Where are you in your segmentation journey? In our polling at RSAC 2019, we found that 50 percent of respondents had interest in micro-segmentation for data center or cloud security in the next year – either learning about it or actively planning for it – or it was already implemented.
There are many reasons you may be considering a micro-segmentation initiative.
- SWIFT, PCI, or other regulatory compliance requirements
- Failed penetration testing
- Cloud migration
- Securing a new data center
- Zero Trust initiative
- Ringfencing your most critical ("crown jewel") applications or high-value assets
- It’s a best practice for risk mitigation per NIST's Cybersecurity Framework access control provision.
But where do you begin, especially if you're on a deadline?
If you've tried starting with traditional firewalls, you're probably already seeking a better solution for segmentation.
If you're looking at segmenting at the hypervisor level, you might be wondering if it meets all your requirements.
And what about the unknowns? Will a micro-segmentation solution meet your future needs – in the cloud, with containers, in any environment – as well as your current requirements?
Here are a few essential resources to help advance your micro-segmentation initiative:
If you're establishing requirements and looking to understand what their peers are seeking, we’ve compiled a list of typical micro-segmentation solution RFP questions in a standard template.
Still struggling to build consensus internally? For the "people and process" part of procurement, consult the white paper: How to Secure Your Crown Jewel Applications.
Building a business case to transform your security operations (and get back your weekend)? Check out the new white paper: The Inevitable Costs of Status Quo Security.
Ensure a successful implementation and painless procurement – build your case upfront, gain consensus with your stakeholders, and make sure you have your requirements nailed from the outset.
READER COMMENTS