see more

Resources

Get to know us better! Gain valuable insights into how we think by visiting our blog, or take a look at the industry events we're frequenting on our events page. You can also geek out with us by attending one of our security management webinars, or dive head first into the products and solutions we provide in our Resource Library. There's lots to keep you busy! 

Untitled-64

Blog

May 24, 2017 Support for Check Point R80.10 in Security Manager 8.15
FireMon customers who have Release 8.15 and have Check Point R80.10 will be able to take advantage of Check Point’s Inline Layer Policy Management. Inline Layers allow a security organization to give more engineers more access to more rules while minimizing the risk of giving these engineers access to all of the rules in a policy. For example, a network administrator can create different policies for different users.
Read more
May 24, 2017 A Practical History of the Firewall - Part 2: The Value of Management
The mid-90s was a time when networks were rapidly evolving. For example, ethernet was an option, but not always the local network protocol in use (remember token ring?). Connecting to the Internet was not assumed, it was discussed. Dial-up was still common, and AOL was the dominant player. To suggest that firewalls were mainstream technology would misunderstand the Internet as mainstream. One of the implications of this fast-changing network was a significant amount of ignorance and inexperience. In this context, the manageability of a firewall should not be overlooked as a key market driver for the eventual winner in this market
Read more
Dec 21, 2011Risk is the Yardstick

In our series on risk here at the Firemon blog, we have clearly stated that network security is all about risk. So if risk truly is the yardstick we should use to measure the state of our organizations security, why are so many of us not measuring risk correctly? There are many factors that contribute to this issue, but ultimately there tends to be one overriding issue that affects organizations perspective around security and risk.

Too many organizations view security and risk reduction as a project rather than an ongoing process. There are a number of security arenas where this myopic perspective of security as a project is displayed. Compliance initiatives around PCI DSS, HIPPA, GLBA, etc. tend to get slotted as a project to complete, and after said completion, security has been achieved. While compliance initiatives are an important and depending on the industry, required part of an organizations security efforts, they are not a project to complete that results in a state of security and therefore reduced risk. Time and time again, we have seen too many organizations assume that their PCI DSS compliance equals a secure network, only to be shocked when they are subsequently attacked.

Similarly, implementing a vulnerability analysis and remediation project has become most organizations default way to identify and reduce risk within their networks. Typically an organization will run an enterprise vulnerability scanner at set times, compile a list of the vulnerabilities identified, possibly prioritize actions based on asset value, and then schedule patch work for the next 2-3 months to fix the 100's or 1000's of vulnerabilities listed by the scanner. As we saw with compliance initiatives, too many organizations treat vulnerability scanning as simply another project to tick off the list, and once complete, assume they are secure. The vulnerability scanner also has no knowledge of the network security controls that are in place, and therefore is unable to truly identify exactly what is the most severe risk to the network security based off what is truly reachable or exploitable as we have previously highlighted on our blog. Vulnerability Scanners are a vital tool within any organizations remediation strategy, and one that hopefully most organizations are utilizing. They are not the end-all solution answer to risk by themselves though.

In both security arenas we discussed above, there is no real time, ongoing, effective measurement of the organizations true exposure to risk.  Project based approaches do not allow an organization to truly see how the efforts of the organization to reduce risk ultimately affect the overall risk posture. In both cases, they are gaining a false sense of security simply by completing projects related to security. To truly manage and reduce risk, organizations need to make the management of risk a daily part of their operational security. In order to operationalize risk, practitioners need to leverage a tool that fully measures all of the elements that affect the risk to the network, prioritize the actions that need to be taken, highlight the impact those actions will have on the security posture, and allow the organization to see how their risk posture has changed over time or as new changes have been required within their network connectivity. The key element to said tool must be a truly effective measurement of risk to enable risk management to become a daily operational function of security. In our next post, we will discuss what elements are required to fully and accurately measure risk to a network.

Josh Mayfield leads platform sales for Immediate Insight, FireMon's security analytics solution.

Events

Webinars

Upcoming Webinars

Jun 06, 2017 2:00 pm - 3:00 pm PDT Top 5 Risks of "Dirty" Firewalls
Firewall rules are notoriously complex and voluminous in nature. Even small organizations have multiple firewalls and significant complexity. But large organizations are overwhelmed.
Register
Jun 01, 2017 2:00 pm - 3:00 pm PDT 4 Steps to Prepare for the Next WannaCry
Now that the immediate threat of WannaCry has died down, it is time to take a step-back and analyze the situation to see what we can learn from this attack to better protect ourselves from the next “unknown”.
Register
May 23, 2017 Der Countdown läuft, noch 365 Tage bis zur DSGVO (GDPR): Machen Sie Ihr Netzwerk fit für Compliance
Netzwerksicherheit ist deutlich mehr als Cyberbedrohungen nur zu stoppen. Es geht auch darum für das Unvermeidliche gerüstet zu sein. Nämlich einen Datenschutzvorfall, den die Technik allein nicht hat verhindern können. Die EU Datenschutz-Grundverordnung (kurz DSGVO GDPR) ist, neben anderen mehr, ein solches Compliance-Rahmenwerk mit dem Unternehmen sich auseinandersetzen müssen und das im Mai des kommenden Jahres in Kraft tritt. Dann sind Unternehmen beispielsweise verpflichtet innerhalb von 72 Stunden nach einem Datenschutzvorfall darüber zu informieren.
View
May 04, 2017 Threat Hunting: Beyond Alerts & IOCs
Organizations are taking a more active role in detecting and responding to advanced attacks – Threat Hunting. In this webinar, you’ll discover the steps you can take to launch your threat hunting capabilities.
View
Apr 27, 2017 The Life of a Firewall: Seamless, Automated Rule Lifecycle Management

So you’ve purchased a new firewall. Now what?

You’ve got to decide which access is allowed, which isn’t allowed and whether or not rules are compliant with internal and regulatory standards.

Things are running along smoothly and then the dreaded “change.” A user submits a new access request and the fun begins. Is this access necessary? Safe? Compliant? And what happens when it’s time to retire unused rules?

View
Apr 19, 2017 Closing the Complexity Gap

How Effective Security Management Can Help Teams Cover the Exponentially Increasing Gap between Technology & the Resources Available to Manage It

Security teams today are under tremendous pressure due to the rising frequency and impact of breaches and a business that wants to move faster and faster. The answer to both of these challenges has always been to add more technology and staff resources.

However, each new technology added creates complexity. More rules are created and more data is generated. As networks continue to evolve, this complexity will only grow. And while staff resources may increase, they will never match the exponential growth of technology.

FireMon calls this phenomenon The Complexity Gap and has set out to help security teams close it.

Join us for this webinar with Frost & Sullivan where we’ll explore the causes of “The Gap” and how workforce multipliers such as intelligence and automation help staff manage their security more efficiently and more effectively.

View

News




Resource Library

Audit Compliance

Datasheets

Policy Change

Solution Briefs

Policy Change

White Papers

Visibility Monitoring Management

Analyst Reports

Security Manager
Overview of FireMon’s Flagship Firewall Management Solution
Policy Planner
Overview of FireMon’s Change Automation Solution
Policy Optimizer
Overview of FireMon’s Rule Recertification Automation Solution
Risk Analyzer
Overview of FireMon’s Attack Simulation and Risk Measurement Solution
Immediate Insight
Overview of FireMon’s Immediate Insight Solution
Intelligent Security Management
Delivering next-generation security management that boosts productivity and accelerates the agility of business
Intelligent Policy Automation
Intelligent Policy Automation: Orchestrating Change Management with Speed and Security.
Hybrid Cloud Management
Visibility into and control over Cloud Services, including AWS and OpenStack Platforms
Accelerated Incident Response
Immediate Insight in action - Orchestration, automation and analytics for data assembly and discovery
Change Simulation & Risk Scoring
Proactively reduce risk based upon network exposure and host accessibility
2017 State of the Firewall
Networking continues to evolve, yet the firewall remains critical to securing today’s enterprises. FireMon is proud to present its 3rd Annual State of the Firewall Report
Firewall Cleanup
The implications of firewall policy complexity, why it remains a problem today and how to resolve it.
Real-Time Risk Analysis
Risk analysis with real-time change configuration is key to managing security risks in your IT infrastructure.
Real-Time Data Triage
Our Immediate Insight platform from FireMon can help organizations overcome the limitations and gaps inherent to the current analytic market.
Bridging the SIEM Alert Triage Gap
Immediate Insight enables security teams to improve event triage and incident response, extending the value of your existing full-featured SIEM.
Intelligent Policy Automation
Automation Isn’t One-Size-Fits-All
Intelligent Security Management

Helping Enterprise Security Teams Improve Resource Efficiency & Reduce Overall Risk Exposure

2016 State of the Firewall
2nd Annual State of the Firewall Report based on survey of 600 IT security practitioners.
The Top 5 Myths of Data Breaches
Five of the biggest myths that exist about data breaches, and explain how and why they occur.
Firewall Sprawl: Top Four Security Gaps Exposed

Firewall technology has come a long way since its initial, most rudimentary forms. Next-Generation Firewalls (NGFW) are the latest development, and organizations are accelerating adoption to the new technology. But NGFWs aren’t a fix-all solution.

Firewall Sprawl: How Complexity Is Adding Cost & Increasing Risk
Aberdeen
Quantifying the value of Intelligent Security Management
Aberdeen
Security Analytics Brings Data-Driven Security Into the 21st Century
Forrester
Automate Zero Trust Policy And Enforcement
Forrester
The Return on Security analysis for FireMon’s Security Manager
IANS