SOURCE: Tufin Technologies

Tufin Technologies

October 23, 2012 09:00 ET

Tufin Survey Reveals Application Connectivity Management Is the Number One Firewall Management Challenge

Almost 90% Report at Least Half of All Firewall Changes Are Application Connectivity-Related; 54% Lack Confidence Their Team's Processes Fully Address the Related Compliance and Security Exposure

RAMAT GAN, ISRAEL--(Marketwire - Oct 23, 2012) - Tufin Technologies, the market-leading provider of Security Policy Management Solutions, today announced the results of a recent survey. While firewalls were initially designed as a perimeter gateway, Tufin's survey of 140 network security professionals report that enterprise application connectivity-related issues now drive the vast majority of firewall changes. However, few have effective processes in place to account for this shift, and almost one fifth don't have any processes in place for managing enterprise application connectivity-related firewall data at all. As a result, 64% experience application service disruptions due to network configuration changes, as often as 10 times per year, and one third believe their organization may have had a security breach due to an application-related rule change. These findings highlight the business case for SecureApp, which Tufin launched in September 2012.

"While we had to ensure that our security policy was implemented without compromise, applications were, and still are, the lifeblood of our organization. Our firewall team was continuously being challenged by the ever-increasing risk of attacks and they needed advanced tools to detect and mitigate the risks," said SecureApp customer Christoph Littwin, Head of Telecommunications, SIX Group. The results of Tufin's survey indicate Mr. Littwin's situation is now the norm. Pertinent findings include:

  • 55% of respondents have more than 50 mission-critical enterprise applications deployed across their organization; About one third have more than 100
  • Almost 90% say that more than 50% of their organizations firewall changes are application-related
  • 60% of respondents manage connectivity requirements across three or more network security consoles
  • 31% say their organization may have had a security breach due to a rule change related to a new application
  • 64% experience application service disruptions due to network configuration changes up to 10 times per year
  • 41% deploy at least one new application each week and 31% each month; 71% on-board at least one new user to an existing application each week
  • 37% keep track of application connectivity requirements by inserting comments into the firewall rule base, subjecting the organization to procedural inefficiencies:
    • Application owners, after defining the applications' connectivity requirements, are left with limited visibility
    • The firewall policy is defined by the application connectivity policy, creating a bottom-up rather than top-down approach
    • 16% don't keep track of application connectivity requirements at all
  • 54% may have opened ports NOT required for applications, exposing the organization to potential compliance violations and security breaches

Continuing its tradition of innovation, Tufin developed SecureApp to enable network security administrators to create common ground with application owners and automate business processes relating to application connectivity. SecureApp separates the business requirements from the underlying firewall and router policies, enabling security professionals and application owners to easily define, update, monitor and remove applications -- without analyzing long lists of access rules on multiple firewalls and routers.

"This survey supports our belief that application connectivity management is the next frontier of firewall management," said Ruvi Kitov, CEO and Co-Founder, Tufin. "Just as Next Generation Firewalls caused a paradigm shift in the firewall market by enabling policies to be based on users and applications, SecureApp heralds a paradigm shift in the security policy management market by delivering a top-down approach based on business requirements, instead of a bottom-up approach based on configurations."

About Tufin Technologies
Tufin™ is the leading provider of Security Policy Management solutions that enable organizations to take control of their firewalls. More than 1000 companies have deployed the award-winning Tufin Security Suite to proactively manage risk, continuously comply with standards, and keep business-critical applications online. The Tufin Security Suite (TSS) consists of three products: SecureTrack, SecureChange, and Tufin's most recent innovation, SecureApp. TSS enables IT to automate and centrally manage security policies across a wide set of network infrastructure, including traditional and next-generation firewalls, routers, switches and load balancers. With a unique, application-oriented approach, Tufin simplifies and streamlines firewall operations, slashing the time spent on policy management by up to 75%. Founded in 2005, Tufin serves customers in every industry including finance, telecommunications, transportation and energy, and partners with Check Point, Cisco, Juniper Networks, Fortinet, F5, Palo Alto Networks, McAfee and BMC to provide the most comprehensive solutions available.

For more information visit www.tufin.com, or follow Tufin on: