The RSI Security site breaks down the ways in certain element, but the procedure in essence goes similar to this: Build firewalls and router standards, which set regulations for letting and denying access to your methods. Firewall configurations must be reviewed bi-annually to make sure there aren't any defective access https://www.nathanlabsadvisory.com/blog/author/nathan/page/4/