Which security measure isolates sensitive technology from external networks?

The chosen answer, air gapping, refers to a security measure that involves isolating a secure network or system from external networks, particularly the internet. This technique effectively creates a physical or logical barrier, preventing unauthorized access and potential data leakage. In environments where sensitive information is handled—such as government operations, critical infrastructure, and financial systems—air gapping is an effective way to protect against external threats, including cyberattacks and malware.

By employing air gapping, organizations ensure that there is no direct connection between their sensitive technology and any external network, making it difficult for attackers to compromise their critical assets. This strategy enhances the security of high-risk systems, as any external communications must go through controlled processes, thereby minimizing exposure to potential vulnerabilities found in connected networks.

The other options, while relevant to network security, do not isolate sensitive technology as directly as air gapping does. Network segmentation focuses on dividing a network into smaller segments to enhance security and manage traffic, but it does not inherently isolate sensitive systems from external connections. Firewalls are designed to filter traffic and enforce security policies but still maintain connections with external networks. Intrusion detection systems monitor and analyze network traffic for suspicious activity, providing alerts but not preventing direct access to sensitive technology.