I sympathize with you. At one time or another, we've probably all worked for a boss that didn't see the significance of security in information systems.
Here's my advice from working in the trenches for 20+ years: 1) Be proactive - Don't wait for a specific directive to do the right thing; however, follow company directives or policies if they exist. During a crisis will you be famous or infamous? 2) Document everything - Document any updates to the clients, servers or network. Keep work journals. Document all security incidents. Document all work related discussions with your superiors. Documentation is a SysAdmin's best friend. 3) Suggest an external security audit to your superiors. Some managers tend to believe the advice of external experts over in-house staff. An external security audit will probably also expose vulnerabilities that you've overlooked. 4) Look for a job where you'll be happy. Too many exciting jobs exist for anyone to spend their time in a job that gives them ulcers. Hope this helps... Steven (This account doesn't receive e-mail.) _________________________________________________________________ Join the world’s largest e-mail service with MSN Hotmail. http://www.hotmail.com
