Thanks Tom. I'm going to start putting something together. _______________________________________________ Eric Poole Information Security Analyst Community Medical Centers 1140 "T" Street, Fresno, California 93721 559-459-6784 (phone) 559-459-2045 (fax) -----Original Message----- From: Thomas W Shinder [mailto:tshinder@xxxxxxxxxxx] Sent: Tuesday, January 18, 2005 10:00 AM To: [ISAserver.org Discussion List] Subject: [isalist] RE: Management of ISA? http://www.ISAserver.org Hi E-pool, I'm sure you'll get a lot of opinions on this, but if the network guys think they never have to update or manage their devices, they're not paying attention and you don't want the wrong people to know about that. Although they may think that they're hardware draws mechanical intelligence from the celestial bodies, that reality only exists in the marketing dreamworld they Cisco vendors have provided them :) It is definitley a NETWORK security device. So, if the network guys aren't jiggy on security (and it sounds like they're not), then they need to be, and the ISA firewall isn't going to be the hospital's only security issue. I'd use this as an opportunity to demonstrate the security benefits of the ISA firewall. HTH, Tom -----Original Message----- From: epoole@xxxxxxxxxxxxxxxxxxxx [mailto:epoole@xxxxxxxxxxxxxxxxxxxx] Sent: Tuesday, January 18, 2005 11:54 AM To: [ISAserver.org Discussion List] Subject: [isalist] Management of ISA? http://www.ISAserver.org I know I've probably asked this before, but we've got a bit of turmoil between our Network team and Information Security. Which Group should manage ISA? Our Network team is not security minded, have no interest in security and are not disciplined in any way. I know I may sound biased, but in Information Security we have had ISA Server 2000 running with Surf Control and no downtimes for about 2 years. It's constantly patched, updated (we currently have ISA Server 2004 in testing), logs reviewed, etc. Anyway, I got blindsided yesterday. The Network team feels it is more of a network device as opposed to a security device and want to take over administration. Our Director has asked that we prepare something that demonstrates where ISA should belong. So, I thought I would ask the experts. Side note - Unfortunately, we only use ISA as an authenticating proxy and limited firewall. The network team has yet to build ISA into their architecture. ------------------------------------------------------ List Archives: http://www.webelists.com/cgi/lyris.pl?enter=isalist ISA Server Newsletter: http://www.isaserver.org/pages/newsletter.asp ISA Server FAQ: http://www.isaserver.org/pages/larticle.asp?type=FAQ ------------------------------------------------------ Other Internet Software Marketing Sites: World of Windows Networking: http://www.windowsnetworking.com Leading Network Software Directory: http://www.serverfiles.com No.1 Exchange Server Resource Site: http://www.msexchange.org Windows Security Resource Site: http://www.windowsecurity.com/ Network Security Library: http://www.secinf.net/ Windows 2000/NT Fax Solutions: http://www.ntfaxfaq.com ------------------------------------------------------ You are currently subscribed to this ISAserver.org Discussion List as: tshinder@xxxxxxxxxxxxxxxxxx To unsubscribe visit http://www.webelists.com/cgi/lyris.pl?enter=isalist Report abuse to listadmin@xxxxxxxxxxxxx ------------------------------------------------------ List Archives: http://www.webelists.com/cgi/lyris.pl?enter=isalist ISA Server Newsletter: http://www.isaserver.org/pages/newsletter.asp ISA Server FAQ: http://www.isaserver.org/pages/larticle.asp?type=FAQ ------------------------------------------------------ Other Internet Software Marketing Sites: World of Windows Networking: http://www.windowsnetworking.com Leading Network Software Directory: http://www.serverfiles.com No.1 Exchange Server Resource Site: http://www.msexchange.org Windows Security Resource Site: http://www.windowsecurity.com/ Network Security Library: http://www.secinf.net/ Windows 2000/NT Fax Solutions: http://www.ntfaxfaq.com ------------------------------------------------------ You are currently subscribed to this ISAserver.org Discussion List as: epoole@xxxxxxxxxxxxxxxxxxxx To unsubscribe visit http://www.webelists.com/cgi/lyris.pl?enter=isalist Report abuse to listadmin@xxxxxxxxxxxxx ------------------------------------------------------- WARNING/CONFIDENTIAL: ------------------------------------------------------- This email, including attachments, may contain information that is privileged, confidential, and/or exempt from disclosure under applicable law (including, but not limited to, protected health information). It is not intended for transmission to, or receipt by, any unauthorized persons. If the reader of this message is not the intended recipient you are hereby notified that any dissemination, distribution or copying of this communication is strictly prohibited. If you believe this email was sent to you in error, do not read it. Reply to the sender informing them of the error and then destroy all copies and attachments of the message from your system. Thank you.