New Security Score Offers Snapshot of Firewall Risk and
Compliance Posture; Updated PCI-DSS Reports and Complex Workflow
Automation Round Out New Release
January 19, 2010 - Tufin Technologies, the leading provider of
Security Lifecycle Management solutions, today announced version
5.1 of its award-winning Tufin Security Suite (TSS). TSS is the
combined offering of Tufin's flagship firewall operations product,
SecureTrack, and Secure Change Workflow, its innovative change
management solution. Version 5.1 features the Tufin Security Score,
a risk scoring engine that provides all stakeholders with instant
visibility into the security and compliance posture of their
firewalls, enhanced workflow automation, and updated PCI-DSS
reporting. With TSS 5.1, Tufin once again sets the bar for what any
organization looking to automate network security policy and change
management should expect in terms of functionality, business value,
and ease of use.
"With highly dynamic networks, finding and eliminating network
security risks as soon as - or even before they happen is a prime
objective," said Colin Miles, Corporate Network Manager, Virgin
Media. SecureTrack's new Security Score automates risk management
in a very useful way, making it much easier to manageably and
consistently to spot trends and identify issues that require
immediate attention. Tufin's focus on automating more complex
security change processes is exactly the kind of innovation that is
needed within the industry. With every release, Tufin demonstrates
how well it understands the challenges its customer face by
delivering enhancements that enable us to be more strategic and
make better decisions."
Tufin customers report that deploying TSS cut the time and cost
of firewall operations in half, resulting in a return on investment
in less than eight months. By further automating risk and change
management, Tufin extends additional time and cost savings to areas
that are either still highly manual in nature or have only baseline
automation, enabling organizations reap dramatic, quantifiable
efficiency gains.
"Technology such as Tufin's, that provides a clear picture into
what would otherwise be difficult for operational teams to
consistently manage, adds some much needed science to the art of
managing network security," said Scott Crawford, EMA. "Sifting
through numerous firewalls from multiple vendors, each with
hundreds of rules, just to pinpoint why a seemingly straightforward
policy change caused a significant outage or problem is incredibly
painful - yet this is all too often the day-to-day reality in
hundreds of enterprises. Tufin offers a very practical solution
whose strength lies in its ability to simplify this complexity and
make firewall management more realistic, not just for the large or
complex enterprise but for any organization that struggles with
this all-too-common reality."
TSS 5.1: Delivering Metrics that Matter, Productivity-increasing
Process
Tufin's new risk report enables administrators to vet firewalls
across a wide set of predefined and customizable factors. When the
analysis is complete, each device is assigned a unique Security
Score. TSS provides the Security Score of each firewall gateway and
also provides a comprehensive, cross vendor, organizational level
score. This provides non-technical stakeholders with a clear
understanding of the nature and level of overall network security
risk and technical stakeholders with the granular, actionable data
they need to manage it accordingly.
On the change management front, Tufin has automated complex,
parallel workflows, enabling a trouble ticket to be dynamically
split into concurrent activities and divided up between different
administrators or groups of administrators to follow up on. The
ability to support parallel workflows provides greater flexibility
when automating complex business processes and substantially
reduces the time it takes for policy changes to be crafted,
approved, tested and implemented. TSS 5.1 also features deeper
integration with BMC Remedy, so that all changes can be managed in
Remedy while retaining the security elements inherent in
SecureChange Workflow workflows.
TSS 5.1 also features enhanced support for Fortinet VDOMS.
Already a FortiVerified partner, Tufin is committed to its
partnering with industry leaders and innovators. TSS is architected
to easily integrate into highly heterogeneous environments which
include full support for logical and virtual environments - an
important distinction as companies continue to explore
virtualization as a way to reign in costs. Also in this version is
an updated PCI 1.2.1 report, in line with the latest specification
of the PCI DSS standard.
"In a market that is quickly growing in size and expanding in
scope, and with feedback from more than 500 customers, we are
extremely focused on what will provide the greatest return in the
shortest time to our customers," said Reuven Harrison, CTO, Tufin
Technologies. "By enabling our customers to implement standardized,
scalable, transparent and auditable processes, we mitigate the risk
stemming from operational complexity. This allows them to focus on
more proactive, strategic decision making, which in turn fuels our
ability to deliver functionality such as the new Risk Report or the
APG, our rule base optimization engine, that enables them to
execute on those decisions faster and easier."
Pricing and Availability
TSS 5.1 will be Generally Available in February 2010. Pricing
starts at $20,000.
About Tufin Security Suite
Tufin Security Suite (TM) (TSS) is industry's first comprehensive
Security Lifecycle Management solution. Seamlessly integrating its
award-winning SecureTrack and SecureChange Workflow solutions into
an open, extensible and distributed architecture, TSS features full
interoperability with Check Point, Cisco, Juniper, Fortinet, F5,
Blue Coat and others, TSS provides the capacity to automate
security policy management for any device in the Security Lifecycle
Management eco-system, enabling organizations to reduce the cost of
security operations and compliance while increasing operational
efficiency, tightening network security, and ensuring business
continuity.
