AS-5-Discussions,Assignments
Colin Horn
winsec3e_ppt_ch10.pptxSecurity Strategies in Windows Platforms and Applications
Lesson 10
Microsoft Windows Security Administration
© 2021 Jones and Bartlett Learning, LLC, an Ascend Learning Company
www.jblearning.com
All rights reserved.
Cover image © Sharpshot/Dreamstime.com
Page ‹#›
Security Strategies in Windows Platforms and Applications
© 2021 Jones and Bartlett Learning, LLC, an Ascend Learning Company
www.jblearning.com
All rights reserved.
1
Learning Objective(s)
Explain the role of Microsoft Windows security administration, security policies, and monitoring.
Page ‹#›
Security Strategies in Windows Platforms and Applications
© 2021 Jones and Bartlett Learning, LLC, an Ascend Learning Company
www.jblearning.com
All rights reserved.
Key Concepts
Windows security administration
Security policies, standards, procedures, and guidelines
Due diligence and regulatory compliance
Page ‹#›
Security Strategies in Windows Platforms and Applications
© 2021 Jones and Bartlett Learning, LLC, an Ascend Learning Company
www.jblearning.com
All rights reserved.
Security Administration Overview
Security administration
The process of putting security controls into effect within the IT infrastructure
Security administrators configure and maintain computers and devices to uphold security policy
Tasks center on Windows server and workstation computers, other devices, user accounts, authentication methods, and much more
Page ‹#›
Security Strategies in Windows Platforms and Applications
© 2021 Jones and Bartlett Learning, LLC, an Ascend Learning Company
www.jblearning.com
All rights reserved.
Security Administration Cycle
Page ‹#›
Security Strategies in Windows Platforms and Applications
© 2015 Jones and Bartlett Learning, LLC, an Ascend Learning Company
www.jblearning.com
All rights reserved.
5
Security Administration Tasks
Provide input for acceptable use policies (AUPs)
Enforce password controls
Enforce physical security standards
Deploy controls to meet encryption requirements
Implement backup policies
Keep software up to date
Ensure anti-malware controls are current and in force
Monitor log files
Monitor system and network performance
Page ‹#›
Security Strategies in Windows Platforms and Applications
© 2015 Jones and Bartlett Learning, LLC, an Ascend Learning Company
www.jblearning.com
All rights reserved.
Maintaining the C-I-A Triad in the Microsoft Windows OS World
Page ‹#›
Security Strategies in Windows Platforms and Applications
© 2015 Jones and Bartlett Learning, LLC, an Ascend Learning Company
www.jblearning.com
All rights reserved.
7
Microsoft Windows OS Security Administration
Page ‹#›
Security Strategies in Windows Platforms and Applications
© 2015 Jones and Bartlett Learning, LLC, an Ascend Learning Company
www.jblearning.com
All rights reserved.
8
Firewall administration
Performance monitoring
Backup administration
OS service pack administration
Microsoft Windows OS Security Administration
Page ‹#›
Security Strategies in Windows Platforms and Applications
© 2015 Jones and Bartlett Learning, LLC, an Ascend Learning Company
www.jblearning.com
All rights reserved.
9
Group Policy administration
DACL administration
Encryption administration
Anti-malware software administration
Firewall Administration
Page ‹#›
Security Strategies in Windows Platforms and Applications
© 2015 Jones and Bartlett Learning, LLC, an Ascend Learning Company
www.jblearning.com
All rights reserved.
Windows Firewall with Advanced Security MMC Snap-in
10
Performance Monitor
Page ‹#›
Security Strategies in Windows Platforms and Applications
© 2015 Jones and Bartlett Learning, LLC, an Ascend Learning Company
www.jblearning.com
All rights reserved.
11
Backup Administration
Page ‹#›
Security Strategies in Windows Platforms and Applications
© 2015 Jones and Bartlett Learning, LLC, an Ascend Learning Company
www.jblearning.com
All rights reserved.
Windows Backup and Restore for Windows 7
12
Backup Administration (Cont.)
Page ‹#›
Security Strategies in Windows Platforms and Applications
© 2015 Jones and Bartlett Learning, LLC, an Ascend Learning Company
www.jblearning.com
All rights reserved.
Windows Server Backup
13
OS Service Pack Administration
Page ‹#›
Security Strategies in Windows Platforms and Applications
© 2015 Jones and Bartlett Learning, LLC, an Ascend Learning Company
www.jblearning.com
All rights reserved.
Microsoft Baseline Security Analyzer (MBSA) utility
Evaluates computers in accord with Microsoft security recommendations
Checks to ensure the OS and current Microsoft software are up to date
14
Group Policy Administration
Page ‹#›
Security Strategies in Windows Platforms and Applications
© 2015 Jones and Bartlett Learning, LLC, an Ascend Learning Company
www.jblearning.com
All rights reserved.
Group Policy Management Console
15
DACL Administration
Page ‹#›
Security Strategies in Windows Platforms and Applications
© 2015 Jones and Bartlett Learning, LLC, an Ascend Learning Company
www.jblearning.com
All rights reserved.
Object Properties dialog box
16
DACL Administration (Cont.)
Page ‹#›
Security Strategies in Windows Platforms and Applications
© 2015 Jones and Bartlett Learning, LLC, an Ascend Learning Company
www.jblearning.com
All rights reserved.
DACL Advanced Security Settings
17
Encryption Administration
Page ‹#›
Security Strategies in Windows Platforms and Applications
© 2015 Jones and Bartlett Learning, LLC, an Ascend Learning Company
www.jblearning.com
All rights reserved.
Object Properties—Advanced Attributes
18
Encryption Administration (Cont.)
Page ‹#›
Security Strategies in Windows Platforms and Applications
© 2015 Jones and Bartlett Learning, LLC, an Ascend Learning Company
www.jblearning.com
All rights reserved.
Enabling BitLocker
19
Encryption Administration (Cont.)
Page ‹#›
Security Strategies in Windows Platforms and Applications
© 2015 Jones and Bartlett Learning, LLC, an Ascend Learning Company
www.jblearning.com
All rights reserved.
BitLocker Management Tool
20
Anti-Malware Software Administration
Key steps in staying malware free:
Require antivirus and anti-spyware software for every computer before you allow it to connect to your network.
Ensure that all anti-malware software is current and all data are up to date.
Scan each computer at least weekly to search for malware.
Ensure anti-malware shield software runs on every computer that connects to your network.
Page ‹#›
Security Strategies in Windows Platforms and Applications
© 2015 Jones and Bartlett Learning, LLC, an Ascend Learning Company
www.jblearning.com
All rights reserved.
21
Ensuring Due Diligence and Regulatory Compliance
Page ‹#›
Security Strategies in Windows Platforms and Applications
© 2015 Jones and Bartlett Learning, LLC, an Ascend Learning Company
www.jblearning.com
All rights reserved.
Compliance
Ensures items in each domain of your IT infrastructure meet or exceed your security goals
Should include all legal, regulatory, and standard requirements
Implement compliance requirements to minimize the impact on business
drivers. Business drivers are the components (including people), information, and
conditions that support business objectives.
Due diligence
The ongoing attention and care an organization places on security and compliance
You can reduce your exposure to third-party liability by investing resources into
establishing and maintaining compliance
22
Compliance
Due Diligence
Microsoft Compliance Manager
Page ‹#›
Security Strategies in Windows Platforms and Applications
© 2015 Jones and Bartlett Learning, LLC, an Ascend Learning Company
www.jblearning.com
All rights reserved.
23
Security Policies, Standards, Procedures, and Guidelines
Guidance Documents
Security policy
Security standard
Security procedure
Security guidelines
Main Security Elements
Clearly stated security goals
Documented plans
Communication with stakeholders
Page ‹#›
Security Strategies in Windows Platforms and Applications
© 2015 Jones and Bartlett Learning, LLC, an Ascend Learning Company
www.jblearning.com
All rights reserved.
24
Best Practices for Microsoft Windows OS Security Administration
Clearly state security goals.
Include all compliance requirements.
Use the PDCA method.
Communicate with all stakeholders.
Strive for simplicity.
Search for controls that have little impact on users.
Coordinate AUPs with technical controls.
Automate as much as possible.
Use AD GPOs.
Page ‹#›
Security Strategies in Windows Platforms and Applications
© 2015 Jones and Bartlett Learning, LLC, an Ascend Learning Company
www.jblearning.com
All rights reserved.
25
Best Practices for Microsoft Windows OS Security Administration (Cont.)
Coordinate physical and technical controls.
Use anti-malware controls.
Develop a plan to monitor system and network performance.
Use up-to-date software.
Examine log files.
Stay current on emerging attacks.
Test your recovery plans.
Define DACLs.
Page ‹#›
Security Strategies in Windows Platforms and Applications
© 2015 Jones and Bartlett Learning, LLC, an Ascend Learning Company
www.jblearning.com
All rights reserved.
26
Summary
Windows security administration
Security policies, standards, procedures, and guidelines
Due diligence and regulatory compliance
Page ‹#›
Security Strategies in Windows Platforms and Applications
© 2015 Jones and Bartlett Learning, LLC, an Ascend Learning Company
www.jblearning.com
All rights reserved.
27
