The combination of Tripwire IP360’s comprehensive discovery and profiling of all network assets, including integrated web application scanning to identify security risk in web applications, with FireMon Security Manager’s real-time knowledge of security device and network policy configurations allows organisations to:
• Continuously identify what assets are truly reachable and at risk based on actual security and network policies
• Prioritise, in real-time, which remediation steps will reduce the greatest amount of risk with the least amount of effort
• Proactively monitor all network and security policy changes
• Automatically alert enterprises that specific assets will be put at risk if proposed changes are made before they are implemented
“We’re excited about our partnership with FireMon,” said Rekha Shenoy, vice president of business and corporate development for Tripwire. “Enterprises are looking for powerful solutions that give you real-time visibility into mission-critical endpoint risk in response to the latest threats. Through this partnership, Tripwire and FireMon make it possible for businesses to understand how easily vulnerabilities can be exploited by attackers, so prioritising remediation efforts can be accomplished quickly and reliably.”
F. Ward Holloway III, vice president of business development for FireMon, commented: “The integrated FireMon Security Manager with Risk Analyzer and Tripwire IP360 solution empowers IT security organisations to implement real-time continuous monitoring to ensure they always know what assets are truly at risk, and can prioritise remediation efforts by senior, mid-level and junior resources to ensure potential exposures are patched before attackers can exploit them.”
Providing continuous, real-time visibility into network security infrastructure, policy effectiveness and underlying IT risk, the FireMon Security Intelligence Platform allows organizations to remediate exposed vulnerabilities and optimise their existing defenses. The FireMon Platform and Tripwire IP360 combination helps all levels of the IT security team to spend more time on proactive security programs by automating operational tasks and device configuration – helping to eliminate misconfigurations. According to Gartner, Inc., “through 2018, more than 95% of firewall breaches will be caused by firewall misconfigurations, not firewall flaws.”1
Unlike reactive approaches that simply log past events, Security Manager – the foundation of the Security Intelligence Platform – enables users to understand and fix configuration, policy and risk exposures in real-time. Complementing Security Manager, Risk Analyzer offers patented risk analysis capabilities that identify and prioritise vulnerabilities on key IT assets that are reachable by adversaries, ensuring that the greatest impact risks are mitigated first.
Last month, FireMon introduced the new Policy Optimizer module, designed to help enterprises rapidly improve network security device rules and policies in response to changing threats, emerging management challenges and evolving compliance requirements. Used in conjunction with Security Manager, this new module automates what traditionally has been a manual and fragmented process, empowering security teams with the ability to engage directly with key stakeholders – e.g., line-of-business, audit/compliance and IT risk management – to gather data and validate rule requests, eliminate unneeded rules and make implemented rules more targeted, productive and effective, while maintaining the highest levels of security control.