UnixTime

Research Note

EXAM-036 - Network Services, Segregation, and Web Filtering

- Treating provider service use as provider-owned risk. - Treating uptime SLAs as full network service security. - Treating perimeter firewalls as sufficient segregation. - Assu...

On this page

Memory cue

Last-day cue

A.8.21 = know and monitor network service security features. A.8.22 = divide networks into controlled zones. A.8.23 = manage external web access to reduce malicious content exposure.

What the exam is likely testing

Control Exam cue
A.8.21 Security mechanisms, service levels, requirements, provider features, monitoring
A.8.22 Network zones, inter-zone controls, wireless, logical/physical segregation
A.8.23 Risk-based categories, coverage, exceptions, bypass control, malicious destination alerts

Common wrong answers

  • Treating provider service use as provider-owned risk.
  • Treating uptime SLAs as full network service security.
  • Treating perimeter firewalls as sufficient segregation.
  • Assuming VLAN labels prove segregation.
  • Treating web filtering as only productivity control.
  • Ignoring malicious destination alerts as possible incident indicators.
  • Iso27001
  • Exam
  • Network services
  • Network segregation
  • Web filtering

Note Metadata

Aliases: EXAM-036

Source: 09-Exam-Preparation/EXAM-036-Network-Services-Segregation-and-Web-Filtering.md