Virtualisation and Segmentation

“How would your life be different if you stopped worrying about things you can’t control and started focusing on the things you can?” - Steve Maraboli

For many enterprises, the journey from legacy infrastructure to the modern segmented networks demanded by compliance frameworks and security standards present daunting challenges for operations teams.  Modern malware is specifically designed to attempt lateral infections of other devices on the same network when activated.  Understanding and controlling the hidden traffic flows in flat networks is often a significant obstacle to segregation projects and support for them from service owners.

Pentesec have solutions for analyzing traffic flows for the creation of firewall rules and service flow definitions based on the actual traffic flows between network devices and this often feeds into the micro-segmentation of existing network infrastructure through the use of server virtualization and hypervisor based firewalling (which can remove the need to re-IP the network or physically segment zones).