ISO/IEC 27033-4:2014 gives guidance for securing communications between networks using security gateways (firewall, application firewall, intrusion protection system, etc.) in accordance with a documented information security policy of the security gateways, including:
- Identifying and analysing network security threats associated with security gateways.
- Defining network security requirements for security gateways based on threat analysis.
- Using techniques for design and implementation to address the threats and control aspects associated with typical network scenarios.
- Addressing issues associated with implementing, operating, monitoring and reviewing network security gateway controls.
Purchase and use of this product is governed by this EULA.