Security Policy Orchestration for Amazon Web Services (AWS)

Cloud adoption is not only commonplace but increasing faster than anticipated. According to a 2018 ESG white paper titled “Network Security Operations Transformation: Embracing Automation, Cloud Computing and DevOps,” enterprises are increasing their use of the public cloud 15% faster than forecasted 2 years ago. While these new platforms offer clear benefits to the enterprise such as increased business agility and reduced costs, they can compromise network security by increasing the attack surface and exposing the business to cyber threats.

Tufin Orchestration Suite provides centralized management with end-to-end, policy-based change automation of Amazon VPCs, Security Groups and Instances alongside on-premises data centers and other cloud platforms — for full visibility across the enterprise using a single console. With Tufin, organizations can seamlessly extend network security management to critical business applications deployed on AWS, while ensuring the enterprise is fully secure and compliant.

Benefits of using Tufin

  • Gain comprehensive visibility to AWS applications, resources and security groups in real-time with automated discovery and modeling
  • Manage and control enterprise security policy across hybrid cloud and physical networks from a single pane of glass
  • Consistent visibility of the AWS environment reflecting the addition or removal of AWS VPCs
  • Leverage application-centric visibility and control across public and private clouds
  • Enforce continuous compliance and audit readiness for AWS applications
  • Track all changes and compare differences in access policy
  • Fulfill audit requirements through reporting
  • Mitigate cyber threats with tight management of network segmentation and zones
  • Maximize business agility with application connectivity management and network security intelligence
  • Boost productivity without compromising security with policy-based automation for changes to AWS security groups (including automated provisioning)
  • Simplify application migration to AWS and ensure security policy compliance throughout the process