Coming Soon

An innovative security and governance solution for SharePoint will soon be available here.

Improve Compliance and Risk Management

Protect Business-Critical Information and Processes.

Please contact info at SharePoint2007Security.com for more information.

governance

Risk Management with AS 4360:2004

Posted on 06. Jul, 2009 by Tristan in AS4360, governance, risk

The Australian standard AS/NZS 4360:2004 Risk Management - provides a description of a versatile and widely-applied risk management approach. It defines risk as

"…the possibility of something happening that impacts on your objectives. It is the chance to either make a gain or a loss. It is measured in terms of likelihood and consequence."

Security Governance

Posted on 11. Jun, 2009 by Tristan in audit logging, governance, model

SharePoint security governance is based around ensuring the confidentiality, integrity, and availability of information and services, while also ensuring that operational activities comply with relevant compliance requirements.

Security Metrics

Posted on 07. May, 2009 by Tristan in governance, metrics, process, risk, roi

Metrics are used to measure things. The problem they attempt to address is that of aligning organizational behavior with business goals. Good metrics provide visibility into performance, allowing for better informed decision-making, and can be used for forecasting and planning for future readiness and preparedness.

Administration accounts and roles

Posted on 02. May, 2009 by Tristan in accounts, administration, governance, guidance, roles

Administration can occur at a number of levels of granularity in SharePoint. Microsoft refers to this as a three-tier administration model.

The broadest, most powerful tier is that of Farm-level Administrators. This type of account provides control over the entire SharePoint farm.

Navigation

2 years 3 days ago

Introduction to Claims-based Authentication in SharePoint 2010 in plain English

2 years 15 weeks ago

Firewall rules and protocol usage

2 years 35 weeks ago

Access Control with SharePoint Groups

2 years 37 weeks ago

Section 508 Compliance with SharePoint

2 years 28 weeks ago

Using the People Picker Editor picker control

2 years 32 weeks ago

Authentication options

2 years 30 weeks ago

SharePoint Audit Logging and other Logs

2 years 30 weeks ago

Uncategorized's tweets

enjoying watching the #SPC11 conference videos - some great information on #SharePoint branding, deployment, customisation and governance. — 16 weeks 1 day ago
I'm looking for #SharePoint devs in #Canberra Australia for a leading-edge project. — 20 weeks 3 days ago
@givenscj it's a microsoft product - of course it integrates with their other products. ;-) — 24 weeks 2 days ago
#SharePoint Governance requires solid decision-making framework with clear roles and responsibilities. Start with people, not technology. — 25 weeks 3 days ago
#sharepoint 2007 gurus, when using FBA with Active Directory Membership provider, can you still manage security using AD groups? — 33 weeks 5 days ago
@BrianFarnhill what do you think about HiSoft 's compliance sheriff? lots of gov't customers demand WCAG 2 AA compliance with SharePoint. — 41 weeks 4 days ago
@givenscj another option is to address #SharePoint DR at virtualisation layer. #VMWare appear to lead here over hyper-v. — 44 weeks 2 days ago
@michellemcgee there's an article on my site about it that seems to be pretty popular - i really need to write part 2 sometime soon — 44 weeks 4 days ago
Should I be worried about the #accessibility results when I scan #sharepoint 2010 with Total Validator? 30+ #WCAG 2.0 errors.. — 44 weeks 6 days ago
@fernybell good luck! The slide decks and presentations from Microsoft conferences can be very helpful. — 45 weeks 4 days ago

Sharepoint 2007 and 2010 Security