EN 
Policies managed with FireMon
Policies cleaned in 1 year
Devices managed in one centralized platform
The Challenge
A lack of firewall visibility, fragmented rule documentation, and a convoluted change control process created risk, audit failures, and operational inefficiencies.
The company sought to:
- Gain full visibility into firewall rule changes implemented by a third-party MSP
- Ensure scalability of policy oversight across nearly 2,000 globally distributed firewall devices and growing infrastructure
- Establish a centralized, standardized repository for all firewall rule documentation
- Support internal compliance checks and PCI readiness with detailed rule analysis
- Provide visibility into complex change control processes governed by a communications matrix
- Accelerate cleanup of a bloated global rule base spanning thousands of rules
The Solution
FireMon became the foundation of this organization’s firewall oversight strategy, providing real-time visibility, centralized documentation, and scalable firewall policy management across a hybrid Check Point and Palo Alto environment.
- By validating whether firewall changes matched original requests, FireMon helped the team hold their MSP accountable and avoid costly misconfigurations.
- FireMon established the company’s first centralized rule documentation repository, enabling standardization and traceability across all firewall changes.
- FireMon supports the organization’s internal PCI compliance framework and is used within the PCI zone to lock down overly permissive rules with two-factor authentication (TFA), further strengthening enforcement and ensuring compliance.
- With over 5,000 firewall rules cleaned last year alone, FireMon accelerated the reduction of redundant and risky policies.
- More than 100 internal stakeholders gained access to FireMon’s visibility and reporting features, enabling smarter, faster decision-making.
FireMon has completely changed the way we manage our firewalls. With nearly 2,000 devices around the world, having one place to see everything, document changes, and hold our MSP accountable has been a game-changer. It’s scalable, reliable, and helps us stay compliant without the headaches.
Results
- Centralized documentation across 1,980 firewall devices
- 5,000+ rules cleaned in one year
- 100+ internal users accessing FireMon data
- PCI and internal compliance readiness achieved