On Wed, 27 Jun 2001, Zachary Uram wrote:
> i don't understand what someone would rely on an outsider to
> manage their security structure?
> it seems this is best handled on the inside (with firewalls, IDS,
> etc..). and if you are just one of many customers won't you get
> less intense/frequent scrutiny than if you had your own dedicated
> security staff person whose job is to manage your network
> security?
This is the pipedream of all with a network exposure, but, there are
issues that limit this to reality;
1) there are just not enough security professionals to go around, though
I'm betting some companies could make out like bandits during this
*regression* in the IT field in general as it concerns the job market at
present.
2) Perhaps even more importantly in a total picture perspective;
companies with networks be they attached to the internet or not, actually
find themselve as being two compnaies combined, the one company being the
bread maker, the business of which they conduct and the products and or
services they provide, and the second company, often a money sucker rather
then a money maker, the IT division. Sometimes those two companies within
are even at opposition to one another! <grin>
Thanks,
Ron DuFresne
>
> Wed, 27 Jun 2001 [EMAIL PROTECTED] wrote:
>
> > Smoke and mirrors has been an issue with Managed Security Service since the
> > early 90's. also Buyer beware. How do you the person sitting back
> > watching the screens is actually a bonafide security type person and not
> > some person who got hired because they should up at DefCon and impressed
> > someone with their Pez collection (true story).. :) A lot of the debunking
> > is not the actual alert but really happens behind the scenes to determine
> > if one or many alerts are actually valid or not. Each environment can
> > generate their own typical noise or discard that normally traverses the
> > network on a daily basis. It is the MSP's job to sort through the noice or
> > discard and actually call the customer to tell them that their is an actual
> > intrusion or possible intrusion. Now this whole process seems a bit tedius
> > and the folks at ADT can probably provide better statistics on false
> > positives than an a MSP can, but back to the point, what value does an MSP
> > like DigitalMojo provide when if you read between the lines, they actually
> > outsource to other MSPs..
> >
> > /m
> >
> > At 04:27 PM 6/27/2001 -0500, Ron DuFresne wrote:
> >
> > >smoke and mirrors has been one of the issues with managed service
> > >providers and especially managed security providers for sometime. Just
> > >becuase they may sell you a service for IDS does not mean alot if the IDS
> > >is setup on the exterior of the network and they are constantly alerting
> > >you and your staff of 'intrusion detections' 30-500 times a day. In fact,
> > >it tends to devalue such 'warnings' to the point folks tend to just start
> > >routing those reports to the trash bin. Thourough reading of contracts in
> > >such outsourcing aggreements is a must, as well as *understanding* what
> > >those contracts are really saying.
> > >
> > >Thanks,
> > >
> > >Ron DuFresne
> >
> > _______________________________________________
> > Firewalls mailing list
> > [EMAIL PROTECTED]
> > http://lists.gnac.net/mailman/listinfo/firewalls
> >
>
>
> [EMAIL PROTECTED]
> "Blessed are those who have not seen and yet have faith." - John 20:29
>
> _______________________________________________
> Firewalls mailing list
> [EMAIL PROTECTED]
> http://lists.gnac.net/mailman/listinfo/firewalls
>
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
"Cutting the space budget really restores my faith in humanity. It
eliminates dreams, goals, and ideals and lets us get straight to the
business of hate, debauchery, and self-annihilation." -- Johnny Hart
***testing, only testing, and damn good at it too!***
OK, so you're a Ph.D. Just don't touch anything.
_______________________________________________
Firewalls mailing list
[EMAIL PROTECTED]
http://lists.gnac.net/mailman/listinfo/firewalls
