Gitlab hero border pattern left svg Gitlab hero border pattern right svg

NO.2.01 - Network Segmentation Control Guidance

NO.2.01 - Network Segmentation

Control Statement

Production environments are logically segregated from non-production environments.

Context

Lesser environments must exist and be segregated, whether logially or phyiscially, from the production counterparts.

Scope

This control applies to the GitLab.com and customers.gitlab.com environments. For each, lesser environments in which development and testing occur must be logically segregated from the production environments.

Ownership

Control Owner:

Process Owner:

Guidance

Pre-production environments should be logically segregated from their production counterparts. This can be accomplished by hosted them on different hosting providers or logically segregating them by project within the same hosting provider.

Additional control information and project tracking

Non-public information relating to this security control as well as links to the work associated with various phases of project work can be found in the Network Segmentation control issue.

Policy Reference

Framework Mapping