In medieval times, wealthy Lords built stone walls around their fortresses to keep their castle safe—sometimes they even added a moat! For network security, segmentation is the equivalent of multiple layers of protective walls. The idea is that a hacker can never penetrate the entire system at once without setting off warning bells or hitting a wall.
Network segmentation splits a flat network into many separate “sub networks” called segments. The initial, and most crucial, step toward implementing network segmentation is the planning phase. Identify each network device, and create an access map for each individual component. During the planning phase, it is important to speak with relevant vendors and research the requirements of each device so you fully understand the network traffic the devices exchange. Once you have a plan in place, implementing segmentation within your network is much simpler. This makes developers honorary knights!