Problem: Firewall Access Must Be Documented
The firewall policy is the concrete representation of the access allowed in the
enterprise. Knowing what is allowed is as simple as looking at the rules and logs
from the firewall. However, compliance standards and best practices require security
professionals to know more than just what access is allowed. They have to know why.
Access Documentation Required By:
Solution: Firewall Rule Documentation
In FireMon® Security Manager, documenting the "why" of access is as easy as combining the access
justification from the change ticket with the technical implementation of the firewall
policy. It starts when the firewall administrator enters some relevant details about
the change in the rule comments field of the policy. FireMon retrieves those details
with the policy and automatically associates them with the rule. Now the policy,
the rule, and its justification are immediately reportable, and explaining "why"
just got a lot simpler.
Key Benefits:
- No impact to daily operations.
- Pull justification and approval information directly from change management systems.
- Provide the full history of a firewall policy in a single report.