Memory cue
Last-day cue
A.8.21 = know and monitor network service security features. A.8.22 = divide networks into controlled zones. A.8.23 = manage external web access to reduce malicious content exposure.
What the exam is likely testing
| Control | Exam cue |
|---|---|
| A.8.21 | Security mechanisms, service levels, requirements, provider features, monitoring |
| A.8.22 | Network zones, inter-zone controls, wireless, logical/physical segregation |
| A.8.23 | Risk-based categories, coverage, exceptions, bypass control, malicious destination alerts |
Common wrong answers
- Treating provider service use as provider-owned risk.
- Treating uptime SLAs as full network service security.
- Treating perimeter firewalls as sufficient segregation.
- Assuming VLAN labels prove segregation.
- Treating web filtering as only productivity control.
- Ignoring malicious destination alerts as possible incident indicators.
Related notes
- Iso27001
- Exam
- Network services
- Network segregation
- Web filtering
Note Metadata
Aliases: EXAM-036
Source: 09-Exam-Preparation/EXAM-036-Network-Services-Segregation-and-Web-Filtering.md