Let's discuss the various security policies:
- The administration of all the internal servers in an organization is the responsibility of a dedicated team that should also keep watch for any kind of compliance issues. If a compliance issues occurs, the team should immediately review and implement an updated security policy.
- When configuring internal servers, they must be registered in such a way that the identification of the servers can be done on the basis of the following information:
- Location of the server
- Operating system version and hardware configuration
- Services and applications running on the server
- Any kind of information in the organization's management system must always be kept up to date.