Segment and Separate
Segment and Separate
Objective
Segment and separate information based on sensitivity of information.
Key Considerations
- Develop a target network security design that considers segmentation via network security zones, in alignment with ITSG-22 and ITSG-38.
- Implement increased levels of protection for devices.
Validation
- Confirm that SAFER lab devices cannot be connected to ESDC network.
- Confirm that SAFER lab devices cannot transfer data to and from ESDC network through storage devices.
Applicable Service Models
- SAFER devices
References
- Related security controls: AC‑4, SC‑7, SC‑7(5)