We have deployed Calico to our EKS setups as a network policy engine.
By default, Pods are non-isolated and thus accept traffic from any source. By specifying NetworkPolicies you can isolate Pods from each other and thus have more fine-grained K8s networking control.
This feature has been rolled out and enabled by default to all non-production clusters. Production clusters will get the update in the coming days too.
Be sure to get in touch with your Lead if you want to start using NetworkPolicies and need our help.