(a) Data leakage prevention to detect and prevent confidential data from leaving the licensee’s technology environment;

(b) Controls to secure physical network ports against connection to computers which are unauthorised to connect to the licensee’s network, or which do not meet the minimum-security requirements defined for licensee computer systems (e.g. Network access control); and

(c) Identity and access management controls to limit the exploitation and monitor the use of privileged and non-privileged accounts.