/

Efficacy of Microsegmentation: Assessment Report

This first-of-its-kind report by red team specialists Bishop Fox quantifies the ability of microsegmentation to limit lateral movement.

Microsegmentation is an essential security control that prevents the lateral movement of attackers. It's proven to be critical to Zero Trust security. But how can organizations measure the value of microsegmentation? What are the numbers that prove it?

The "Efficacy of Microsegmentation: Assessment Report" answers those questions and serves as a testing methodology blueprint that can help organizations validate results in their own environments.

Through its implementation of the MITRE ATT&CK framework, Bishop Fox conducted several rounds of testing against varying degrees of policy granularity to measure the ability of microsegmentation to effectively limit lateral movement.

Key findings include:

  • A 300% increase in difficulty for an attacker to move laterally and reach its target by applying simple microsegmentation policy such as environmental separation.
  • A 450% increase in difficulty by applying application ring-fencing policy.
  • "Wouldn’t you like to make the adversary’s job anywhere between 3x – 10x more difficult? If so, implement microsegmentation."

Download the full report for in-depth observations, additional findings, and recommendations.

Share this resource

Key benefits

Asset preview

Download Now

Watch Now

Something went wrong while submitting the form. Please try again.
Share this resource

Download Now

Watch Now

Something went wrong while submitting the form. Please try again.
Share this resource
A magnifying glass held up to inspect bar charts
an illustration of a certification breaking up a cloudy sky
Collated documents
an illustration of a certification breaking up a cloudy sky
Share this resource
A magnifying glass held up to inspect bar charts
an illustration of a certification breaking up a cloudy sky
Collated documents
illustration of a book breaking through clouds on a rainy day
Share this resource
Share this resource
No items found.
No items found.
A poster reading 'Garter Cloud Security Hyper Cycle.'
Gartner Hype Cycle for Cloud Security, 2021 – Representative Vendor
A poster reading 'Forrester New Wave Leader 2022 for Micro-segmentation.'
Forrester New Wave™ for Microsegmentation – Leader
Logo for the 'Remote Tech Breakthrough Awards.'
CRN Partner Program Guide 2022 – Winner
A poster reading 'Garter Cloud Security Hyper Cycle.'
CRN Partner Program Guide 2022 – Winner
A poster reading 'Forrester New Wave Leader 2022 for Micro-segmentation.'
Global InfoSec Awards - Publisher’s Choice
Logo for the 'Remote Tech Breakthrough Awards.'
CRN Partner Program Guide 2022 – Winner
“We started seeing benefits from Illumio right away. We gained visibility into our environment and took decisive action immediately. We were able to move so quickly because Illumio makes Zero Trust Segmentation simple by highlighting risk and suggesting policy. Illumio allowed us to take a step-by-step approach and realize value out of the gate.”
Jamie Rossato

Chief Information Security Officer
Lion

Lion Co. employees inside a bottling factory discussing security.
“With Illumio, we now have unprecedented visibility into our server and application traffic. It is making all the difference in our ability to protect our data center.”
Mullar Wan

General Manager of Information Technology
Hongkong Electric

Black & white photo of an urban landscape.
“The onslaught of ransomware attacks demands end to end visibility, advanced analytics and automated actions based on an open platform—which are the foundational elements on which QRadar XDR was designed. By leveraging its open architecture and segmentation platforms like Illumio, QRadar XDR helps customers achieve early detection, orchestration, and rapid, automated response to ransomware and other fast-moving attacks."
Chris Meenan

VP of Product Management
IBM Security

Black & white photo of a cybersecurity technician analyzing server stacks.
“With Illumio, we now have unprecedented visibility into our server and application traffic. It is making all the difference in our ability to protect our data center.”
Mullar Wan

General Manager of Information Technology
Hongkong Electric

Black & white photo of an urban landscape.

Assume Breach.
Minimize Impact.
Increase Resilience.

Ready to learn more about Zero Trust Segmentation?

Something went wrong while submitting the form. Please try again.