firewall management: automation is your friend
TRANSCRIPT
Firewall Management: Automation is Your Friend
• The Leader in Network Security Policy Management
• 800+ customers in more than 40 countries
• 100+ Channel Partners worldwide
• Fast growing 112% growth in Q1-Q3/2011
• Technology Partners include all major firewall vendors
• Committed to 100% Customer Satisfaction
AlgoSec Overview
2
The AlgoSec Security Management Suite (SMS)
“a must have…”
Technology Partners Awards
3
Research Background
Firewall risk survey
Risk versus complexity
42%
Small is Beautiful
Firewalls are misconfigured
4
Risk Analysis
• Out-of-the-box risk knowledge base
• Remediation guidance
• Custom risk policy
• Security rating over time
5
Tighten Overly Permissive Rules
Do You Really Need to Allow “ANY” Service?
6
The most common cause for security network outages.
Source: AlgoSec Survey of over 100 security professionals
What is impacting network operations?
7
8 Confidential and proprietary material for authorized Verizon personnel only. Use, disclosure or distribution of this material is not permitted to any unauthorized persons or third parties except by written agreement.
• Big financial company: +/- 1000 rules added every year
• Huge spending on firewall hardware
• Adding a new cluster every year, as performance was slowing
down dramatically
• No logging available, due to huge numbers of rules
• Firewall Analysis using AlgoSec showed that: – The first 5 rules were used on 97.4% of connections
– Almost every protocol from everywhere was allowed
– After cleaning-up: full logging activated, half-hardware disinvested
Real Case Study
Automated Compliance Reports
• PCI DSS
• SOX
• ISO 27001
• Base II
• NERC
• J-SOX
Cut Auditing Efforts by over 80%
9
Confidential 10
SHIFT HAPPENS!
• 20-30% of changes are unneeded • 5% implemented incorrectly • “Cowboy” changes abound
Security Change Management - Automated
Topology Ruleset Policy
Automation
Depth of Analysis
Choosing your solution provider
Committed to my Success
Security Management. Made Smarter.
www.AlgoSec.com
Connect with AlgoSec on: