network security policy management

The Challenge

Securing and Controlling Heterogeneous Networks

In today's complex. heterogeneous IT environment, it is essential to have a central security policy view across all platforms, physical, virtual and cloud. Additionally, the view should be centralized to support all the different firewall, virtual machine and cloud vendors in the market.

The Solution

Central Security Policy Management across Physical, SDDCs & Hybrid Cloud Platforms

Tufin Orchestration Suite supports all major enterprise firewalls and next-generation firewalls (NGFW) as well as networking devices such as switches, routers and load-balancers. It also supports Software-Defined Data Centers (SDDC) and the leading cloud platforms.

Tufin gives you the ability to control and manage the security policy across all of these platforms through a single pane of glass.

Tufin tracks all policy and networking changes across all platforms providing an accurate and up-to-date view of security across the network. Tufin also provides policy optimization recommendations and advanced tools for network and security operations teams.


  • Single pane of glass for managing security policies across network firewalls, private and public cloud
  • Improve security, compliance and business agility through firewall change automation
  • Optimize security policies
  • Reduce attack surface for mitigation of cyber threats
  • Assure business continuity by minimizing network and application downtime
  • Enable continuous compliance with enterprise and industry regulations
Tufin’s dashboard provides visibility across vendors and platforms
Central change monitoring allows identifying and controlling rogue changes across the hybrid network
A central policy browser provides powerful search capabilities across vendors
A central object browser provides search capabilities and visibility of objects across vendors
Tufin’s interactive topology map enables running path analysis across vendors to troubleshoot connectivity
Tufin’s Zone-based Unified Security Policy (USP) enables enforcing a central network segmentation baseline
Identify policy violations across vendors and platforms in a single console