NO-08—Traffic Flow: Managed Proxy
>Control Description
Organization requires egress traffic initiated from within the Organization network to pass through a managed proxy.
Theme
Technology
Type
Preventive
Policy/Standard
Network Security Standard>Implementation Guidance
1. Ensure that a process is defined and documented so that all egress traffic from within the organization passes through a proxy. 2.Ensure that proxy servers have been deployed on application systems for the filtering of traffic.
>Testing Procedure
1. Inspect documentation to determine whether requirements have been defined that outlines that all egress traffic initiated from within the Organization's network passes through a managed proxy. 2. For a sample of applicable systems review the architecture and ensure that all egress traffic from within the network is passed through the managed proxy.
>Audit Artifacts
E-NO-01
E-NO-10
>Framework Mappings
Cross-framework mappings provided by Adobe CCF Open Source under Creative Commons License.
Ask AI
Configure your API key to use AI features.