A corporation has Research and Development (R&D) and IT support teams, each requiring
separate networks with independent control of their security boundaries to support department
objectives. The corporation’s Information Security Officer (ISO) is responsible for providing firewall
services to both departments, but does not want to increase the hardware footprint within the
datacenter. Which of the following should the ISO consider to provide the independent
functionality required by each department’s IT teams?
A.
Put both departments behind the firewall and assign administrative control for each department
to the corporate firewall.
B.
Provide each department with a virtual firewall and assign administrative control to the physical
firewall.
C.
Put both departments behind the firewall and incorporate restrictive controls on each
department’s network.
D.
Provide each department with a virtual firewall and assign appropriate levels of management
for the virtual device.