Appendix B. SLA Template
In this appendix, you will find a sample service level agreement (SLA) for supporting security event feeds from network devices. This sample SLA is arranged between the network support team (NetEng) and the team to whom security monitoring is assigned (InfoSec). Following the practice of this book, the scope belongs to our fictitious company, Blanco Wireless.
Service Level Agreement: Information Security and Network Engineering
Overview
This is a service level agreement (SLA) between Information Security (InfoSec) and Network Engineering (NetEng). The purpose of this document is to clarify support responsibilities and expectations. Specifically, it outlines:
Services provided by NetEng to support network security event recording for monitoring and incident response
General levels of response, availability, and maintenance associated with these services
Responsibilities of NetEng as a provider of these services
Responsibilities of InfoSec as the client and requester of these services
Processes for requesting and communicating status of services
This SLA shall remain valid until terminated. Approval and termination indications are noted by signatures in “8.1: Approvals.”
Service Description
This service includes configuration of network devices to support security monitoring. It specifically requires:
NetFlow configuration to InfoSec NetFlow collectors
Logging configuration to log appropriate syslog messages to InfoSec syslog collectors
SPAN configuration on routers to ...
Get Security Monitoring now with the O’Reilly learning platform.
O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.
