IT Employment

Yes it is your responsibility to protect the network as an admin. BUT....If you've walked into a big mess that hasn't been setup and configured properly, (I assume you told the boss this)then it is YOUR responsibility to bring the network into proper shape and secure it.

If you have spoken to "the powers that be" about it, and were ignored, the burden is on them. If you were told to update the network and were given sufficient time and resources, it is YOUR problem.

Your walking into this NEW position should remove any direct blame, however, now is your chance to make a case and get the products needed and apply your skills in order to prevent this happening again, or at least have the needed protection in place. We can't be completely immune.

Good luck,
OM

Unless you literally just walked onto the job the day before the virus or hacker hit you, you are going to get the blame (whether you really deserve it or not).

When accepting a new position that involves a mess of a network, you have to perform triage immediately.

Triage consists of performing a quick survey to determine problems and fixing the serious problems first (assuming they are fixable). Of course the ability to perform an effective triage greatly depends on your skills and your experience. You obviously can't fix a problem if you don't have the skills and experience to know the problem exists in the first place.

On a day to day basis, you must set your priorities to tackle the REALLY important things first. If you are given conflicting priorities that you cannot resolve("I know you are to get the broken email server back on line, but you need to fix this paper jam NOW!"), you need to bring this to the attention of your boss and let them share some of the heat. You probaly have a pretty good idea of what your priorities need to be. Make sure your boss understands those priorities and agrees with them.

One other note:
It's one thing to get hit by a hacker using a previously unknown exploit, or a brand new virus. It's an entirely different matter if security patches and virus updates for known exploits and viruses are available and you haven't applied them yet.

If you have just joined a company and they are connected to the net.

Then your first and foremost priority should be to connectivity and the firewall. User support takes a back seat. Since if your network is hacked then you have to shut it down anyways.

Taking over a new network is always hard. But start at where you are most vulnerable and work from there.

Once it is your design, if you get hacked, then it is your responsibility.

please see http://techrepublic.com.com/5208-6230-0.html?forumID=3&threadID=135926&start=0
its sort of the scenario i am talking about ( small company/no written policy)

To be or not to be .. liable!

That's a good question. Based on your facts, I may say the followings:

- as Sys Admin it's your duty to maitain/secure the network
- it is also up to you to write down and pass forward - to whom it may concern :)) - the problems you detected on the network and the sollutions you are going to implement
- if it's a new LAN you are administering, the best start to do is to ask for all documentation about the network. It is not that easy to start when you don't even know where the server's room is :)) - or what the servers are.
- about the "jamming paper and all" - write down a paper (or more) about "How to solve common problems" and give this to the users. You have to understand that if you are not going to teach your users to do by themselves some common tasks (not the very hard ones, just those that need only to read and perform (such as paper jamming - which is pretty good explained on every printer how to solve))- and you have to explain that to the manager as well - you will never be able to perform the job you were taken for.

About the mistakes we do - of course we are/were doing lots- that's how we learn :). I have a saying: who's not working is not mistaken!
But, and there allways is a but, take this advice: do the mistakes that you can solve in less than 5 minutes orelse ... meaning: think twice before you press that YES button on the screen :).

And now, at the end - to be liable or not, this is something that is hard to say. Why? Because if a hacker hacks your network - that did not mean that you were wrong. Security is really the most important thing, but keep in mind: the best securized computer is the one closed :)). I mean, yes - **** happen sometimes, it's your responsibility to solve it - and do it quick, this is the main point were someone can "note" you. To prevent something that even the programmers were not allowed about it's stuppid.

I am a Systems Administrator for the Marine Corps. Running an efficient network depends on allot of things. But to prevent infection from viruses and restore or create network security can be greatly assisted by a good knowledge of hacking. I first started creating virus at age 13 and then as I got older and more serious I created Trojan horses and email worms. But alas I realized that with this "High Tech Video Game" could have negative reflections on my career. In the end it became advantageous to know how viruses worked and how to stop them and how they are created. Know your enemy!!! Also grab a few test viruses or Trojans that don?t have payloads from one of those hacker websites like www.warez.com send them to your server quarantine them and defeat them. And with Trojans and backdoors attempt to install them remotely to your network and see if the firewall restricts it. If you find loopholes patch them up. Be a hacker and you will understand network security!