This episode teaches network infrastructure security as a control set you must validate end to end, because ISA exam scenarios often reveal that the environment “looks segmented” while the underlying routers, firewalls, and management planes are weakly governed. You’ll define what network infrastructure includes in practice, such as routers, switches, firewalls, load balancers, wireless controllers, and out-of-band management components, then connect those devices to PCI impact because their compromise can reroute traffic, expose data flows, or disable monitoring. We’ll cover strong practices like hardened configurations, restricted management access, MFA for administrators, secure protocols, change control for rule updates, and centralized logging of administrative actions. You’ll learn how to evaluate evidence through configuration exports, access logs, role definitions, and change tickets, and how to troubleshoot red flags like shared admin credentials, overly permissive management networks, unmanaged “temporary” rules, or devices that are out of support. By the end, you’ll be able to explain how infrastructure controls support PCI intent and how to prove they are consistently enforced. Produced by BareMetalCyber.com, where you’ll find more cyber audio courses, books, and information to strengthen your educational path. Also, if you want to stay up to date with the latest news, visit DailyCyber.News for a newsletter you can use, and a daily podcast you can commute with.