EN 
Not days preparing for regulatory audits
Policy changes implemented without compliance validation
Visibility of recently acquired firewalls
The Challenge
Time-consuming manual processes, inconsistent policy management, and multiple management consoles made compliance violations nearly impossible to detect and even harder to clean up.
The company sought to:
- Clean and reduce their large rule base that consisted of redundant, overly permissive, and shadowed rules
- Gain 100% visibility of network firewalls across current and to-be-merged environments
- Simplify and accelerate ensuring universal standards are met by consolidating management of their multiple network security policy vendors into a single management console
- Achieve continuous monitoring and audit preparedness of firewall operations
The Solution
With FireMon’s network security policy management solutions, they gained real-time visibility, control, and management capabilities for all network security devices across its hybrid, multi-vendor environment.
- 100% visibility and control by standardizing and consolidating firewall, cloud security group, and other network policy device rulesets into a single management console
- Policy standardization and optimization identified and cleaned redundant, overly permissive, and shadowed rules
- A complete suite of rule assessment tools that detect vulnerabilities, misconfigurations, and traffic paths to continuously monitor firewall operations
- Proactive compliance checks and auto-denial of changes that violate compliance standards
- Benchmarks for network security policy with custom business risk policy and best practices reports, preconfigured and ad hoc compliance/audit reports, on-demand and scheduled risk reports, and on-demand, scheduled, and real-time (on change) compliance reports
- Migration planning helped enable their transition to the cloud
FireMon gave us the visibility and control we needed to clean up our firewall policies and ensure compliance across a rapidly changing environment. What used to take days now takes minutes, and we have full confidence that our rules meet internal standards and PCI requirements, every time.
Results
- Audit prep reduced from days to minutes
- Real-time visibility into traffic flows and policy enforcement across the hybrid environment
- Automated policy management streamlined rule provisioning and reduced manual effort
- 100% of rules evaluated against PCI and other frameworks
- 100% of changes made outside of defined windows alerted