FIREMON DELIVERS
Continuous Compliance & Automated Policy Management
After years of manually producing compliance audit reports using Microsoft Excel, a failed audit caused a leading credit union to turn to FireMon for the visibility, accuracy, and automation necessary to enhance their security and compliance posture.
Use Cases
Industry: Financial Services
100%
PCI and NIST compliance
100%
Visibility and control of their Palo Alto and Check Point firewalls
83%
Reduction in compliance audit preparation time
The Challenge
After a failed audit, the company realized their current approach to managing firewall security policies wasn’t enough. The company lacked the visibility, automation, and reporting capabilities necessary to detect and clean up redundant and non-compliant rules, leading to PCI and NIST compliance uncertainty as well as an overworked team.
The company sought to:
- Upgrade from using Microsoft Excel spreadsheets to manually prepare audit reports
- Achieve and maintain PCI and NIST compliance
- Gain a single, comprehensive view of policy across their multi-vendor environment
- Automate change management processes, clean up rule bases, and improve reporting
- Eliminate error-prone and time-consuming manual processes
- Integrate with an ITSM solution to work with and track tickets
About the Company
A 70-year-old credit union with over 20 locations across the Western United States.
The Solution
FireMon’s combination of compliance and change management tools delivered a comprehensive solution with real-time visibility, control, and management capabilities for all network security devices across the company’s multi-vendor environment.
- Consolidated compliance management for Palo Alto and Check Point firewalls
- Out-of-the-box and customizable compliance assessments, automated rule documentation and reporting, as well as workflows for rule review and recertification
- Complete policy lifecycle management with audit trail tracking and automatic workflows to regularly review existing rules
- FireMon’s integration with ServiceNow provided context-aware change automation
“We always knew we weren’t using the latest and greatest to handle our audit reports, but we thought we were doing enough to get by. A failed audit told us otherwise. I wish we went with FireMon earlier as the time and manpower savings have been incredible.”
Director of InfoSecManaging the selection and deployment of FireMon
Results
- 100% PCI and NIST compliance
- 100% visibility and control of their Palo Alto and Check Point firewalls
- 83% total time reduction for compliance tasks with automated compliance reporting
- Reduced risk by removing redundant, overlapping, or unused rules
- Eliminated error-prone and time-consuming manual processes for rule set up and compliance reporting
