// THREAT DETECTION AND DATA PRIVACY TERM
Segmentation
Segmentation is the practice of splitting a computer network into smaller, isolated subnetworks. This helps contain security breaches by preventing attackers from moving freely from a compromised area to the rest of the network.

TECHNICAL DEFINITION
Network segmentation is a security architecture approach that divides a network into multiple isolated segments or zones, each acting as its own small network. By enforcing granular access control policies between segments, it reduces the attack surface and contains lateral movement of threats, forming a core principle of Zero Trust and defense-in-depth strategies.
BACKGROUND
Computer security is a subdiscipline within the field of information security. It focuses on protecting computer software, systems, and networks from threats that can lead to unauthorized information disclosure, theft, or damage to hardware, software, or data, as well as to the disruption or misdirection of the services they provide.
READ MORE ON WIKIPEDIASYNONYMS & ALIASES
- network partitioning
- zoning
- compartmentalization
- microsegmentation
- network isolation
- subnetting
USAGE NOTE
Segmentation is a fundamental security control used to limit the blast radius of a cyberattack.
DEVELOPERS
Organizations developing technology related to Segmentation.
A cybersecurity company that specializes in Zero Trust Segmentation. Their platform provides visibility into application traffic and enforces microsegmentation policies to prevent the lateral movement of cyberattacks within data centers and cloud environments.
A global cybersecurity leader whose Next-Generation Firewalls (NGFWs) are a primary tool for enforcing network segmentation. They also offer solutions like Prisma Cloud for consistent microsegmentation across multi-cloud environments.
A multinational technology conglomerate that provides comprehensive networking and security solutions. Their products, including firewalls, switches, and the Software-Defined Access (SD-Access) platform, are used to implement and manage network segmentation.
Following its acquisition of Guardicore, Akamai offers a software-based microsegmentation solution that provides deep visibility and granular policy enforcement to protect critical assets by detecting and blocking unauthorized lateral movement.
A leader in cloud computing and virtualization technology. Their NSX platform provides network virtualization and security, enabling microsegmentation at the hypervisor level to secure east-west traffic within the data center.
Provides a wide range of cybersecurity solutions, with their FortiGate firewalls being a key component for creating and enforcing network segments. Their Security Fabric architecture integrates various products to provide consistent segmentation policies.
A cloud security company that provides a Zero Trust Exchange platform. This platform enables user-to-application segmentation, connecting users directly to applications without placing them on the corporate network, thus preventing lateral threat movement.
A company specializing in Security Policy Orchestration. Their platform helps organizations visualize and manage segmentation policies across complex, hybrid networks with multiple firewall vendors, automating changes and ensuring compliance.