SOCs/Security Architecture – Key Infrastructure Devices
Traditional and Next- Generation Firewalls, and NIPS
Web Application Firewall
Malware Detonation Devices
HTTP Proxies, Web Content Filtering, and SSL/TLS Decryption
SIEMs, NIDS, Packet Captures, and DLP
Honeypots/Honeynets
Network Infrastructure – Routers, Switches, DHCP, DNS
Mobile Devices and Wireless Access Points
Threat Intelligence
Segmented Internal Networks
Routers
Internal SI Firewalls
VLANs
Detecting the Pivot
DNS architecture
Encrypted DNS including DNS over HTTPS (DoH) and DNS over TLS (DoT)
Defensible Network Security Architecture Principles Applied
Internal Segmentation
Threat Vector Analysis
Data Exfiltration Analysis
Detection Dominant Design
Zero Trust Model (Kindervag)
Intrusion Kill Chain
Visibility Analysis
Data Visualization
Lateral Movement Analysis
Data Ingress/Egress Mapping