Micro-segmentation is a security concept that is used to help provide a least privilege security posture within the data center. Least privilege is defined as only allowing the minimal amount of access required to perform the function necessary. In the world of network security, VMware NSX™ allows an administrator to apply least privilege network security. Least privilege is the foundation to a Zero-Trust architecture, where only whitelisted applications are allowed to communicate. In this definition of least privilege, the administrator can restrict the application and virtual machines within the application to only allow necessary communications for the application and it’s components to provide the absolute minimum necessary functionality.
Geoff Wilmington, VCIX6-NV, is a Senior Systems Engineer within the VMware Networking and Security Business Unit, focusing on all security aspects and functions of the VMware NSX product. Geoff is a 17-year industry veteran and has worked at VMware for 2.5 years and across multiple positions within the Information Technology industry. He is a VMware Certified Implementation Expert for the VMware NSX product, and has been recognized as a VMware vExpert for technical community involvement. Geoff has spoken at local VMware User Group meetings as both a customer and a VMware employee and has been featured at multiple sessions at VMworld US. Geoff holds a Bachelor’s degree in IT Management. Follow Geoff on Twitter @vWilmo or visit his blog http://vwilmo.wordpress.com.
