The new EnergySec white paper, “Network Perimeter Defense: ‘The Perimeter is Dead’ Should be Laid to Rest,” is the beginning of a series of white papers, technical documents, and how-to articles. This paper introduces the series, and examines how perimeter defense applies to various cybersecurity frameworks and regulations such as NIST standards, the NERC CIP standards, and the cyber kill chain. It finishes with a look at the top reasons why focusing on perimeter defense is a good idea.
Abstract: Over the next year, EnergySec will be releasing a series of white papers, technical documents, and how-to articles focusing on the topic of perimeter security. The series will examine the types of information that should be collected from firewalls and other perimeter security devices, how to make sense of the information that is collected, and common mistakes in the implementation of perimeter defense devices. The purpose of the series is to share tips and best practices about how to setup and manage a network perimeter. This first paper will introduce the series, and reply to all those who say that “network perimeter defense is dead.” It then will review how perimeter defense applies to NIST standards, NERC Critical Infrastructure Protection standards, SANS Critical Security Controls, and the Cyber Kill Chain model. It finishes with a look at the top six reasons to focus on perimeter defense in a cybersecurity program.Network Perimeter Defense: Introduction and Executive Summary