AlgoSec. Managing Security at the Speed of Business. AlgoSec.com

Transcription

1 AlgoSec Managing Security at the Speed of Business AlgoSec.com

2 The AlgoSec Security Policy Management Suite As your data centers, networks and the security infrastructure that protects them continue to grow in size and complexity, so too does your security policy. Yet, relying on manual processes to manage complex security policies across your environment is no longer viable. It s costly, risky and inefficient, and prevents your organization from keeping up with the speed of your business. Why Use AlgoSec Security Policy Change Management Security Policy Optimization and Clean up Data Center Migration Application Connectivity Management Auditing & Compliance Risk and Vulnerability Management Network Segmentation Public Cloud Security AlgoSec delivers a complete, integrated solution for managing complex network security policies from the business application layer to the network infrastructure. With powerful visibility across virtual, cloud and physical environments, the AlgoSec Suite automates and simplifies the entire security change management process to accelerate application delivery while ensuring security and compliance. The AlgoSec Security Management Suite comprises three separate yet tightly integrated products Algosec BusinessFlow, AlgoSec FireFlow and AlgoSec Firewall Analyzer that together help you: Easily understand and provision application connectivity to accelerate application delivery and minimize outages Process firewall changes 4x faster, and eliminate misconfigurations and rework Proactively assess the impact of network changes to ensure security and continuous compliance Simplify and automate internal and regulatory firewall audits, and reduce time and costs by as much as 80% Streamline communications across the application, network and security teams Deliver a tighter security policy that provides better protection against cyber-attacks AlgoSec BusinessFlow AlgoSec FireFlow AlgoSec Firewall Analyzer Trusted by Global Leaders Across Every Industry Over 1,500 of the world s leading organizations across every industry vertical, including 15 of the Fortune 50, have chosen AlgoSec for its unique combination of superior technology and dedication to customer success. Backed by the Industry s Only Money-Back Guarantee We are obsessed with ensuring complete satisfaction for each and every customer. To back this up, Algosec offers the industry s only money-back-guarantee. If we do not meet expectations, you have the right to cancel the purchase and get your money back. It s that simple. Request a personal demonstration at AlgoSec.com/Demo

3 AlgoSec BusinessFlow Application Connectivity Management AlgoSec BusinessFlow makes it easy to securely provision, maintain and decommission connectivity for business applications. By automatically mapping application connectivity requirements to the underlying network infrastructure, BusinessFlow accelerates application delivery, minimizes outages and enforces security and compliance across virtual, cloud and physical data centers. BusinessFlow Helps You: Visualize and quickly provision connectivity for business applications Securely remove network access for decommissioned applications Assess the impact of network changes on application availability to minimize outages View risk and vulnerabilities from the business application perspective Foster collaboration across application, network and security teams to support DevOps initiatives Visualize Application Connectivity BusinessFlow includes a dynamic, graphical map that visualizes all applications and their connectivity flows. Through this map, users can monitor application connectivity, see and edit flows and troubleshoot connectivity outages. Process Application Changes Quickly and Accurately With BusinessFlow, application owners can request connectivity in non-networking terms and BusinessFlow then automatically computes the necessary changes to the underlying firewall and access rules, and generates the relevant change requests in FireFlow. Assess the Impact of Network Changes on Application Availability and Avoid Downtime Through BusinessFlow you can immediately see which business applications and underlying connectivity flows will be impacted by firewall rule changes or planned server/ device downtime. Simplify Large-Scale Server Migration Projects Through built-in workflows, BusinessFlow automatically identifies all the applications that will be affected by a planned migration or decommissioning project. It then generates the necessary change requests to the underlying network traffic flows, all while ensuring the integrity of the security policy and network access. Safely Decommission Applications to Tighten Your Security Policy Through BusinessFlow s unique analysis it is easy to identify network access that can be safely removed from decommissioned applications, as well as rules that should not be removed because they are used by other applications. Understand Risk from the Business Perspective BusinessFlow integrates with leading vulnerability scanners to help you prioritize your risk based on what your business values most the applications that power it. AlgoSec helped us reduce 80% of the time required to migrate the security of our applications as part of our data center consolidation project. Bruno Rolleau, Network Security Architect, Sanofi

4 AlgoSec FireFlow Security Policy Change Automation AlgoSec FireFlow automates the entire security policy change process from design and submission to proactive risk analysis, implementation, validation and auditing. By eliminating guesswork though intelligent change management workflows, FireFlow helps operations and security teams save time, avoid manual errors and reduce risk. FireFlow Helps You: Process firewall changes 4x faster Eliminate mistakes and rework, and improve accountability for change requests Proactively assess the impact of network changes to ensure security and continuous compliance Automate recertification processes Enforce compliance, and automatically document the entire change management lifecycle Automate the Security Policy Change Workflow To eliminate guesswork and improve operational efficiencies, FireFlow s customizable workflows automate security policy change processes, such as adding or removing rules and objects. Intelligently Design Firewall Rules to Reduce Clutter and Complexity FireFlow automatically discovers all devices and rules which are impacted by a change request. It then intelligently designs or updates any necessary firewall rules, utilizing existing rules and objects whenever possible to reduce policy clutter and complexity. In addition, FireFlow instantly identifies and closes unnecessary ( already works ) change requests, which helps prevent up to 30% of unnecessary changes. Proactively Analyze Change Requests to Ensure Compliance and Mitigate Risk FireFlow automatically analyzes every proposed change before it is implemented to identify risks and ensure compliance with regulatory and corporate standards. FireFlow leverages the broadest risk knowledgebase that includes industry best practices, regulations such as PCI-DSS, HIPAA and SOX, as well as corporate-defined policies. Save Time and Avoid Manual Errors with Automatic Policy Push FireFlow can automatically implement policy changes directly on the device, to save time and prevent manual errors. Prevent Unauthorized, Rogue Changes FireFlow automatically validates the implementation of change requests to prevent premature closing of tickets. Additionally, FireFlow correlates change requests with actual changes made, to detect unauthorized changes, and ensure that changes are implemented exactly as specified. Track and Audit the Entire Change Lifecycle FireFlow tracks every step of the change workflow, providing detailed reports that measure accountability and SLAs, and simplify auditing and compliance processes. With AlgoSec, it now takes us half the time to deploy firewall changes. Plus the solution provides us with intelligence that reduces human error and risk. Saúl Padrón, Manager of Information Securit, Telefónica México

5 AlgoSec Firewall Analyzer Visibility and Analysis of Complex Network Security Policies AlgoSec Firewall Analyzer delivers visibility and analysis of complex network security policies across physical, virtual and cloud environments. It automates and simplifies security operations including troubleshooting, auditing and risk analysis. Using Firewall Analyzer, security and operations teams can optimize the configuration of firewalls, routers, web proxies and related network infrastructure to ensure security and compliance. Firewall Analyzer Helps You: Centrally manage and troubleshoot network security policies even across complex multi-vendor environments Visualize complex networks with a dynamic network topology map Clean up and optimize firewall policies quickly and efficiently Identify and mitigate risky firewall rules Reduce firewall auditing time and costs by up to 80% with automated compliance reports Easily enforce network segmentation Instantly Visualize Your Network Security Policy Firewall Analyzer automatically generates an interactive network topology map that immediately shows the impact of security policies on network traffic. Through this map you can quickly troubleshoot connectivity issues, plan changes and perform and what-if traffic queries. Support Large and Complex Enterprise Networks Firewall Analyzer seamlessly supports firewalls, NGFWs, routers, load balancers and web proxies from leading vendors. Firewall Analyzer also supports Amazon Web Services (AWS) Security Groups and VMware NSX logical firewalls to enable unified security policy management across hybrid environments. Prepare for Your Next Audit in Hours, not Weeks Firewall Analyzer automatically generates pre-populated, auditready compliance reports for most industry regulations as well as custom corporate policies, to reduce audit preparation efforts and costs by as much as 80%. Mitigate Risk with Baseline Configuration Compliance Firewall Analyzer minimizes the risk that devices will be exploited, by continuously monitoring them against custom-defined or recommended device configuration baselines that are provided for each product. Clean Up and Optimize Firewall Rulesets Firewall Analyzer provides a wide range of actionable recommendations to help you clean up and optimize the security policy. For example, Firewall Analyzer can uncover unused, duplicate, overlapping or expired rules, consolidate and reorder rules, and tighten overly permissive ANY rules, without impacting business requirements. All network security policy changes are continuously monitored, and Firewall Analyzer maintains a complete audit trail. Now we can get, in a click of a button, what took two to three weeks per firewall to produce manually. Marc Silver, Security Manager, Discovery SA

6 Specifications Supported Devices Supported Cloud Platforms Supported IT Service Management Systems* *Additional change management systems can be supported by AlgoSec professional services Supported Vulnerability Scanners Follow Us On: Global Headquarters 65 Challenger Road, Suite 320 Ridgefield Park, NJ USA EMEA Headquarters 80 Coleman Street London EC2R 5 BJ United Kingdom APAC Headquarters 10 Anson Road, #14-06 International Plaza Singapore Copyright 2015 AlgoSec. Inc. All rights reserved. AlgoSec, FireFlow and BusinessFlow are registered trademarks of AlgoSec Inc. ActiveChange, Intelligent Policy Tuner, Deep Policy Inspection and the AlgoSec Logo are trademarks of AlgoSec Inc. All other trademarks used herein are the property of their respective owners.