Compliance budgets are high on the agenda of every CISO and CIO. Many organizations are actually doing more than they need regarding compliance. The key to a successful audit is scope. One of the biggest mistakes we see companies make is to start applying compliance control without truly understanding what should be considered in scope. This often leads to “scope creep,” one of the leading causes of audits spiraling out of control, and which may also result in significant delays and costly expenses. To avoid scope creep, customers need to separate their virtual environments (VLANs)”]
Source: https://www.darkreading.com/compliance/narrow-the-scope-of-compliance