4. Network Management
The University of Oxford operates a devolved ICT structure in which responsibility for the management of computer systems and networks within departments and colleges rests with those departments and colleges. OUCS manages the backbone network, which connects departments, colleges and central services, and provides connectivity to the Internet through the UK Education and Research Network (JANET). Access for individual members is provided by the department and/or college to which they belong. All units are free to choose a model for implementation that best meets their individual needs in accordance with University policy.
Units' networks should be managed by suitably authorised and qualified staff to oversee its day to day running and to preserve its security and integrity in collaboration with individual system owners. Networks should be adequately managed and controlled to be protected from threats, and to maintain security for the systems and applications using the network, including information in transit. Networks and communications systems should all be adequately configured and safeguarded against both physical attack and unauthorised intrusion.
Appropriate network security devices (e.g. firewalls) should be implemented for networks to ensure that computer connections and information flows do not breach the access control policy of the unit or University. The security and configuration of network equipment (switches, routers, firewalls etc.) should be regularly reviewed and maintained. Security features, service levels and management requirements of all network services should be identified and included in any network services agreement, whether they are provided in-house or outsourced.
- Firewalls and Routing
- Network Administration
- Network Services
- Physical Security and Integrity