This presentation looks at best practices and methods on how to gather, organize and maintain infrastructure knowledge across an IT organisation so that systems can be secure.
Securing the IT infrastructure against internal and external attack takes more than buying a few perimeter devices and updating some spreadsheets. As IT resources and skills are limited, focus is needed to constantly
- Understand how the infrastructure works,
- Identify where it is most vulnerable, and
- Make changes without causing disruption.