Search results

Webinars Panel: 5 ways to Better Manage your Network Security in 2020 Is your network ready for 2020? What practical steps are you taking to prepare for even more demanding security management in the new year? In this live panel discussion, Yitzy Tannenbaum, Product Marketing Manager and Avishai Wool, AlgoSec’s co-founder and CTO, will cover 5 practicalsteps to help you better manage your network security in the new year. Address these pressing network security challenges: Preventing breaches due to network misconfigurations Managing complex compliance requirements Determine the intention of your security controls and embracing intent-based network security Implementing datacenter micro-segmentation Understanding the shared responsibility model and effectively managing cloud security Kick off the new year better prepared to face the network security management challenges – don’t miss this important discussion. January 9, 2020 Prof. Avishai Wool CTO & Co Founder AlgoSec Yitzy Tannenbaum Product Marketing Manager Relevant resources Network security management: Components & features Keep Reading 5 Network Security Management Predictions for 2020 Watch Video 2020 vision predictions for the year ahead in network security Keep Reading Choose a better way to manage your network Choose a better way to manage your network Work email* First name* Last name* Company* country* Select country... phone By submitting this form, I accept AlgoSec's privacy policy Continue

Increasing Cisco ACI adoption with AlgoSec Download PDF Schedule time with one of our experts Schedule time with one of our experts Work email* First name* Last name* Company* country* Select country... phone By submitting this form, I accept AlgoSec's privacy policy Continue

A Decoy Network The strategy behind Sun Tzu’s ‘Art of War’ has been used by the military, sports teams, and pretty much anyone looking... Cyber Attacks & Incident Response How to Use Decoy Deception for Network Protection Matthew Pascucci 3 min read Matthew Pascucci Short bio about author here Lorem ipsum dolor sit amet consectetur. Vitae donec tincidunt elementum quam laoreet duis sit enim. Duis mattis velit sit leo diam. Tags Share this article 6/30/15 Published A Decoy Network The strategy behind Sun Tzu’s ‘Art of War’ has been used by the military, sports teams, and pretty much anyone looking for a strategic edge against their foes. As Sun Tzu says “All warfare is based on deception. Hence, when we are able to attack, we must seem unable; when using our forces, we must appear inactive; when we are near, we must make the enemy believe we are far away; when far away, we must make him believe we are near.” Sun Tzu understood that to gain an advantage on your opponent you need to catch him off guard, make him believe you’re something you’re not, so that you can leverage this opportunity to your advantage. As security practitioners we should all supplement our security practices with this timed and tested decoy technique against cyber attackers. There are a few technologies that can be used as decoys, and two of the most common are honeypots and false decoy accounts: A honeypot is a specially designed piece of software that mimics another system, normally with vulnerable services that aren’t really vulnerable, in order to attract the attention of an attacker as they’re sneaking through your network. Decoy accounts are created in order to check if someone is attempting to log into them. When an attempt is made security experts can then investigate the attackers’ techniques and strategies, without being detected or any data being compromised. Design the right decoy But before actually setting up either of these two techniques you first need to think about how to design the decoy in a way that will be believable. These decoy systems shouldn’t be overtly obvious, yet they need to entice the hacker so that he can’t pass up the opportunity. So think like an attacker: What would an attacker do first when gaining access to a network? How would he exploit a system? Will they install malware? Will they perform a recon scan looking for pivot points? Figuring out what your opponent will do once they’ve gained access to your network is the key to building attractive decoy systems and effective preventive measures. Place it in plain sight You also need to figure out the right place for your decoys. You want to install decoys into your network around areas of high value, as well as systems that are not properly monitored with other security technologies. They should be hiding in plain sight and mimicking the systems or accounts that they’re living next to. This means running similar services, have hostnames that fall in line with your syntax, running on the same operating systems (one exception is decoys running a few exploitable services to entice the attacker). The goes the same for accounts that you’ve seeded in applications or authentication services. We decided that in addition to family photos, it was time to focus on couples photoshoot ! Last fall we aired our popular City Photoshoot Tips & Ideas and as a result, gave you TONS of ideas and inspiration. And last but not least, you need to find a way to discretely publicize your applications or accounts in order to attract the attacker. Then, when an attacker tries to log in to the decoy applications or accounts (which should be disabled) you should immediately and automatically start tracking and investigating the attack path. Watch and learn Another important point to make is that once a breach attempt has been made you shouldn’t immediately cut off the account. You might want to watch the hacker for a period of time to see what else that he might access on the network. Many times tracking their actions over a period of time will give you a lot more actionable information that will ultimately help you create a far more secure perimeter. Think of it as a plainclothes police officer following a known criminal. Many times the police will follow a criminal to see if he will lead them toward more information about their activities before making an arrest. Use the same techniques. If an attacker trips over a few of carefully laid traps, it’s possible that he’s just starting to poke around your network. It’s up to you, while you have the upper hand, to determine if you start remediation or continue to guide them under your watchful eye. Schedule a demo Related Articles Navigating Compliance in the Cloud AlgoSec Cloud Mar 19, 2023 · 2 min read 5 Multi-Cloud Environments Cloud Security Mar 19, 2023 · 2 min read Convergence didn’t fail, compliance did. Mar 19, 2023 · 2 min read Speak to one of our experts Speak to one of our experts Work email* First name* Last name* Company* Phone number* country* Select country... By submitting this form, I accept AlgoSec's privacy policy Schedule a call

Explore Algosec's customer success stories to see how organizations worldwide improve security, compliance, and efficiency with our solutions. SANOFI FINDS THE CURE FOR TIME-CONSUMING APPLICATION MIGRATION WITH ALGOSEC Organization Sanofi Industry Healthcare & Pharmaceuticals Headquarters Paris, France Download case study Share Customer
success stories "Using AlgoSec during our data center migration allowed us to give technical project leaders access to all of the rules involved in the migration of their applications, which reduced the IT security team’s time on these projects by 80%. The application was very useful, simple to use and made everybody happy." AlgoSec Business Impact Simplify data center migration projects Reduce rule migration process time by 80% Streamline and improve firewall operations Background A multinational pharmaceutical company, Sanofi, has 112 industrial sites in 41 countries and operations in more than 100 countries. The company’s 110,000 employees are committed to protecting health, enhancing life, providing hope and responding to the potential healthcare needs of seven billion people around the world. Challenge The sensitive nature of Sanofi’s business and its wide ranging global operations require an extensive and well secured network, which currently has 120 firewalls all over the world. In the midst of a data center consolidation project, the company needed to understand how its security devices would be affected by application migrations. Sanofi was also eager to improve change management processes and gain key performance indicators (KPIs) for risk analysis.“Our main concern with the data center consolidation project was to enable various technical project leaders to see the different rules impacting the migration of their applications, and to avoid any outages. For that, we needed pre-migration and post-migration documentation on security,” says Bruno Roulleau, Network Security Architect at Sanofi. “We also needed metrics on the risk associated with different policies on the firewalls.” Solution When looking for a solution, Sanofi evaluated several vendors. “A key point for us was the ability to easily integrate the security devices in our current infrastructure, into the solution. We also wanted detailed reporting that would allow us to delegate policy management to project leaders,” Roulleau notes.Because Sanofi constantly upgrades its devices, its systems need to evolve and incorporate the new devices and rules seamlessly. “We chose the AlgoSec Security Management solution because its graphical interface is very user-friendly, it easily supports new devices and generates detailed reports and metrics on risks,” says Roulleau.Sanofi also appreciated AlgoSec’s flexibility. “AlgoSec is very open to developing new capabilities. We can ask to have some new features available by a certain date and they will deliver on time,” according to Roulleau. For a company with a complex network and rapidly evolving security needs, that responsiveness proved key to the decision to go with AlgoSec. Results Sanofi’s security team is now able to delegate responsibility for rule changes both during migration and on an ongoing basis. “Using AlgoSec during our data center migration allowed us to give technical project leaders access to all of the rules involved in the migration of their applications, which reduced the IT security team’s time on these projects by 80%. The application was very useful, simple to use and made everybody happy,” Roulleau says.Additionally, with AlgoSec’s reports Sanofi can now easily and clearly document the status of their firewalls as well as the impact of any changes on the network throughout the migration project. “We can now generate detailed reports in just three clicks!” Roulleau adds.Furthermore, AlgoSec’s optimization reports enabled Sanofi to clean up its security policies. Because they could clearly see all of the rules and their impact on network security, Roulleau’s team was able to safely eliminate unused and duplicate rules, which increased the efficiency of the firewalls. Those reports also provided insight into the risks associated with the current system and various changes being made. Schedule time with one of our experts

Azure security best practices checklist Download PDF Schedule time with one of our experts Schedule time with one of our experts Work email* First name* Last name* Company* country* Select country... phone By submitting this form, I accept AlgoSec's privacy policy Continue

Explore Algosec's customer success stories to see how organizations worldwide improve security, compliance, and efficiency with our solutions. Atruvia (formerly Fiducia IT AG) Reduces Security Risks For Banks With Algosec Organization Atruvia Industry Technology Headquarters Karlsruhe, Deutschland Download case study Share Customer
success stories "AlgoSec’s Security Management Solution is incredibly powerful. Its intelligent process improvements have directly translated into the highest level of security and compliance for our customers’ networks" Background With over 45 years’ experience in the banking sector, Atruvia ( formerly Fiducia IT AG) is one of the top ten IT providers in Germany. Today, Atruvia manages the IT networks of nearly 1,100 banks, constituting more than 100,000 PC workstations, 6,600 servers and 25,000 self-service banking terminals. Responsible for ensuring the smooth and secure processing of more than 16 billion transactions per year for its customers, Atruvia’s risk mitigation and regulatory compliance strategies are of utmost importance. Challenge To protect its customer networks, Atruvia implemented a number of security solutions, including 60 Check Point and 20 Juniper firewall clusters. However, managing multiple firewalls in a multi-vendor environment proved challenging. “Performing vulnerability assessments for such a large and complex firewall environment was extremely time-consuming, labor-intensive and prone to human error,” says Lutz Bleyer, Atruvia’s Chief Information Security Officer. With multiple stakeholders at each of its client organizations, Atruvia required a structured change management process to prevent firewall policies from growing unmanageable and creating security risks. “We needed a proven firewall management and workflow solution to eliminate potential security risks while providing us with complete visibility into our customer networks, anytime, anywhere,” says Bleyer. Solution After an in-depth analysis, Atruvia chose the AlgoSec Security Management Solution to optimize its security, compliance and change management processes. “AlgoSec provided the most comprehensive, intelligent automation solution for our firewall operations, helping us increase efficiency while improving risk mitigation and compliance,” says Bleyer. Results AlgoSec’s topology-aware technology provides Atruvia with complete visibility into the security landscape of its customers’ networks. “AlgoSec’s in-depth visibility enables us to easily create a hierarchy profile and establish a competency baseline of operations for each networks’ firewalls, even when multiple vendor technologies are involved,” says Bleyer. Atruvia’s security consultants and auditors are now closely aligned with their customers’ IT teams, regardless of their location. “The level of visibility AlgoSec provides across our customers’ security networks, and the ability to perform coordinated tasks remotely with them, enables us to work hand-in-hand as a joint team,” says Bleyer. Atruvia also uses AlgoSec to automate policy change management across customers’ firewall environments, enabling the company to eliminate manual and inefficient processes associated with the security policy change lifecycle, save time and reduce the potential for human error. “AlgoSec has fundamentally changed how we manage sophisticated, multi-device, multi-vendor firewall environments. By automating our workflows, we’ve eliminated unnecessary policy changes and reduced the time required to process changes by half,” explains Bleyer. “Thanks to AlgoSec’s intelligent automation, we’ve gained valuable optimization capabilities enabling our teams to operate smarter and faster.” Another important AlgoSec feature is its automatic assessment and reporting capabilities, which help Atruvia ensure that it remains in continuous compliance with corporate governance rules and adheres to regulatory standards, including ISO 27001, ISO 27002 and Sarbanes-Oxley (SOX). Data and network security, particularly within the financial sector, requires incredible focus on risk management and mitigation. “With AlgoSec we can now analyze every change and its impact on the network before it is live, and focus on risk mitigation rather than crisis management.” In summary, Bleyer commented, “Not only does AlgoSec more than measure up from a technology perspective, but the integrity of the company and its employees has surpassed our expectations and raised the bar for what we look for in other partners.” Schedule time with one of our experts

Regulations and compliance for the data center – A Day in the Life Download PDF Schedule time with one of our experts Schedule time with one of our experts Work email* First name* Last name* Company* country* Select country... phone By submitting this form, I accept AlgoSec's privacy policy Continue

6 best practices to stay secure in the hybrid cloud Download PDF Schedule time with one of our experts Schedule time with one of our experts Work email* First name* Last name* Company* country* Select country... phone By submitting this form, I accept AlgoSec's privacy policy Continue

Webinars Firewalls Ablaze? Put Out Network Security Audit & Compliance Fires The growing body of regulations and standards forces enterprises to put considerable emphasis on compliance verified by ad hoc and regular auditing of security policies and controls. While regulatory and internal audits entail a wide range of security checks, network firewalls are featured prominently as they are the first line of defense of the enterprise network. Typical networks might include tens or hundreds of firewalls from multiple vendors running thousands of rules. Auditing firewalls for compliance is becoming more complex and demanding all the time. Documentation of current rules and their evolution of changes is lacking Time and resources required to find, organize and inspect all the firewall rules to determine the level of compliance is exorbitant and growing It’s time to adopt auditing’s best practices to maintain continuous compliance. Join us in this webinar to discover the Firewall Audit Checklist, the 6 best practices that will ensure successful audits and full compliance. By adopting these best practices, security teams will significantly improve their network’s security posture and reduce the pain of ensuring compliance with regulations, industry standards and corporate policies. Tal Dayan AlgoSec security expert Relevant resources Firewall audit checklist for security policy rules review Firewall audit checklist for security policy rules review See Documentation AlgoSec AppViz - Application visibility for AlgoSec Firewall Analyzer See Documentation Firewall policy management Automate firewall rule changes See Documentation Choose a better way to manage your network Choose a better way to manage your network Work email* First name* Last name* Company* country* Select country... phone By submitting this form, I accept AlgoSec's privacy policy Continue