Elements and Performance Criteria
- Plan advanced network server security according to business needs
- Consult with client and key stakeholders to identify security requirements in an advanced network server environment
- Analyse and review existing client security documentation and predict network service vulnerabilities
- Research network authentication and network service configuration options and implications to produce network security solutions
- Ensure features and capabilities of network service security options meet the business needs
- Produce or update server security design documentation to include new solutions
- Obtain sign-off for the security design from the appropriate person
- Prepare for
- Network server security implementation
- Prepare for work in line with site-specific safety requirements and enterprise occupational health and safety (OHS) processes and procedures
- Identify safety hazards and implement risk control measures in consultation with appropriate personnel
- Consult appropriate person to ensure the task is coordinated effectively with others involved at the worksite
- Back up server before implementing configuration changes
- Configure the advanced network server security according to design
- Configure update services to provide automatic updates to ensure maximum security and reliability
- Configure network authentication, authorisation and accounting services to log and prevent unauthorised access to the server
- Configure basic service security and access control lists to limit access to authorised users, groups or networks
- Implement encryption as required by the design
- Configure advanced network service security options for services and remote access
- Configure the operating system or third-party firewall to filter traffic in line with security requirements
- Ensure security of server logs and log servers are appropriately implemented for system integrity
- Implement backup and recovery methods to enable restoration capability in the event of a disaster
- Monitor and test network server security
- Test server to assess the effectiveness of network service security according to agreed design plan
- Monitor server logs, network traffic and open ports to detect possible intrusions
- Monitor important files to detect unauthorised modifications
- Investigate and verify alleged violations of server or data security and privacy breaches
- Recover from, report and document security breaches according to security policies and procedures
- Evaluate monitored results and reports to implement and test improvement actions required to maintain the required level of network service security