When to use this
Use this standard to document network zones, trust boundaries, sensitive traffic paths, management networks, public exposure, and virtual/cloud network scope.
Related controls
- A.8.20 Networks Security
- A.8.9 Configuration Management
- A.8.16 Monitoring Activities
- Risk Assessment
Network zones
| Zone | Purpose | Trust level | Sensitive systems/data | Allowed inbound | Allowed outbound | Monitoring | Owner |
|---|---|---|---|---|---|---|---|
| TBD | TBD | TBD | TBD | TBD | TBD | TBD | TBD |
Required architecture checks
- Current topology diagram exists.
- Sensitive traffic paths are identified.
- Public network exposure is documented.
- Administrative and management networks are identified.
- Backup and disaster recovery network paths are identified.
- Virtual/cloud networks are included.
- Zone boundary controls are defined.
- Monitoring and logging are defined per zone.
- Template
- Iso27001
- Technological controls
- Network security
- Zoning
Note Metadata
Aliases: Network Zoning Standard
Source: 90 Templates/Network Security Architecture and Zoning Standard.md
Related Notes
- Risk Assessment
- A.8.20 Audit Evidence Pack
- ISO 27001 A.8.16 - Monitoring Activities
- ISO 27001 A.8.20 - Networks Security
- ISO 27001 A.8.22 - Segregation of Networks
- ISO 27001 A.8.9 - Configuration Management
- A.8 Technological Controls MOC
- A.8 Technological Controls Implementation Guide
- A.8 Technological Controls Audit Guide
- A.8 Technological Controls Implementation Audit Risk Mapping
- ISO 27002 Annex A Control Interpretation Map
- A.8.20 Audit Checklist
- Network Zone and Connection Matrix
- Templates MOC