Self Service Portal, RESTful APIs and Extended Device Support Further Tufin's Security Policy Orchestration
Tufin Technologies, the market-leading provider of Security Policy Management systems, today announced version R13-2 of its award-winning Tufin Security Suite. Version R13-2 features a self-service portal for application connectivity requests, additional device support, and enhanced functionality for SecureApp, which further automates the management of application connectivity-related security policies and processes - consistently cited by network security managers to be their number one firewall management challenge. Other key enhancements extend the breadth and depth of Tufin's multi-vendor and IPv6 support. Tufin's RESTful APIs ensure that TSS can be easy integrated with other systems, setting the stage for true policy orchestration across the network.
Tufin uses an application-oriented approach to policy management to simplify and streamline firewall operations. It is composed of three fully integrated products: SecureApp delivers a new approach to managing the network connectivity and security requirements of applications.SecureChange enables companies to automate security change management and risk analysis for the network, and SecureTrack,which automates policy management for a wide set of network infrastructure. By intelligently automating security policy and change management processes, Tufin not only ensures network infrastructure changes occur in a secure and compliant fashion, but increases business agility by eliminating network-level bottlenecks that prevent efficient and successful application deployment.
Key enhancements to R13-2 include:
Self-Service Portal for Application Access Requests: R13-2 provides a user-friendly portal for non-technical users, enabling them to request application access, a process managed via SecureChange workflows. The portal ensures that business owners and security teams can align on the nature and justification of given change request, and that changes are designed and implemented correctly the first time.
Automated Server Decommissioning: SecureApp R13-2 enables application owners and network engineers to easily remove decommissioned servers from applications. SecureApp identifies which connections need to be modified and translates this to a SecureChange access removal request. The automated process ensures business continuity and the tightest security policy at all times.
SecureApp Basic: This version provides a limited version of SecureApp, which allows customers to explore the benefits of application connectivity management. SecureApp Basic includes support for three applications.
Automatic Syntax-Generation for Juniper NetScreen Firewall Changes: Furthering Tufin's commitment to automate the entire change management process, the SecureChange design and planning tool now supports automatic generation of Juniper ScreenOS policy changes, based on a network change design. This enables a continuous process starting from an access request all the way to implementing the change on the relevant firewalls with minimal human intervention.
Deeper and Wider Device Support: R13-2 supports a wider range of functionality for Cisco devices including compliance policies (blacklists) for Cisco Zone-based firewalls, dynamic routing for Cisco IOS® XR based routers and Automatic Policy Generation (APG) for Cisco ASA based on syslogs. It also includes an enhanced network abstraction layer, which now enables Tufin customers to "see" the following devices when designing changes, analyzing risks and implementing policy changes:
- F5 load balancers
- Juniper SRX Virtual Routers
- Juniper SRX LSYS (Logical systems)
IT-GRC Continuous Compliance with Automated SOX Compliance Report: R13-2 extends Continuous Compliance for IT-GRC requirements, and now automates Sarbanes-Oxley security policy compliance. Real-time network policy monitoring provides analysis and instant violation alerting for regulatory or internal compliance requirements.
Multi-Vendor IPv6 support: R13-2 adds IPv6 support for Fortinet Fortigate firewalls and FortiManager, to its existing support for Cisco and Check Point devices, further demonstrating Tufin's commitment to IPv6 and helping Tufin customers to better manage future network complexity.
RESTful APIs: R13-2 includes APIs for submitting, modifying and querying SecureChange tickets from any third party system through RESTful APIs. By enabling interoperability with other systems, Tufin ensures the benefits offered by TSS can be leveraged by the customer's whole IT ecosystem.
"Tufin continues to demonstrate its commitment to delivering business value via more efficient security policy management. R13-2 aligns security policy management and business operations through its self-service capabilities, extended device support, and enhanced application connectivity which introduces a whole new set of security, compliance and efficiency benefits," said Reuven Harrison, CTO, Tufin. "In fact, we are including a free, limited version of SecureApp in R13-2: SecureApp Basic. We are confident that once customers experience the value it delivers they will be eager to implement it. In addition, R13-2 extends our support for IPv6 and provides more comprehensive network topology. As networks continue to grow in complexity, Tufin will ensure that security teams not only protect the network, but also operate much more efficiently than before."
Pricing and Availability:
Version R13-2 of the Tufin Security Suite is available immediately. Pricing starts at $21,500 for SecureTrack and $45,000 for the full suite.