Recommendations to secure the administration of IT systems emphasize conducting a thorough risk analysis tailored to the organization’s specific environment, as administrative resources are high-value targets for attackers due to their elevated privileges. Key measures include segregating administration tools and stations by trust zones, deploying dedicated and secured servers for administrative functions, and implementing strict operational controls to minimize attack surfaces. Additional best practices involve restricting internet access on administrative workstations, enforcing strong authentication and encryption for remote access, regularly updating and patching systems, monitoring and logging administrative activities, and ensuring only authorized personnel have administrative privileges. These steps collectively aim to prevent compromise of administrative environments, protect against malware, and ensure the confidentiality, integrity, and availability of critical IT systems.
Publication's URL
https://cyber.gouv.fr/en/publications/recommendations-secure-administration-it-systemsAdditional documents on this topic
- CISA Principles for the Secure Integration of Artificial Intelligence in Operational Technology
- NIST SP 800-88 Rev. 2 Guidelines for Media Sanitization
- NIST IR 8349 Methodology for Characterizing Network Behavior of Internet of Things Devices
- CIS Controls Internet of Things Companion Guide ★★★★★
- NIST ZTA Component mapping to NIST CSF and Controls