AlgoSec Security. Visibility. Governance
   
 
Overview
Policy Optimization
Rule & Object Cleanup
Risk Management
Change Management
Cisco PIX to ASA Migration
Server IP Migration
Automated Audit
Managed Services
Security Compliance
PCI DSS
SOX
ISO 27001
Flash Demos
White Papers
 

Sarbanes-Oxley Act (SOX)

AlgoSec provides end-users and auditors with automatically-completed SOX compliance reports of their firewalls.

The AlgoSec Firewall Analyzer SOX Compliance Report is based on the two control frameworks that have been widely adopted by public companies subject to the requirements of the U.S. Sarbanes-Oxley Act of 2002 (section 404): the Committee of Sponsoring Organizations of the Treadway Commission (COSO) Internal Control Integrated Framework, released in 1992, and the IT Governance Institute's Control Objectives for Information and Related Technology (CobiT). Since the organization's firewalls form a crucial component in IT security infrastructure, controlling, monitoring, and auditing the firewalls are all activities that are subject to the COSO and CobiT frameworks.

The Firewall Analyzer's automatic risk assessment, based on industry best practices, addresses the COSO "Risk Assessment" component, and the following CobiT domains:
  • PO9 – Assess Risks
  • DS5 – Ensure System Security
  • M2 – Assess Internal Control Adequacy
  • M4 – Provide for Independent Audit

The Firewall Analyzer's change management offering, and in particular its Change History, E-mail Notification, and Upon-Policy-Install analysis, all address the COSO "Control Activities" component, and the following CobiT domains:

  • AI4 – Develop and Maintain Procedures
  • AI6 – Manage Changes
  • DS9 – Manage the Configuration
  • DS10 – Manage Problems and Incidents
  • M1 – Monitor the Processes

The Firewall Analyzer's policy optimization offering, and in particular its Query feature, its Unused/Covered Rule analysis, Unused Object analysis, Disabled/Timed-out rule analysis, and non-logged/non-commented rule analysis, all address the COSO "Monitoring" component, and the following CobiT domains:

  • DS9 – Manage the Configuration
  • DS10 – Manage Problems and Incidents

To receive an automatically completed SOX Compliance Report on one of your firewalls register for a free evaluation.

To view sample reports and access an interactive demonstration register for our Customer Resource Center.



We quickly saw a clear return on our investment with the AlgoSec Firewall Analyzer...


Anton Spitzer,
Infrastructure Services, Porsche Informatik



AlgoSec affords us realizing operational efficiencies in global security policy management and compliance.


Hugo Van der Veeken,
Atos Worldline SA/NVsecurity department head



Network security VARs, take note: AlgoSec’s FireFlow network policy change workflow management software is the next hot-ticket item for customers.


eWeek Magazine



The AlgoSec Firewall Analyzer fills a critical need for us by automating what was a manual, labor intensive and error prone process.


Anton Spitzer,
Infrastructure Services, Porsche Informatik



AlgoSec’s Firewall Analyzer has helped us significantly improve our overall network security.


Ruza Manojilovic,
Manager Security Operations Teranet



It (AFA) easily and quickly provided Atos Worldline with the ability to understand, track and verify changes to our firewall infrastructure…


Massoud Kamran,
Security Consultant at Atos Worldline Belgium



Using AFA’s turnkey solution for PCI DSS has been invaluable for us in terms of time and effort.


Ruza Manojilovic,
Manager Security Operations Teranet



By utilizing AFA we no longer require the services of an external source to perform an audit.


Ruza Manojilovic,
Manager Security Operations Teranet.



By utilizing AFA we no longer require the services of an external source to perform an audit.


Ruza Manojilovic,
Manager Security Operations Teranet



By creating FireFlow using the AFA engine, AlgoSec has effectively created a solution that can automate the entire network security lifecycle...


Frost & Sullivan Analyst



The AFA allows us to get all of our firewall information in one place, providing IT Governance and visibility where it did not exist.


Anton Spitzer,
Infrastructure Services, Porsche Informatik



AlgoSec Firewall Analyzer’s automated and intelligent analysis lets us know the implications of a change and avoid potential risks which save us time, effort and money.


Peter Johannes,
head of Security and Architecture Policy at Atos Worldline Belgium



AlgoSec’s Firewall Analyzer is a must have for anyone who manages a rule set of 100 or more.


Network World Magazine



With the AFA we can focus on what is most important to Porsche Informatik – our customers.


Anton Spitzer,
Infrastructure Services, Porsche Informatik