Tufin Orchestration Suite is the first to automate change window scheduling to save network engineers time and bring them closer to end-to-end automation
BOSTON – October 23, 2018 – Tufin®, the market-leading provider of Network Security Policy Orchestration solutions, announced the release of Change Window Automation and Policy Commit to enable organizations to automate planned changes during designated change windows and respond immediately to urgent firewall policy change requests. Change Window Automation improves operational efficiency and avoids disruption to the business during normal working hours, with full trust that changes will be committed according to security policy in designated off-hour change windows. Policy Commit enables urgent and emergency changes to take place immediately in accordance with existing rules to ensure security and compliance.
Enabling Change Window Automation
With centralized change window automation, organizations can schedule firewall policy changes to take place during designated (off-hours) change windows. This includes the ability to pre-review and approve future changes, automate the execution of these changes, track installation progress, and automatically receive change reports. Starting with R18-2 GA, Tufin SecureChange has the ability to commit changes to the underlying devices at a scheduled time. This is supported when integrating the Tufin Orchestration Suite with management consoles from Check Point R-80, Fortinet FortiManager, and Palo Alto Networks Panorama.
“Until now, change windows typically occurred during off-peak hours to avoid disruption during normal business hours, requiring a network engineer to manually execute each change,” said Ofer Or, Vice President of Products at Tufin. “With the most recent release of the Tufin Orchestration Suite, we give the evenings and weekends back to network engineers, enabling them to create a change window, schedule changes to automatically execute, and receive confirmation and documentation that all changes have taken place.”
Policy Commit: Emergency Changes that Ensure Security Standards
The Tufin Orchestration Suite continues to enable true end-to-end Zero-Touch Automation for firewall policy changes by allowing customers to automate the analysis, design, and provisioning of network changes all the way to specific devices. Organizations can make firewall policy changes across devices to respond to emergency requests prompted by business requirements or a security incident, improving response and reducing dwell time of detected incidents. Policy Commit retains full documentation as part of a workflow for audit support. Policy Commit is now available for Check Point R-80, Fortinet FortiManager, and Palo Alto Networks Panorama, and is automatically enforced on the corresponding firewall devices, adding to the previous capability of immediate policy implementation to Cisco ASA and Juniper firewalls.
“With the integration of Tufin’s Change Window automation capabilities and Fortinet’s leading portfolio of products based on the Fortinet Security Fabric and open Fabric-Ready Partner ecosystem, our joint customers can further accelerate their adoption of automation across heterogeneous networks,” said John Maddison, SVP of products and solutions, Fortinet. “Together, our best-of-breed joint solution provides organizations with an effective and efficient way to meet the agility demands of any business while ensuring responsiveness to cybersecurity incidents impacting the network.”
Change Window Automation and Commit Now are available in Tufin Orchestration Suite 18-2, which is generally available.