Tufin unveils new tool that delivers real-time visibility into firewall rule changes for orgs of all sizes

Tufin, a company pioneering a policy-centric approach to security and IT operations, announced the availability of the Tufin Firewall Change Tracker, a new free tool that delivers real-time visibility into firewall rule changes for organizations of all sizes.

The new tool enables security teams to view multi-vendor firewall changes in real time and centrally monitor what was changed by whom, when and why – regardless of whether the firewall is physical, virtual, in the cloud or on-premise.

The recent spike in remote work is putting unprecedented strain on organizations’ network and security teams due to the surge in new access requests from remote employees. The increase in requests that IT and security managers must contend with translates into an increased scale of firewall rule changes across their datacenters and cloud.

“It’s overwhelming, and nearly impossible for security teams to monitor and analyze every change across their hybrid IT environment – changes that are becoming increasingly complex with such a dramatic increase in remote workers and new access requests,” said Reuven Harrison, Chief Technology Officer and co-founder of Tufin.

“Enterprises now have to deal with many new devices that people are pushing changes to, and that not only introduces tremendous risk to the network but also creates real roadblocks to connectivity. Our Firewall Change Tracker is the only free tool on the market giving organizations of all sizes immediate visibility they need to deal with this challenge.”

Tufin’s Firewall Change Tracker, based on the award-winning Tufin Orchestration Suite, is the only tool on the market that enables users to view and track changes across multiple vendor firewall devices, leveraging Tufin’s broad integration with all leading firewall vendors.

The tool enables:

  • Firewall configuration change monitoring, enabling security teams to easily view what was changed, by whom, when, and why
  • Centralized visibility into firewall changes across firewall vendors, allowing organizations to view all multi-vendor devices from a single dashboard
  • Easy detection and ability to troubleshoot misconfigurations and security issues by comparing different change revisions.

The Tufin Firewall Change Tracker is available now, with quick and easy installation. With just a few clicks to deployment, users can get it up and running immediately. Tufin provides all of the necessary documentation to help users install and use the tool.

New infosec products of the week: February 14, 2020

RSA Archer SaaS: An integrated approach to managing risk

RSA Archer SaaS can help reduce the time and resources dedicated to on-premise platform upgrades, patches, and maintenance activities, as well as enable customers to focus on maturing and expanding their integrated risk management programs.

infosec products February 2020

Farsight Security enhances its Security Information Exchange data-sharing platform

Farsight Security announced enhancements to its Security Information Exchange data-sharing platform to help security professionals measurably improve the prevention, detection and response of the latest cyberattacks.

infosec products February 2020

Tufin SecureCloud: Providing unified security policy management for the hybrid cloud

Tufin SecureCloud is a security policy automation service for enterprises needing to gain visibility and control of the security posture of their cloud-native and hybrid cloud environments.

infosec products February 2020

ZeroFOX launches AI-powered Advanced Email Protection for Google and Microsoft platforms

The ZeroFOX Advanced Email Protection suite includes capabilities that address Business Email Compromise Protection for Google’s G Suite and Microsoft’s Office 365 platforms, which identifies impersonation-based attacks targeting employees.

infosec products February 2020

Devo Security Operations: Transforming the SOC and scaling security analyst effectiveness

Devo Security Operations is the first security operations solution to combine critical security capabilities together with auto enrichment, threat intelligence community collaboration, a central evidence locker, and a streamlined analyst workflow.

infosec products February 2020

esCLOUD extends managed detection and response to cloud platforms

esCLOUD constantly monitors customer cloud environments to detect improper configurations and vulnerabilities that could lead to data loss and compromise. Automated policy enforcement, combined with response and remediation from eSentire’s expert security analysts, ensures that customers can operate in the cloud with confidence.

infosec products February 2020

Tufin SecureCloud: Providing unified security policy management for the hybrid cloud

Tufin, a company pioneering a policy-centric approach to security and IT operations, announced the availability of Tufin SecureCloud, a security policy automation service for enterprises needing to gain visibility and control of the security posture of their cloud-native and hybrid cloud environments.

SecureCloud, built from the ground up and optimized for the cloud, is a major new addition to the Tufin Orchestration Suite – establishing Tufin as the first and only vendor to unify security policy management across on-premises, cloud-native, and hybrid clouds.

SecureCloud combines and extends the functionality previously available in Tufin Orca and Tufin Iris, and unifies cloud security policy management for container, microservices and hybrid cloud environments in a single solution – giving organizations greater visibility and control of cloud security, regardless of environment.

Today’s enterprises are rapidly moving workloads to the cloud to bring products to market quicker, be more responsive to customers’ needs, and to take advantage of business opportunities. But, all too often in today’s dynamic cloud development environments, developers have the ability to build and deploy applications, totally bypassing security.

As a result, security teams find themselves with complex, fragmented networks, and lack the visibility and control required to ensure security and compliance.

Ensuring the security and compliance of cloud-native and hybrid cloud environments, including Kubernetes, SecureCloud provides security policy visibility, automated security policy discovery and generation, and the ability to establish a zero trust security model, without compromising the business agility benefits of moving to the cloud or developer productivity.

According to a research report from Gartner, “Nearly all successful attacks on cloud services are the result of customer misconfiguration, mismanagement and mistakes.

“Security and risk management leaders should invest in cloud security posture management processes and tools to proactively and reactively identify and remediate these risks.” (Gartner “Innovation Insight for Cloud Security Posture Management,” published 25 January 2019 by Gartner Distinguished VP Analyst Neil MacDonald).

Business goals and digital transformation efforts are best met when DevOps and security teams can function most efficiently and effectively. SecureCloud’s policy automation empowers DevOps and security teams by removing the need to introduce new processes or technologies that traditionally impact business agility and create friction.

Tufin SecureCloud automatically generates, provisions and synchronizes security policy changes across hybrid cloud environments.

“Enterprises are rapidly moving workloads to the cloud to gain greater business agility, achieve business goals, and drive digital transformation efforts,” said Ruvi Kitov, CEO and Co-Founder of Tufin.

“However, these new workloads often integrate with systems that reside in the data center or private cloud. With the addition of SecureCloud to the Tufin Orchestration Suite, for the first time, companies can enforce consistent policies across the entire hybrid cloud, enabling unified security policy management, regardless of environment.

“Tufin’s policy centric, automation-based approach to managing security enables organizations to move to the cloud without compromising on security or developer productivity.”