Project Charter – Network Diagrams
advertisement
Project Charter Network Diagrams, Telecommunications Room Access And Practices Project Project Charter – Network Diagrams, Telecommunications Room Access And Practices Introduction From the 2012 Information Security Architecture Review Low Priority Observations 17.0 No formalization around updating of network diagrams Observation University network diagrams are currently high level holistic diagrams intended to describe logical aspects of specific segments of the network. Implication Without up to date network diagrams, it may not be possible (or be difficult) to perform an accurate risk assessment and implement appropriate security measures, There are certain because network certain aspects diagrams that of the network are used as and systems templates for may be different areas / overlooked. buildings. However, if changes are made to the network Page | 1 Recommendation Policies and processes should be implemented to ensure network diagrams are updated to reflect the actual state of the network whenever changes occur. Responsible Management comments party and and action plan timing The issues and responsibilities related to shared physical access to campus telecommunications rooms, and shared logical access to network equipment will be raised at the Campus Network Services Committee (CNSC) and Computing Also, periodic Technology and Services reviews should be Committee (CTSC). This performed to ensure will be followed by these diagrams meetings with staff remain accurate. members with access, and their managers, to Finally, review the review the conditions number of staff with and terms of access. physical and logical Access for some staff access to network may be discontinued if equipment, and no longer needed. restrict to those who An online system may be need access on an Bruce Campbell – Director, Network Services Winter, 2013 Project Charter – Network Diagrams, Telecommunications Room Access And Practices configuration, these changes are not reflected in network diagrams. ongoing basis. Ensure those who retain access are aware of the conditions and terms of access. developed which requires staff with physical and/or logical access to annually review the terms and conditions of access. Signage within TRs may be added. The staffing implications of maintaining accurate network diagrams for over 300 campus telecommunications rooms will be investigated. Automated network mapping systems, and systems to detect topology changes may be considered as an alternative to manually maintained diagrams in some cases. Faculty and departmental IT staff may be granted access to non 1-to-1 patched campus telecommunications rooms (TRs) for the purposes of installation and management of patch cables, per https://strobe.uwaterloo.ca/~twiki/pub/ISTNS/NetworkServicesResources/AugmentingISTNetworkServi ces.pdf Patch cables are not generally documented, and no system is available for their documentation. Page | 2 Project Charter – Network Diagrams, Telecommunications Room Access And Practices Objectives The objective of this project is to: Implement policies and processes to ensure network diagrams are updated to reflect the actual state of the network whenever changes occur, including periodic review to ensure these diagrams remain accurate. Review the number of staff with physical and logical access to network equipment, and restrict to those who need access on an ongoing basis. Ensure those who retain access are aware of the conditions and terms of access. Scope The scope of this project is implementation of the objectives for equipment and cabling in all campus telecommunications rooms and all parts of the campus network . Constraints, Assumptions and Risks Some network equipment is located in shared purpose rooms, and thus physical access cannot be restricted. Dependencies None. Budget None. Timeline Project to be completed by Winter 2013. Page | 3 Project Charter – Network Diagrams, Telecommunications Room Access And Practices Strategy Discuss issues and responsibilities related to shared physical access to campus telecommunications rooms, and shared logical access to network equipment, at the Campus Network Services Committee (CNSC) and Computing Technology and Services Committee (CTSC). Meet with staff members with logical and/or physical access, and their managers, to review the conditions and terms of access. Discontinue access if no longer needed. Develop and document best practices where applicable. Develop procedures which require staff with physical and/or logical access to annually review the terms and conditions of access. Consider automation of procedures where possible. Develop procedures to periodically review network diagrams, to ensure they remain accurate. Add Signage within TRs: CAMPUS TELECOMMUNICATIONS ROOM Equipment or cabling may not be installed, removed or changed without IST approval. Investigate staffing implications of maintaining accurate network diagrams for over 300 campus telecommunications rooms. Consider automated network mapping systems, and systems to detect topology changes, as an alternative to manually maintained diagrams in some cases. Resource Roles and Responsibilities Project Sponsor Project Leader Steve Bourque Project Team Dave Walsh, Engineering Page | 4 Project Charter – Network Diagrams, Telecommunications Room Access And Practices Approval This charter formally authorizes the Network Diagrams, Telecommunications Room Access And Practices Project, based on the information outlined in this charter. Should any of this information change throughout the duration of the project, it shall be discussed by [insert statement according to project’s governance on where changes are discussed] and documented under [insert statement where project’s documented changes are recorded]. Approved by: Approval Date: This approval was discussed by [insert where this approval was discussed] and documented at [insert where documentation for approval resides]. Revision History Page | 5
