(From Analysis of the System Administrator Occupation Copyright © 2000 by SAGE, The System Administrators Guild.)
61. Evaluate potential problems, liabilities, and costs of potential or actual security attacks (i.e., risk analysis).
62. Identify/evaluate/implement security mechanisms and tools (e.g., IDS, tripwire utilities, intrusion prevention software, firewalls, TCP wrappers).
63. Formulate security procedures to prevent, detect, and respond to internal and external security threats (e.g., passwords).
64. Evaluate and create site security plans.
65. Monitor and detect security threats, holes, and attacks (e.g., viruses, detecting users with no passwords, unlocked administrative systems).
66. Analyze internal/external security attacks (e.g., scan system logs for incidents, analyze network packets, implement intrusion detection software).
67. Deploy and manage authentication systems (e.g., tokens, one-time passwords, Kerberos, NIS).
68. Manage cryptographic facilities to protect sensitive information in network applications (e.g., PGP encryption in electronic mail).
69. Respond, resolve, and report security incidents (e.g., unauthorized access to system).
70. Monitor emerging security threats/tools/issues (e.g., via security news groups, CERT).
71. Perform periodic security audits to ensure security has not been breached or compromised.