scope:

This part of ISO/IEC 27033 gives guidance for securing communications between networks using security 6 gateways (firewall, application firewall, Intrusion Protection System,) in accordance with a documented 7 information security policy of the security gateways, including: 8 a) identifying and analyzing network security threats associated with security gateways; 9 b) defining network security requirements for security gateways based on threat analysis; 10 c) using techniques for design and implementation to address the threats and control aspects associated 11 with typical network scenarios; and 12 d) addressing issues associated with implementing, operating, monitoring and reviewing network security 13 gateway controls.