Server Administrator

Duties

Server Administrators are required to install servers and maintain servers. Server maintenance includes regular checking of event and error logs, updating server software, and troubleshooting problems.

Skills Required

Server Administrators must have knowledge about server configurations and operations. They must be able to install a server operating system, diagnose and remediate problems, set privilege levels and permissions, install programs, manage user accounts, understand and set windows domain policy.

Policies Affecting Server Administrators

Must Take Specific action

  • Password Policy - Needs to understand the password requirements and be sure windows domain policy, server service accounts, and all accounts meet the requirements.
  • Privacy and Confidentiality Policy - Server administrators must be sure data stored on servers is adequately protected by setting appropriate access privileges for users and groups.
  • Account Management Policy - Server administrators are an essential part of the account management process and must add, modify, disable, and remove accounts in a timely manner.
  • Employee Termination Policy - Server administrators must follow the process for account managment when employees terminate their relationship with the organization.
  • Logon Banner Policy - Server administrators must ensure that logon banners are enabled on servers and that they meet the policy requirements.
  • Network Documentation Policy - Server administrators must meet the requirements of this policy when they manage network devices or other devices requiring network documentation. These devices include switches, routers, and firewalls but may include other devices.
  • Network and Server Scanning Policy - Server administrators must know when scans are performed on servers they manage. They must also be aware of scanning tools and know how to use them to scan their servers to check for vulnerabilities so they can be addressed.
  • Surf Control Policy - Server administrators that manage surf control servers must know this policy well and enforce it through configuration of the surf control devices.
  • Software Tracking Policy - Server administrators must be sure the software they use is recorded in the library software tracking database and be sure it is stored in the recorded location according to related established processes.
  • Virus Protection Policy - Server administrators must be able to scan server systems for viruses, check to be sure the anti-virus software is up to date, and fix anti-virus problems. Server administrators shall follow procedures for installing anti-virus programs on servers as required.
  • Patch Management Policy - Server administrators must operate servers in compliance with this policy according to established change management processes.
  • System Lockdown Policy - Server administrators must understand what services should be required and operational on the servers that they work on and shut down all unneeded services as part of the server hardening process.
  • Server Monitoring Policy - Server administrators must monitor the servers they are responsible for in accordance with this policy and associated procedures.
  • Backup and Recovery Policy - Server administrators must perform and/or check backups regularly according to the policy and processes. They must also periodically test the ability to restore from backup media. Backup administrators must follow the policy and processes for rotating tapes, drive cleaning, and other duties.
  • Server Documentation Policy - Server administrators must keep server information on the list current as changes to servers are made. When changes are made to servers a means ot make affected parties and help desk staff aware of the changes must be utilized.
  • Computer and Printer Naming Policy - Server administrators must know how to name servers that they set up according to the policy.
  • IP Address Assignment Policy - Server administrators must understand how to set up servers in compliance with this policy.
  • Audit Trail Policy - Server administrators must configure server logging in accordance with this policy and associated procedures.
  • Authentication Mechanism Policy - Server administrators must be sure equipment being placed in service adheres to this policy.
  • Computer Center Operations Policy - Server administrators and their management must be sure the server environments supporting the servers meet this policy.
  • Computer Forensics Policy - Server administrators must be familiar with this policy so they know how to preserve evidence in cases of security and unacceptable use incidents. They should be trained in this area regarding both techniques, policies, and procedures. They must be able to quickly recognize situations where an investigation should be launched and ensure evidence preservation.
  • Server Security Policy - Server administrators must secure servers they manage according to this policy, associated policies, and associated procedures.
  • Workstation Configuration Policy - Server administrators must be familiar with this policy and know how to configure servers and Active Directory policy objects so Windows domain member workstations are in compliance with the policy.
  • Email Policy - Email server administrators must configure email servers to filter email in compliance with this policy and associated procedures. Server administrators must be sure inbound content is properly scanned for hostile content and filtered.
  • Server Setup and Configuration Policy - Server administrators must be sure this policy new servers meet needs according with this policy and work with systems engineers. Servers should be properly optimized and configured in accordance with this policy.
  • Certification and Accreditation Policy - Server administrators must work with assessors when systems must be certified or accredited according to this policy and associated procedures.
  • Information Sensitivity Policy - Server administrators must be aware of this policy and observe to be sure it is not violated when sensitive information is stored on servers or transmitted between servers. Servers must meet minimum security requirements appropriate to the sensitivity of data stored on them.
  • Database Passwords Policy - Database server administrators must be sure the servers and databases comply with this policy.
  • Encryption Policy - Server administrators must be sure certificates on servers, key management methods, data storage, and data transmission are in compliance with this policy.
  • Incident Response Policy - Server administrators must be familiar with this policy and follow it and associated procedures. They must be able to quickly recognize situations where a computer security incident has occurred or is in progress and notify the security section to begin an investigation while ensuring evidence is preserved. They should be able to help remediate incidents on servers and improve security.
  • Intrusion Detection Policy - Server administrators must use intrusion detection on servers where required according to policy and communicate security incidents according to policy and associated procedures. Some administrators may operate network intrusion detection devices and they must follow proper procedures in incident management.
  • Disaster Recovery Policy - Server administrators must be familiar with disaster the recovery policy and associated processes with knowledge about their role. The server administrator should know how to quickly perform their role in such areas of hard drive failure, server damage or more severe incidences.
  • Segregation of Duties Policy - Server administrators must follow this policy and enforce it for users through account management and Windows domain policies.

Must be Aware

  • Browser Configuration Policy - Server administrators must be familiar with browser configurations and associated security risks. Server administrators should not use a server browser to surf the internet since a server could be compromised this way.
  • Computer Training Policy - Server administrators should be aware of computer training opportunities and skills that will improve their performance. They should request additional training where appropriate and their supervisor should also recommend training.
  • User Privilege Policy - Server administrators should enforce this policy using Windows domain settings and by setting user and group privileges for object access.
  • Approved Application Policy - Must not install unapproved applications on servers and be aware of unapproved applications on systems that they service.
  • Wireless Communication Policy - Server administrators must be sure any systems they set up or maintain are using approved wireless technologies and are properly configured.
  • Perimeter Security Policy - Server administrators must be sure that servers that they install are compliant with this policy and associated procedures. When they manage perimeter security devices they must be sure logs are properly protected and that they comply with device and network traffic flow requirements.
  • Risk Assessment Policy - Server administrators may need to take risk mitigation steps associated with the servers.
  • Physical Security Policy - Server administrator access will need to comply with this policy and may have entry to server rooms logged.
  • Change Management Policy - Changes to servers must comply with this policy.
  • Auditing Policy - Server administrators must be aware of what items auditors check and how it affects their job.
  • Technology and System Management Policy - Server administrators must implement capacity planning for network devices and network cabling.
  • Preventative Maintenance Policy - Server administrators must follow preventative maintenance processes and use approved tools. Server administrators need to be aware of preventative maintenance contracts and what systems are covered.
  • Technology Planning Policy - Server administrators must be aware of the current technology plan.
  • Configuration Management Policy - Server administrators must be sure changes to systems are logged and follow the associated procedures. Server administrators should know where to go to determine whether changes have recently been made to systems.
  • Emergency Access Policy - Server administrators must be aware of this policy, what their roles are during emergencies, and what access may need to be granted either to them or others.
  • Service Monitoring Policy - Server administrators must understand the their provided services and server services are monitored and how it can affect their job.
  • Quality Policy - Server administrators must be aware of the quality policy and may be able to help to improve the quality process by suggesting improvements.

Affects Job but Awareness not Required