Administration

Text transcript

Audio transcript

Administrative activities are performed by:

  • Network Operations Centers
  • Computer Security Incident Response Teams
  • Computer Incident Response Teams
  • Computer Emergency Response Teams
  • System Administrators

These activities include:

  • Monitoring and detecting unauthorized activities
  • Capturing audit log information
  • Safeguarding the log for evidentiary purposes in a court of law
Information systems administrative personnel are responsible for day-to-day CND activities. These personnel ensure that access to information will be granted on a need to know basis only and in accordance with established policies. Administrative personnel are the first line of defense in detecting and preventing unauthorized access to information.

Next Computer Network Defense Main Menu Resources Glossary