Discussions of network segmentation take place in many public forums like conferences and workshops relating to protecting network infrastructure. What needs to be improved is guidance on how to approach it and what steps to take to apply it. As important as the technical design, it is essential to understand the goals of network segmentation for business continuity. There are two perspectives on network segmentation. One is from the perspective of the network engineer, and one is from the perspective of the cybersecurity engineer. This presentation will highlight the different perspectives of network segmentation and share philosophies on approaching it. This presentation will also discuss segmenting network topologies with Access Control List and firewalls and the importance of designing a flexible IP schema.
I aim to spark healthy debate/discussion on approaching network segmentation and what that could look like. We all know we need to do it, so how does everyone go about it? By no means do I think I have the best ideas; I use the tools and knowledge that I have at a given point in time to solve a problem.
Presentation Outline:
Understanding Business Needs.
Defining Network Segmentation.
Philosophies & ZTA.
IPv4 Subnet Design.
Infrastructure designs.
When have you done enough segmentation?
Негізгі бет Let's Segment a Network - Joshua Seirer
Пікірлер