Objective:
The IT Security Operation Checklist provides guidelines for IT professionals to perform the daily, weekly, and monthly maintenance and administrative tasks required to keep your infrastructure components and application systems performing optimally. In addition, a checklist is available to help IT to prepare for disaster recovery efforts, and it helps to keep an IT system operation smoothly. The checklist divides into three sections: 1) IT Infrastructure Components Security Operation Schedule, 2) Servers Backup Operation Log, 3) MFGPRO ERP Operation Log. Take reference to the following checklists as a sample, or adapt them to suit your company’s specific needs.
1. IT Infrastructure Components Security Operation Schedule
| IT Infrastructure Components Security Operation Schedule | Verion 1.0 Author: Goldman Date: 18 Feb2005 |
Note 1 : Executor should sign-off with date after process. |
Note 2 : “U” – un-process or cancel to process; {Blank} – planning to process, “X” – processed | ||||
| Schedule | Subject | Target | Tool | Executor | Report | Record | Baseline |
| Week-Day | Configuration & Patch | H/W & S/W Inventory List Update | Goldman | Inventory List (In case of update) | Log Db | Y | |
| Server Password List Update | Goldman | Password List (in case of update) | Safety Box | Y | |||
| Ad-Hoc Win Hot-Fixes & Virus Update | Goldman | Alert Report (In case of incident) | Log Db | Y | |||
| Incident&Response | Instruction Detection Analysis | Snort | Goldman | Snort Report (in case of incident) | Log Db | ||
| In case of HW/SW/Network Incident | Roman | Alert Report (In case of incident) | Log Db | ||||
| Weekly | Configuration & Patch | Ad-Hoc Win Hot-Fixes, Patch & Virus Update | Reeve | Alert Report (In case of incident) | Log Db | ||
| Security Assessment | Instruction Detection Analysis | Snort | Goldman | Snort Report (in case of incident) | Log Db | ||
| Review Firewall Log File | Cisco Firewall | Goldman | Alert Report (in case of incident) | Log Db | |||
| Off-Site Backup | Off-Site Backup Tape Delivery | Goldman | |||||
| Monthly | Configuration & Patch | Win Patch Verification & Status Report | Vendor Web Site | Goldman | Alert Report (In case of incident) | Log Db | |
| Win Virus DAT Verification & Status Report | kix | Goldman | Alert Report (In case of incident) | Log Db | |||
| Review ux3 UNIX Log File (sulog,aset, passwd) | Goldman | ||||||
| Review ux2 UNIX Log File (sulog,aset, passwd) | Goldman | ||||||
| Review Hyperion UNIX Log File (sulog,aset, passwd) | Goldman | ||||||
| Review Linux Log File (sulog,aset, passwd) | Goldman | ||||||
| Review hysl Server log (Application, Security & System Log) | Goldman | ||||||
| Review hyweb Server log (Application, Security & System Log) | Goldman | ||||||
| Review hyrpt Server log (Application, Security & System Log) | Goldman | ||||||
| Review ms032 Server log (Application, Security & System Log) | Goldman | ||||||
| Review ms002 Server log (Application, Security & System Log) | Goldman | ||||||
| Review ms044 Server log (Application, Security & System Log) | Goldman | ||||||
| Bi-Monthly | Configuration & Patch | UNIX Patch Status Report | Vendor Web Site | Goldman | Log Db | ||
| Monthly | Security Assessment | Network H/W Scanning | Nessus | Goldman | Nessus Report | Linux | |
| Instruction Detection | Snort | Goldman | Snort Report | Linux | |||
| Password Cracking | Unix Password Cracking (MFG/PRO) | John the Ripper | Goldman | JTR Report | Log DB | ||
| Unix Password Cracking (Hyperion) | John the Ripper | Goldman | JTR Report | Log DB | |||
| Window Password Cracking | LC4 | Goldman | LC4 Report | Linux | |||
| Printer Setting | Printer Security Check | Goldman | Excel(Result) | Log DB | |||
| Excel(Password Information) | Safety Box | Y | |||||
| Annually | Security Assessment | War-Dialing | PhoneSweep-SCAN | Goldman | PhoneSweep-SCAN Report | Log DB | |
| Annually | DRP | MFG/PRO DRP Test Drill | MFG/PRO | Goldman | DRP Report | Log DB | |
| Servers Capacity Plan | Servers Capacity Plan (cover all servers) | Goldman | Capacity Plan Report | ||||
2. Servers Backup Operation Log
| Servers Backup Operation Log | Verion 1.0 Author: Goldman Date: 18 Feb2005 |
Note 1 : Executor should sign-off with date after process.Note 2 : “X” – processed; |
U – un-process or cancel to process; {Blank} – planning to process, | Year 2005 Week # | ||||||
| Schedule | Subject | Target | Tool | Executor | Day | 1 | 2 | 3 | 4 | 5 |
| Daily | UNIX & Window Servers Data Backup | MFG/PRO Life Data (hkhkgclux3) | tar (DDS3) | Goldman | Mon | |||||
| Tue | ||||||||||
| Wed | ||||||||||
| Thu | ||||||||||
| Fri | ||||||||||
| Hyperion Life Data (hy-ess) | tar (sDTL) | Goldman | Mon | |||||||
| Tue | ||||||||||
| Wed | ||||||||||
| Thu | ||||||||||
| Fri | ||||||||||
| Hyperion RDBMS Data (hysl) | Export to Hy-Web for backup | Goldman | Mon | |||||||
| Tue | ||||||||||
| Wed | ||||||||||
| Thu | ||||||||||
| Fri | ||||||||||
| Hyperion web Server (hy-web) | Arcserve (LTD2) | Goldman | Mon | |||||||
| Tue | ||||||||||
| Wed | ||||||||||
| Thu | ||||||||||
| Fri | ||||||||||
| Hyperion report Server (hy-rpt) | Arcserve (LTD2) | Goldman | Mon | |||||||
| Tue | ||||||||||
| Wed | ||||||||||
| Thu | ||||||||||
| Fri | ||||||||||
| Target | Tool | Executor | Day\week | 1 | 2 | 3 | 4 | 5 | ||
| File & Print Server (hkhhkglco8ms032) | Veritas (DTL4) | Goldman | Mon | |||||||
| Tue | ||||||||||
| Wed | ||||||||||
| Thu | ||||||||||
| Fri | ||||||||||
| File & Print Server (hkhhkglco8ms002) | Veritas (DTL4) | Goldman | Mon | |||||||
| Tue | ||||||||||
| Wed | ||||||||||
| Thu | ||||||||||
| Fri | ||||||||||
| File & Print & microsoft Server (hkhhkglco8ms044) | Veritas (DTL4) | Goldman | Mon | |||||||
| Tue | ||||||||||
| Wed | ||||||||||
| Thu | ||||||||||
| Fri | ||||||||||
| Weekly | UNIX Data Backup | MFG/PRO Testing Data (hkhkgclux2) | tar (DDS3) | Goldman | ||||||
| Monthly | UNIX & Window Servers Full/OS Backup | MFG/PRO Production Machine (hkhkglcux3) | ufsdump (DDS3) | Goldman | ||||||
| Hyperion Essbase Production Machine (hy-ess) | ufsdump (sDTL) | Goldman | ||||||||
| MFG/PRO Testing Machine (hkhkglcux2) | ufsdump (DDS3) | Goldman | ||||||||
| DNS & SMTP Server (hkhkglcp2) | Nil (backup device not available) | |||||||||
| Linux Machine | Ghost image saved in hkhhkglco8ms044/D$/images/linux | Goldman | ||||||||
| CAD5 Svr | Nil (backup device not available) | |||||||||
| ProIntralink Svr | Nil (backup device not available) | |||||||||
| Hyperion Analyzer + Planning Server (hysl) | Arcserve (LTD2) | Goldman | ||||||||
| Hyperion web Server (hy-web) | Arcserve (LTD2) | Goldman | ||||||||
| Hyperion report Server (hy-rpt) | Arcserve (LTD2) | Goldman | ||||||||
| File & Print + Distiller Srvs (hkhhkglco8ms032) | Veritas (DTL4) | Goldman | ||||||||
| File & Print Srvs (hkhhkglco8ms002) | Veritas (DTL4) | Goldman | ||||||||
| File & Print + Microsoft SUS Srvs (hkhhkglco8ms044) | Veritas (DTL4) | Goldman | ||||||||
| HRIS (hkhhkglch8rc001) | Ghost | Goldman | ||||||||
| Sec W2k Server (hkhhkglco8ms040) | Ghost | Goldman | ||||||||
| Critix + BDC (hkhhkglco8ms001) | Ghost | Goldman | ||||||||
| Oracle 8.1 Server (hkhhkglcf8ms002) | Ghost | Goldman | ||||||||
| Notes 4.6.5 Svr (hkg04) | Ghost | Goldman | ||||||||
| Notes 5.05 development Svr (hkgdev01) | Ghost | Goldman | ||||||||
| Notes 4.65. Svr (hkg02) | Ghost | Goldman | ||||||||
3. MFGPRO ERP Operation Log
| MFGPRO ERP Operation Log | Verion 1.0 Author: Goldman Date: 18 Feb2005 |
Note 1 : Executor should sign-off with date after process. |
Note 2 : “U” – un-process or cancel to process; {Blank} – planning to process, “X” – processed | Year 2005 Week # | ||||||
| Schedule | Subject | Executor | Follow-up Action | Record | Day | 1 | 2 | 3 | 4 | 5 |
| Every Week-Day |
MFG/PRO Life Data Backup Monitoring | Goldman | Take follow-up action in case of error | IT HelpDesk Db | Mon | |||||
| Tue | ||||||||||
| Wed | ||||||||||
| Thu | ||||||||||
| Fri | ||||||||||
| EDI Import/Export OR & IV Monitoring | Goldman | Take follow-up action in case of error | IT HelpDesk Db | Mon | ||||||
| Tue | ||||||||||
| Wed | ||||||||||
| Thu | ||||||||||
| Fri | ||||||||||
| Daily Batch Job Monitoring | Goldman | Take follow-up action in case of error | IT HelpDesk Db | Mon | ||||||
| Tue | ||||||||||
| Wed | ||||||||||
| Thu | ||||||||||
| Fri | ||||||||||
| Weekly | MFG/PRO Testing Data Backup Monitoring | Goldman | Take follow-up action in case of error | IT HelpDesk Db | ||||||
| Weekly Batch Job Monitoring | Goldman | Take follow-up action in case of error | IT HelpDesk Db | |||||||
| Off-site backup delivery | Goldman | Update Log Sheet | Log Sheet | |||||||
| Proform the EDI Import for RA01/RA02/IV01 | Goldman | Email report to end-users | ||||||||
| Monthly | O/S & DataBase Performance Analysis | Goldman | Take follow-up action in case of error | IT HelpDesk Db | ||||||
| Arhive & Backup GL, Inv, WO & Operation Txn Data | Goldman | Update Log Sheet | Log Sheet | |||||||
| Backup archive Data (/eisa/mo, /mfgproce/edimsg, /tmp1) |
Goldman | Update Log Sheet | Log Sheet | |||||||
| Erase archive Data after Backup (/eisa/mo, /mfgproce/edimsg, /tmp1) |
Goldman | Update Log Sheet | Log Sheet | |||||||
| Phiger Export Data Monitoring | Goldman | Take follow-up action in case of error | IT HelpDesk Db | |||||||
| FnA month-end operation support | Goldman | Take follow-up action in case of error | IT HelpDesk Db | |||||||
| Annually | Arhive & Backup GL consolidation/PO/SO Data | Goldman | Update Log Sheet | Log Sheet | ||||||
| FnA Year-End operation support | Goldman | Take follow-up action in case of error | IT HelpDesk Db | |||||||