Home Page | Skip to Navigation | Skip to Content | Skip to Search | Skip to Footer

OPSEC Partners

Tufin Technologies

Product Version Certified: SecureTrack version 5.0 for RedHat, CentOS and TufinOS

Certified for use with: NG with Application Intelligence, NGX from R60, and R70

Product Description: Tufin SecureTrack™ is the industry-leading Security Operations Management solution for firewalls and network infrastructure including routers, switches, load balancers and web proxies. SecureTrack provides comprehensive change tracking, in-depth security policy optimization, and built-in compliance reports that slash audit preparation times. With SecureTrack, companies can increase network security while dramatically reducing manual, repetitive tasks.

Tufin’s pioneering SecureChange™ Workflow solution enables companies to automate security change management and risk analysis for firewalls and related network infrastructure. With SecureChange Workflow, companies can automate business processes to proactively enforce security policies. Designed to handle every aspect of security policy changes, SecureChange Workflow supports governance initiatives and takes corporate and regulatory compliance to the next level.

 
Key Features and Benefits
OPSEC Integration
Additional Information 		Clear Tufin Technologies
 

Company Description: Tufin™ is the leading provider of Security Lifecycle Management solutions that enable companies to cost-effectively manage their network security policy, comply with regulatory standards, and minimize risks throughout Check Point Security Management and Provider-1 environments. Founded in 2005 by leading firewall and business systems experts, Tufin serves over 500 customers in industries from telecom and financial services to energy, transportation and pharmaceuticals. For more information, visit www.tufin.com.
 
Key Features and Benefits
  • Change tracking and analysis: Monitors firewall policy changes, reports them in real-time and maintains a comprehensive, accurate audit trail for full accountability.
  • Security infrastructure optimization: Analysis and clean-up of complex rule bases and objects to eliminate potential security breaches and improve performance.
  • Risk management: Assessment of Security Score and risk trends based on conformance to compliance policies and industry-standard risk factors.
  • Auditing and regulatory compliance: Automated audit reports to demonstrate compliance with corporate policy and regulatory standards including PCI-DSS, SOX, HIPAA, ISO 17799 and Basel II.
  • Multi-vendor visual monitoring: Intuitive, graphical views of policies, rule bases and configuration changes for the largest variety of vendors and network devices.
  • Comprehensive security policy analysis: In-depth analysis of organizational security policy implementation on a wide range of security devices.
  • Automatic firewall policy generation: Definition of a new firewall policy based on an analysis of network traffic and elimination of permissive rules.
  • Firewall OS Monitoring: Monitoring of critical firewall operating system components and server performance indicators to prevent service interruptions and enable effective auditing.
  • Multi-vendor best practice audit: Ability to compare current configuration with best practice recommendations derived from extensive industry experience.
  • Scalability and customization: Distributed architecture supports unlimited firewalls, rules and network objects. Reports can be customized to meet your needs.
  • Security change automation: Automatic processing of security change requests to simplify the user experience while making network administrators more effective.
  • Security process management: Planning and definition of organizational security policies and translation into specific use cases and templates.
  • Proactive risk analysis: Powerful risk analysis to identify potential security risks and ensure compliance with organizational security standards – before any change is executed.
  • Separation of duties: Support for multiple roles within the security change process to meet the most demanding business and regulatory standards.
  • Complex workflows: Support for workflows with multiple participants at each step.
  • Policy change advisor: Automatically suggests how to implement firewall configuration changes in the most effective way.
  • Pre-defined business process templates: Out-of-the box templates for the most frequently-requested changes speeds deployment and enables companies to benefit from years of industry experience.
  • Powerful change-template editor: Templates can be customized easily to meet the specific requirements of every organization.
  • Integration with existing ticketing and help desk systems: Simple, rapid integration with leading IT systems to enable deployment within a short time.

OPSEC Integration
SecureTrack uses the LEA and CPMI API's to track all the changes made by administrators logged onto a Check Point SmartDashboard or Provider-1 GUI. Whenever the administrator saves the policy, or installs it on a set of firewall modules, SecureTrack is immediately notified of the change. A secure OPSEC connection is then used to retrieve the new security policy, which is stored in SecureTrack's internal database.
 

Additional Information

Tufin Company Profile
SecureTrack Datasheet
SecureChange Workflow Datasheet
Firewall Operations Management White Paper
Complete list of Tufin Resources