Home Page | Skip to Navigation | Skip to Content | Skip to Search | Skip to Footer

Regulatory Compliance

Check Point and Tufin TechnologiesTufin

As organizations rely more and more on computer networks and the Internet for business operations, security challenges require increasing manpower, resources, and expertise. Many companies are focusing significant efforts on improving network security operations and processes. Although network security is relatively new discipline, its complexity and relative importance have driven the industry to define standards for planning, implementing and measuring security. Such standards include ISO 17799, BS 7799 and the COBIT framework.

The need for a standards-based security approach can be clearly seen in a variety of recent regulations, including Sarbanes-Oxley and HIPAA.

Although each regulation and standard focuses on different aspects of IT security, most regulatory requirements share a common basis - an organization's security policy needs to be properly defined, controlled and monitored. Tufin SecureTrack plays a vital role in satisfying these requirements for Firewall policies, providing critical elements of tracking, monitoring and analysis of changes in security configurations.

Tufin SecureTrack is an innovative security policy auditing, tracking and compliance solution. It enables effective monitoring of all policy changes made by administrators in Firewall configurations, providing comprehensive security policy version control, auditing and tracking. Using SecureTrack, you can monitor the work of different administrators by receiving real-time notifications on policy changes as they occur. You can also determine the exact state of your Firewall Policy, at any point in time.

Benefits

  • Increases network uptime through real-time monitoring of policy changes and quick identification of security policy configuration errors
  • Enhances compliance with organizational policy through comprehensive tracking of Firewall policy changes
  • Ensures better compliance with government regulations through improved security management procedures and processes

Tufin SecureTrack
SecureTrack constantly monitors firewall configurations, and alerts registered users on policy changes in real-time. Each policy snapshot is stored in SecureTrack's internal database for future analysis and forensics needs. Detailed, real-time reporting provides IT managers with complete control over Firewall policy changes, enabling compliance with requirements stemming from Sarbanes-Oxley, HIPAA and ISO 17799.

In addition, SecureTrack's Organizational Policy provides an intuitive framework for defining high-level policies for changes in Firewall policy. Best practice guidelines for security policies can be easily applied and enforced as part of the real-time policy audit. Business and IT managers can use SecureTrack's compliance framework to align security policies with business objectives and external requirements.

Some examples of organizational policy alert rules include:

  • Changes to specific High Risk rules (e.g., cleanup rule, DMZ rule, etc).
  • Changes made outside normal hours of operation
  • Changes made to traffic rules between the certain networks
  • Rules added that contain Any in the source or destination, and Accept as action
  • Changes to VPN rules
  • Rules enabling peer-to-peer and file-sharing protocols
  • Changes to Global Properties

Any violation of the Organizational Policy triggers real-time alerts, which are sent to IT managers and security officers. By providing the means to define and enforce risk levels for security-related administrator activities, SecureTrack delivers advanced risk identification and mitigation, and enables further compliance with standards and regulations.

Tufin SecureTrack enables auditing, monitoring and compliance with organizational policies, which are critical elements of compliance with Sarbanes-Oxley, HIPAA and ISO 17799. With SecureTrack, organizations can achieve a high level of control over Firewall policies, improve network security operations and align IT security resources with business requirements.

Check Point VPN-1 Pro
Firewalls and VPNs are the first line of defense of an enterprise. Check Point VPN-1 Pro is an integrated VPN and firewall gateway. It meets the demanding requirements of Internet, intranet, and extranet VPNs by providing secure connectivity to corporate networks, remote and mobile users, branch offices, and business partners. It also provides management, attack-protection, and traffic-shaping capabilities.

Award-winning firewall technology uses INSPECT and Application Intelligence to deliver adaptive and intelligent security. VPN-1 Pro supports an extensive list of encryption algorithms which can be used to ensure data and communication privacy. VPN-1 SecureClient complements the enterprise gateway by extending the same security to remote access users.

VPN-1 Pro can be managed via Check Point Security Management Architecture which integrates security, monitoring, logging, reporting, and intelligent information processing in a single interface to maximize operational efficiency.

VPN-Pro is available on the industry's broadest range of platforms and security appliances meeting the price/performance of any size organization.

ArrowMore on Tufin SecureTrack