EKC | CEO @ Asterchat.ai | Operationalizing Cybersecurity & AI Strategies. Ask Me how to future-proof your success!
举报内容
First thing- when setting up and configuring a new system-always and never reuse the default password that is provided- ensure you change it.

已翻译

赞
David Kranz
举报内容
You should not have access to any passwords. Break glass? Retrieve them from a secure password vault, onetime that are then rotated. For all other access why are you in production? There should be no fixing in production, so no passwords are necessary there.

已翻译

赞
Moizuddin Aslam

CKA| SRE| Kubernetes | Openshift |Sr. Systems Admin
举报内容
Admin accounts Rename some of the common and default Admin accounts and disable unnecessary services and disable deprecated SSL.

已翻译

赞

加载更多内容

2 Update and patch software

Another important security practice that system administrators should adopt is to update and patch their software regularly. Outdated or unpatched software can contain vulnerabilities that can be exploited by attackers to compromise the systems and data. System administrators should monitor the latest security updates and patches for their operating systems, applications, and firmware, and apply them as soon as possible. They should also use tools and scripts to automate the update and patch process, and test them before deployment to avoid errors or conflicts.

添加您的观点

William Hall

UNC Health, CISSP, CISM, CPHIMS
举报内容
“But patches can break stuff…” One word: WannaCry Hackers break stuff worse. Just have a good strategy for testing patches before wider deployment.

已翻译

赞

3 Implement backup and recovery plans

System administrators should also prepare for the worst-case scenarios and implement backup and recovery plans for their systems and data. Backup and recovery plans can help system administrators restore their systems and data in case of disasters, such as hardware failures, natural calamities, or ransomware attacks. System administrators should perform regular backups of their critical systems and data, and store them in secure and separate locations, such as cloud storage or external drives. They should also verify the integrity and usability of their backups, and test their recovery procedures periodically to ensure that they work as expected.

添加您的观点

Maria S.

Cybersecurity & AI Strategist | Product Owner @ EKC | CEO @ Asterchat.ai | Operationalizing Cybersecurity & AI Strategies. Ask Me how to future-proof your success!
举报内容
Incorporate cyber security hygiene best practices in your process. This should include flexibility and ability to test and deploy ad-hoc hot fixes to address zero day or critical vulnerabilities that have been identified by vulnerability scans or penetration testing.

已翻译

赞

4 Follow the principle of least privilege

System administrators should also follow the principle of least privilege, which means that they should only grant the minimum level of access and permissions that are necessary for each user, role, or task. By following this principle, system administrators can reduce the attack surface and limit the damage that can be caused by malicious or careless users, who can either intentionally or accidentally misuse or compromise the systems and data. System administrators should also audit and review the access and permissions of their users, roles, and tasks regularly, and revoke or modify them as needed.

添加您的观点

5 Educate and train users

System administrators should also educate and train their users on the best security practices and policies that they should follow. Users are often the weakest link in the security chain, as they can fall victim to phishing, social engineering, or other forms of attacks that can compromise their credentials or devices. System administrators should provide their users with security awareness training, such as how to recognize and avoid common threats, how to use strong passwords and MFA, how to report and respond to incidents, and how to comply with the organization's security standards and regulations.

添加您的观点

William Hall

UNC Health, CISSP, CISM, CPHIMS
举报内容
Is this IT Operations’ job, or Information Security? The answer: Yes. The most successful, well-executed, functional security programs have very blurred lines and lots of overlap. System Administrators can also be the architects, auditors, enforcers of security policies if they have an understanding of cybersecurity that is up to the same level as their IT operational knowledge.

已翻译

赞
Joseph Gilbert

Security Administrator
举报内容
Train users repetitively and often. They're the first line of defense of the network. There's great tools for user training and gauging how well they react to scenarios.

已翻译

赞
John Jaquith

Systems Security Architect and Technology Lynchpin - I'm your problem solver.
举报内容
Everything you deploy should have security "baked in" at the onset, not "bolted on" after deployment. Partner with your INFOSEC team and make this a repeatable process. Look to ITITL to assist defining your own workflows and internal processes, eliminating those that come in conflict with best practices and secure standards Training, training, training. Get some in Systems Security and look to industry certifications. This will allow you more credibility with stakeholders and decision makers.

已翻译

赞

6 Stay updated and informed

Finally, system administrators should stay updated and informed on the latest security trends, threats, and solutions that affect their systems and data. System administration is a dynamic and evolving field that requires constant learning and adaptation. System administrators should read security blogs, newsletters, podcasts, and forums, and join security communities and networks, to keep abreast of the latest security news, tips, and best practices. They should also seek feedback and advice from their peers and mentors, and participate in security training and certification programs, to improve their security skills and knowledge.

添加您的观点

7 Here’s what else to consider

This is a space to share examples, stories, or insights that don’t fit into any of the previous sections. What else would you like to add?

添加您的观点

System Administration

+ 关注

给文章评分

我们借助人工智能创建了此文章。您认为这篇文章怎么样？

很棒不太好

举报此文章

查看全部

How can you improve System Administration security?

1

2

3

4

5

6

7

1 Use strong passwords

2 Update and patch software

3 Implement backup and recovery plans

4 Follow the principle of least privilege

5 Educate and train users

6 Stay updated and informed

7 Here’s what else to consider

System Administration

给文章评分

感谢您的反馈

更多System Administration相关文章

更多相关阅读内容

How can you improve System Administration security?

1

2

3

4

5

6

7

1 Use strong passwords

2 Update and patch software

3 Implement backup and recovery plans

4 Follow the principle of least privilege

5 Educate and train users

6 Stay updated and informed

7 Here’s what else to consider

System Administration

给文章评分

感谢您的反馈

查看其他技能