Administrative infrastructure is segregated from the wider network and the internet.
Topic
Administrative infrastructure
Applicable to
all
History
Priority
should
Jun 2023
Administrative infrastructure is segregated from the wider network and the internet.
The existing control relating to ‘segregating administrative infrastructure from the wider network’ was amended to ‘segregating administrative infrastructure from the wider network and the internet’
Mar 2022
Administrative infrastructure is segregated from the wider network.
The security of administrative activities can be improved by segregating administrative infrastructure from an organisation’s wider network. In doing so, the use of a jump server (also known as a jump host or jump box) can be an effective way of simplifying and securing administrative activities. Furthermore, using separate jump servers for the administration of critical servers, high-value servers and regular servers can further assist in protecting these assets.
2015
Agencies should place the workstations used for privileged activities into a separate privilegednetwork zone as outlined in the Network Design and Configuration section of the NetworkSecurity chapter.