Specifications include, but are not limited to: Routine operational support, including: • Attainment of the performance standards described in the next section. • Develop and recommend Information Technology Policy for COTR review. • Oversee implementation of approved IT Policy. • Provide guidance for configuration of network devices (workstations, firewalls, IDS, switches, etc.) • Coordinate with and provide guidance to outside security services providers (e.g. MSSP Contractor). • Review and approve all security related changes (router settings, firewall settings, switch settings, account privileges, etc.) • Conduct and document reviews of network devices for conformance to IT Policy and security directives. • Coordinate with appropriate Airports Authority organizations for the physical security of IT facilities and resources • Coordinate with Airports Authority organizations to identify appropriate personnel security reviews required for sensitive IT positions • Monitor CERT (Computer Emergency Response Team) Coordination Center Announcements for virus and other information technology vulnerabilities • Monitor security configurations on all platforms • Ensure that appropriate security event logging is enabled on all servers and workstations
