R16-4 automates firewall rule and server decommissioning while centralizing cloud tag policy to streamline and simplify network security policy management

SAN FRANCISCO  – February 14, 2017 – Tufin®, the market-leading provider of Network Security Policy Orchestration solutions, updated its award-winning Tufin Orchestration Suite™ to offer customers the ability to strengthen their network security posture by decommissioning redundant or unnecessary rules, and ensure continuous compliance by centrally defining and enforcing a tag policy for cloud platforms. Tufin Orchestration Suite R16-4 provides comprehensive managed network security across all leading firewall and networking vendors through automated provisioning and end-to-end change automation for hybrid environments. “Today’s complex enterprise networks are comprised of multiple vendors and hybrid platforms, and visibility, control, and security are non-negotiable,” said Ofer Or, VP of products at Tufin. “The new features we’ve introduced in R16-4 provide just that: tightened firewall policies, increased visibility and control across physical networks, private and public cloud platforms, and a heightened security posture. Through network security automation, organizations can save time and expense, and improve business agility.”

Enhanced Automation for Rule and Server Decommissioning

As an enterprise grows and becomes more complex, it’s only natural that its firewall rule base will grow accordingly, resulting in hundreds, if not thousands of rules. Many of these rules become redundant or obsolete, which can slow down business operations or cause security holes in the network. With Tufin’s new rule decommissioning feature, users can automatically tighten firewall policies to help improve overall business agility and boost their security posture – with a simple click of a button. R16-4 enables users to:

  • Increase productivity and tighten security with an end-to-end process for decommissioning unnecessary rules.
  • Improve decision making with a comprehensive data set for each access rule across vendors and platforms, including information on when the rule was last modified.

Additionally, Tufin Orchestration Suite R16-4 enhances the streamlined process for server decommissioning with automated provisioning for Cisco ASA and Juniper SRX through CLI commands added to the auditable process.

Define and Enforce a Central Cloud Tag Policy

Tufin Orchestration Suite R16-4 eases security and compliance fears not only for physical firewalls, but for hybrid cloud platforms, too. Users can define and enforce a central tag policy across private and public cloud infrastructures from a single dashboard to regulate the proliferation of resources and control the correct security category allocation. Additional benefits of the new tag policy feature include the ability to:

  • Pinpoint and implement one central tag policy based on organizational policy, such as mandatory tagging and limitations of valid tag values.
  • Gain control of Amazon Web Services (AWS) tagging by identifying tagging violations and recognizing instances without valid tags.
  • Simplify tagging enforcement into an automated DevOps pipeline using Tufin Orchestration Suite APIs for multiple cloud vendors.

The release will be generally available on February 22, 2017. Visit Tufin at this year’s RSA Conference at booth #S1821 for a more extensive background on network security policy management and a demo.