Hello there!
I'm looking for any comments on large or small companies who have
implemented firewalls in an intranet environment where arguments have
broken out over who should have "physical" access and control over
maintenance of the firewall rulebase: the server O/S administrators, the
network folks, or the business owners of data on the servers the
firewall protects?
(What the rule base should be is not necessarily the argument - it's
just physical read/write access and control over the box)
Nothing more interesting than to watch a power struggle for control over
something and to hear the arguments for that control...."I have legal
responsibilities and can't trust your group", "it's a network device so
it's my job", "it's my data it's protecting so it's my job", "you're a
network person and don't know the FW O/S", "our department bought the
firewall", "let's install it and not give them the password", "our group
has 24 X 7 support capability in case something goes wrong in the
computer room", etc.
Any comments serious or comical are encouraged (I could use some humor
at the end of the week). At what level in the organization should you be
taking names, kickin' derriere, and calling the "firewall control"
shots that cuts through (the sometimes petty) issues at the department
level? What is the best logic you have used to get all parties to
happily agree?
But then again maybe I'm the only one who has run into this one unlikely
circumstance?
Thanks, Roger
Follow-Ups:
References:
|
|
