Recommendations to secure administration of IT systems

This guide describes the security objectives and the principles for developing a secure technical architecture for administration. It proposes elements that are useful in assisting with the design. It presents a few concrete use cases but does not intend to be complete.

This document is intended for readers that have a minimum amount of knowledge to apprehend the security recommendations that are presented and the ability to adapt these recommendations to their specific context and needs. One must also refer to its organisation’s IT system security policy and to the results of the risk analysis in order to determine the most pertinent recommendations to implement.