UEM-10: Software Firewall

CSF v1.1 References:

Info icon.

Control is new to this version of the control set.

Control Statement

Configure managed endpoints with properly configured software firewalls.

Implementation Guidance

All managed endpoints should properly configure endpoint firewalls to inspect traffic, apply rules, and perform behavioral monitoring. These firewalls will protect the endpoint from malware and attacks originating from inside or outside the corporate network. For example, a web application firewall (WAF) should be used to protect web services from malicious attacks (e.g., structured query language (SQL) injection).

Auditing Guidance

  1. Examine the organization's software firewall and other endpoint network protection policy.
  2. Examine the policy on configuration of such controls.
  3. Determine if such controls are in place and evaluated as effective.

[csf.tools Note: For more information on the Cloud Controls Matrix, visit the CSA Cloud Controls Matrix Homepage.]

Cloud Control Matrix is Copyright 2023 Cloud Security Alliance.