25-01 Defense in Depth

Last updated Aug 17, 2023 Edit Source

access to business and customer data, and encryption to protect data.

applications are secure and free of security vulnerabilities.

Access to virtual machines (ports, on-premise, cloud)

limit communication between resources using segmentation and access controls.

distributed denial of service (DDoS) protection to filter large-scale attacks before they can cause a denial of service for users.

controlling access to infrastructure and change control.

limiting access to a data center to only authorized personnel.