Enterprise Security Assessment > Data and Asset Security > Network Security

Do network devices deny all access by default?

book reader icon
1 Minute
11/13/2024
facebook logo gray
linkedin logo gray
mail logo gray

Yes. As required by our Network Security and Remote Access Policies, all access attempts to QR Planet's network devices are denied by default and only permitted if necessary and explicitly allowed.

Last update 5 days ago

Do the firewalls have any rules that permit 'any' network, sub network, host, protocol or port on any of the firewalls (internal or external)?

No. All allowed Network traffic and ports are clearly defined and limited in their use. QR Planet's firewalls have no rules permitting 'any' network or port.

Is there a policy that defines the requirements for remote access from external networks to networks containing Scoped Systems and Data?

QR Planet's remote access policy includes Multi-Factor Authentication, VPN Access, complex and encrypted passwords, and the monitoring of remote access.

Are encrypted communications required for all remote network connections from external networks to networks containing Scoped Systems and Data?

Any system access by remote sources, regardless of Scoped Systems and Data, needs to be encrypted, as required by our policy handling remote access.

Is remote administration of organizational assets performed in a manner that prevents unauthorized access?

All possible remote administration of organizational assets is done by pre-approved parties with restricted access as befits their role (RBAC) and requirement.

Are encrypted communications required for all remote system access?

Yes. Any system access by remote sources needs to be encrypted, as required by our policy handling remote access and our Network Security Policy.