Section 4.9.6 IT Security Manager
The IT Security
Manager shall be responsible for:
(1) preparing and maintaining Security Guidelines for Computers Used to
Run Web Servers
(2) preparing and maintaining Backup Guidelines for Computers Used to Run
Web Servers
(3) advising Web Administrators on the security of computers used
to run Web Servers and on the security of Web Servers
(4) completing security audits of operating system and Server
software on those computers used to run designated Central MurdochNet Servers
(5) liaising with Web Administrators, or the person responsible
for management of IT within an organisation unit or resource area re security
audits of Web Servers
(6) completing security audits of operating system and Server
software on those computers used to run MurdochNet Servers and Affiliated Web
Servers, where the Servers use IP addresses outside an Internet Accessible
Subnet
(7) resolving situations where a Server is found to be performing
the role of an Internet Content Host without appropriate authorisation
(8) resolving situations where a computer on the Murdoch
University Network is being used to run a Server using an alternate domain name
that has not been approved, authorised, or registered and there is no
corresponding entry in the University’s DNS
(9) liaising, as required, with the Director, Office of
Information Technology Services, or a Head of Division, or a member of the
Senior Executive when a Server is determined to be being used inappropriately
as defined in Section 3.1.4 of the Code of Conduct
(10) if and when instructed by the Vice Chancellor (or their
official nominee), accessing a computer used to run a Server for the purposes
of determining whether or not its use is inappropriate use as defined in Section 3.1.4 of the Code of Conduct.
|
