FireFlow™ Frequently Asked Questions

Do you follow the entire network security policy change process? Yes, we automate the process from submission to audit. Though we do not actually implement the changes we provide end-to-end guidance and audit oversight to ensure that changes are approved, necessary and implemented as intended.

How do you help reduce risk? FireFlow proactively helps enterprises reduce risk. FireFlow is based on AlgoSec Firewall Analyzer technology, which has the market’s leading analytics engine – calculating every potential packet the firewall or router may encounter and comparing the allowed traffic with industry best practices. With FireFlow administrators can run ‘what-if’ analyses against this analytics engine to identify potential security risks and the potential impact of those risks.

How do you increase operational efficiency? FireFlow enables administrators to get the network security policy change lifecycle right the first time around ensuring that additional clutter is not injected into the policy base. Thanks to its unique ability to detect the network topology, FireFlow automatically recognizes unnecessary changes, and pinpoints what needs to be changed in the policy to honor the request. 

How do you treat requests that are technically vague? Since FireFlow “speaks” firewall languages, it provides mechanisms to translate these business requests into actionable technical requirements.

Do you integrate with enterprise change management systems? Yes, we integrate with several including BMC Remedy, HP ServiceCenter (formerly Peregrine) and others.

Do you integrate with enterprise user authentication servers? Yes, we integrate with Enterprise User Authentication Servers including Radius and Active Directory.

We use email and web forms to submit change requests as many users issuing the requests are not from IT. Do you integrate with these methods or do we need to train our end users on new methods? Yes, we retain existing change management processes within our end-to-end framework, eliminating the need to train end users.

How do we know that actual changes match the tickets, can you verify this? Part of our lifecycle includes ‘reconciliation’ which automatically matches request tickets to detected changes and reports on mismatches and unauthorized changes.

We have our own criteria we want to see on request tickets, can you customize the ticket attributes? Yes, the solution is highly customizable and you can customize attributes based on your needs.

We have specific criteria we need to view, can you customize the dashboard? Yes, we offer a customizable dashboard and you can determine which pieces of the dashboard you would like to be visible and to whom.

We have people who move among teams and are decision makers in certain instances, how would we provide specific permissions to them? FireFlow was designed with this need in mind and is role based. FireFlow defines roles, assigns users to roles and grants permissions to roles.

Do you actually implement the change? No, we are not a provisioning solution.

We would like the interface to be in our country’s native language. Can this be done? Yes. FireFlow’s front-end has multi-language support capabilities.

What is the cost of the solution? Pricing starts at $24,000.