Project Name: Network Security Segmentation
Project ID: PRJ2020-045
Location: Antwerp, Belgium
Estimated Start Date: 13/06/2020
Estimated Finish Date: 31/03/2021
Project Sponsor: IT
Business Unit: IT
Enhance overall security by implementing a robust network segmentation strategy, segregating the network into distinct zones (Guest Devices, Third Party, Peripherals, Datacenter, DMZ, Internet) to reduce risks, simplify monitoring, and contain security incidents.
- Enhance network security with a multi-tier segmentation architecture isolating critical systems.
- Create secure boundaries between different network segments (Guest Devices, Third Party, Peripherals, Datacenter, DMZ, Internet).
- Reduce breach risk by limiting access between segments.
- Improve monitoring and incident response with appropriate controls and logging.
- Ensure internal and industry compliance.
- Minimize operational impact using phased rollouts.
Focuses on segregating and protecting current network infrastructure. Design, implement, and configure network segmentation within operational network environments, adhering to existing network, timeline, and compliance boundaries.
- Network segmentation blueprint and zones (Guest Devices, Third Party, Peripherals, Datacenter, DMZ, Internet).
- Configuration/deployment of firewalls, VLANs, access controls.
- Deploy advanced monitoring and logging.
- Revise security policies.
- Risk assessment and tailored controls per segment.
- Training and user communication on new practices.
- Hardware replacement/upgrades not directly related to segmentation.
- Unrelated IT or business process reviews.
- Physical network layout restructuring not in support of segmentation.
- Long-term managed security contracts beyond initial stabilization/testing.
Resource Requirements: Facilities, Network Engineer, Architect