06-02-2021 05:58 AM
We are in the process of installing security in our organization.
I have made some of the priorities. Could you please confirm if I am missing something on security side.
Physical Security
CCTV
Web Security
https
Patches for all
Layer 3 Protection
VPN IPSEC
Zoned based firewall or CBAC
Routing Protocol Authentication
ACL
Certificates
Spam Filter
AAA with radius or tacacs
PC Firewall
DNS Security
ESA
WSA
AMP
ip source guard
key chain encryption between protocols
Firewall divided into zones protecting the servers
Antivirus
Account policies on AD,
Certificates,
NAT
Access Rules
Access lists
Group Policies
VWWare inbuild IPS
Layer 2 Protection
Switches protecting workstations
DHCP Snooping
Root Guard
ARP Inspection
VLANs
Disable CDP
dot1x802
Wireless Security
WLAN
Encryption
Monthly inspection of vulnerability assessment and penetration testing
or cybersecurity services company to monitor vulnerabilities
Solved! Go to Solution.
06-02-2021 06:07 AM - edited 06-02-2021 06:09 AM
You should add NGFW, Network Segmentation (TrustSec), Two-Factor Authentication, Remote Access VPN
Realistically you are unlikely to be deploying - Zoned based firewall or CBAC
06-02-2021 06:07 AM - edited 06-02-2021 06:09 AM
You should add NGFW, Network Segmentation (TrustSec), Two-Factor Authentication, Remote Access VPN
Realistically you are unlikely to be deploying - Zoned based firewall or CBAC
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide