10-25-2012 01:16 PM - edited 03-03-2019 06:49 AM
Hi Team,I am filling one RFP, i am not familliar in doing it ,actually doing it first time,, there are two questions which i am unable to understand completely.
Can someone please elaborate it for me?
8.26 Do you have a multi-tiered network topology that segregates presentation, application and data layers?
8.27 Do you have a secure network connection that is segregated form the production environment for administration and data transfers?
8.37 Do you have security administration procedures and processes for managing the access of the services provided?
10-25-2012 08:05 PM
8.26 is probably refering to the e-commerce style separation between web/application/database architecture. See Network Design for B2B and B2X Server Farms in the pdf.
http://www.cisco.com/en/US/docs/solutions/Enterprise/Data_Center/ServerFarmSec_2.1/2_Topolo.pdf
8.27 - probably asking if you have a separate out-of-band data network for management which is also secure ie SSH etc.
8.37 - see IT processes such as ISO 27001/2 for administration controls and auditing.
10-26-2012 08:10 AM
Hi,
8.27 could also be referring to a DMZ firewalled environment.
10-30-2012 02:21 PM
Thank you both of you for your input on this .
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide