What you need to know
Network-based controls are in place that require employees to originate from either a Company office or via the approved VPN gateway to gain access to the SkyCab Production Network.
The Operations group is responsible for establishing user accounts in systems that support the SkyCab Production Network. The Operations group also manages access to the root account and sudo configuration.
All SkyCab Production Network system access requires a valid, unique SSH key for authentication. Access to these systems is limited only to authorized personnel who authenticate with their individual account.
Personnel are not to directly authenticate to service accounts.
Individual accounts are in use for production databases, and are limited to DBAs. Database updates are restricted to approved database utilities by authorized individual users, and only from defined hosts.
Access to backup data contained within Amazon S3 (or other means) is restricted to appropriate personnel
All activity using approved powerful system utilities is to be logged and sent to the SIEM tool.
Comments
0 comments
Please sign in to leave a comment.