Apple Macintosh computers - Keeping them secure in the corporate environment
In the Sarbanes-Oxley forums, a good question was asked related to keeping Mac systems protected. Security is more of a "process" rather than being specifically hardware or software related. In other words, you should take the same precautionary protective measure for Apple workstations, just like Windows client PCs.
For the most part, Apple Mac computers have enjoyed a fairly good track record when it comes to security. There are a fewer in-the-wild threats and the Apple OS X operating system has a Linux-kernel based design, that is fairly secure.
Still, security is only as strong as it's weakest link. Thus you want a strong chainlinked fence to keep the fox out of the chicken coop.
1. Keep all operating system, browser, and software products as up-to-date as possible on security patches.
2. Anti-virus software (anti-spyware might be beneficial also)
3. Firewall protection is always a must
4. Authentication to networks (with strong password settings, rotations, and other best practices)
5. Security policies that include the Mac environment (e.g., discouraging too much personal use, installation of non-business software, etc)
6. Use of Firefox 3 might be beneficial to look at as a complementary browser to Safari (which has suffered some recent security issues)
7. Tracking of Apple security exposures and risks as they develop (e.g., monitor Secunia, Internet Storm Center, Apple's security bulletins, FRSIRT, etc)
As noted, this list is fairly similar to keeping Windows client PCs secure. These additional links might help: