Firewall policy cleanup and consolidation was needed to maintain PCI compliance for this Fortune 1000 retail company.

Case Study

100% PCI Compliance & Streamlined Firewall Policy Cleanup

A Fortune 1,000 operator and franchisor of over 3,000 rent-to-own stores that offer furniture, electronics, and appliances.

Use Cases:

Enforce Compliance

Industry:

Retail

The Challenge

Time-consuming manual processes, inconsistent policy management, and multiple management consoles made compliance violations nearly impossible to detect and even harder to clean up.

The company sought to:

Clean and reduce their large rule base that consisted of redundant, overly permissive, and shadowed rules
Gain 100% visibility of network firewalls across current and to-be-merged environments
Simplify and accelerate ensuring universal standards are met by consolidating management of their multiple network security policy vendors into a single management console
Achieve continuous monitoring and audit preparedness of firewall operations

The Solution

With FireMon’s network security policy management solutions, they gained real-time visibility, control, and management capabilities for all network security devices across its hybrid, multi-vendor environment.

100% visibility and control by standardizing and consolidating firewall, cloud security group, and other network policy device rulesets into a single management console
Policy standardization and optimization identified and cleaned redundant, overly permissive, and shadowed rules
A complete suite of rule assessment tools that detect vulnerabilities, misconfigurations, and traffic paths to continuously monitor firewall operations
Proactive compliance checks and auto-denial of changes that violate compliance standards
Benchmarks for network security policy with custom business risk policy and best practices reports, preconfigured and ad hoc compliance/audit reports, on-demand and scheduled risk reports, and on-demand, scheduled, and real-time (on change) compliance reports
Migration planning helped enable their transition to the cloud

FireMon gave us the visibility and control we needed to clean up our firewall policies and ensure compliance across a rapidly changing environment. What used to take days now takes minutes, and we have full confidence that our rules meet internal standards and PCI requirements, every time.

Manager of Cyber Security

managing the selection and deployment of FireMon

Results

Audit prep reduced from days to minutes
Real-time visibility into traffic flows and policy enforcement across the hybrid environment
Automated policy management streamlined rule provisioning and reduced manual effort
100% of rules evaluated against PCI and other frameworks
100% of changes made outside of defined windows alerted

Download the PDF of case study
Download

Minutes

Not days preparing for regulatory audits

Policy changes implemented without compliance validation

100%

Visibility of recently acquired firewalls

About FireMon

FireMon’s mission is to improve security operations that will in turn lead to better security outcomes. FireMon delivers industry-leading security policy management, cloud security operations, and asset management solutions. Our platform is the only real-time solution that reduces firewall and cloud security policy-related risks, manages policy changes, and enforces compliance. FireMon’s Cloud Defense (formerly DisruptOps) is the only distributed cloud security operations offering that detects and responds to issues in the fast-paced public cloud environments. Our cloud-based Asset Management solution (formerly Lumeta) scans entire infrastructures to identify everything in the environment and provide valuable insights into how it’s all connected.

100% PCI Compliance & Streamlined Firewall Policy Cleanup