network security risk management

The Challenge

Continuous Risk Assessment

Business continuity and breach prevention largely depend upon an organizations ability to continuously assess their risk.

In today's complex, multi-vendor, hybrid networks, it is an enormous challenge to understand network configurations and the impact of every change before it is implemented, whether it is a firewall configuration, security group or a cloud security tag. Keeping up with volume of changes requested without knowledge of the network topology means that organizations are blind to vulnerabilities and are unable to prove compliance with internal and external regulations.

Security policy orchestration plays a central role in the risk assessment process to have complete visibility, improve security and maintain compliance.

The Solution

A Rich Solution for Risk Analysis

Tufin Orchestration Suite enables the enterprise to understand overall risk posture with drill down capabilities to investigate security gaps. In addition, any change request to network and firewall configurations, cloud security groups or tags is proactively assessed for risk before implementation.

To continuously manage risk and ensure business continuity, Tufin Orchestration Suite offers powerful capabilities:

  • Unified Security Policy (USP)
    • Visualize your network segmentation policy with a zone-to-zone matrix that maps access restrictions to reduce the attack surface.
    • Define access restrictions across cloud security groups and provide a baseline for tagging policy
    • Automatically identify policy violations across multiple vendors and platforms
    • Control risk, through centralized management and monitoring of policy violations and exceptions
    • Use pre-defined templates to define and enforce a unified security policy
  • Proactive risk analysis
    • Compare the requested access to the pre-defined security policy baseline to identify and control potential violations.
    • Reduce audit preparation time and effort and provide continuous compliance with internal policies and industry regulations
  • Violations Dashboard
    • Gain a centralized view of all violations based on level of criticality, such as rule, traffic, internal policy and regulatory compliance