Prevention Checklist
by H. Jake Oude-Reimerink

Network security and disaster prevention audits are a necessity to ensure the integrity of your business systems and data.

The following is a good starting point on what should be evaluated on your network. It is not always cost-effective to evaluate or implement every item listed below. However, critical elements should be scrutinized often and thoroughly. The other items should be evaluated as needed.

Critical Elements to Audit

• Anti-Virus Software
• Anti-Spam Software
• Service Pack Updates for the Operating System
• Service Pack Updates for Program Files
• Tape Backups
• Secure User IDs
• Secure Passwords
• UPS (Un-interruptible Power Supplies)
• Physical Security for All Servers
• Physical Firewalls to All Remote Connections (Internet Connections)
• Current User Maintenance
  

Other Elements to Consider

• Off Site Storage of Local Tapes
• Fire Wall Software ( PC level )
• Forced Password Changes and Complexity
• Data Encryption During Periods of Authentication
• Data Encryption on All Wireless Traffic
• Secure Remote Access
• Virtual Private Network for InterOffice Traffic over Public Lines ( ie Internet )
• Redundancy of Data ( RAID 1, 5 )
• Redundant Power Supply
• Server Clustering
• Building Power Redundancy
• Backup Building Generator
• Data Provider Redundancy
• System Security Policies In Place
• Policy Auditing
• Intrusion Testing