Search results

Virtual summit The Compliance Catalyst Driving change, securing tomorrow March 26th 11 am AEDT | 11 am IST | 11 am CET | 11 am EDT | 11 am PDT Register now Join Cisco, Ernst & Young, Nationwide, HCLTech, and AlgoSec, to learn about the top compliance challenges and how other companies are securely streamlining auditing and complex compliance processes with an application-centric approach. Why should you attend the Virtual event Gain practical knowledge, tools and strategies to make your organization
audit-ready and more secure Actionable insights
on audit readiness Best practices to streamline audit prep, cut manual work, and ensure continuous compliance Expertguidance Advice from top experts on navigating regulatory frameworks like DORA, PCI, HIPAA, and more Automation
to reduce risk Learn how automation simplifies compliance, reduces errors, and enhances audit readiness Cutting-edge
tools Learn how automation simplifies compliance, reduces errors, and enhances audit readiness Save your spot Agenda Key compliance changes from the past year Customer success: overcoming compliance maintenance challenges An auditor perspective: preparing and conducting compliance audits Integrating with key partners to support customer compliance The AlgoSec value: making the shift from rule-based
to application-based recertification Get ready to win big Register and attend for your chance to win
one of three Xbox X consoles Meet our speakers Avishai Wool CTO and co-founder AlgoSec Todd Sharer Systems Engineer Nationwide Mikael Yayon Leading Security Auditing & Compliance EY Partner Vikram Sharma Governance, Risk, and Compliance HCLTech Will Zupan Sr. Product Manager, Data Center Networking Cisco Amir Erel Director of Product AlgoSec

Application migration workshop: Minimize risk, maximize savings Join our expert-led workshop to discover practical strategies for simplifying application connectivity migration. Learn how to reduce risks, prevent outages, and optimize costs while ensuring seamless transitions and long-term efficiency. Thursday, December 5th, 2024 10 AM EDT | 4PM CET | 5 PM AEDT|12:30 PM IST Save my seat EVENT WILL START IN Application connectivity migration workshop: Minimize risk, maximize savings Application connectivity migration doesn’t have to be a complex and risky endeavor. In this interactive workshop, we’ll guide you through proven strategies to make the migration process more efficient and cost-effective. Learn how to reduce risks, maintain application integrity, and leverage migration as an opportunity to create lasting value. During this workshop, you’ll learn to: Prioritize and streamline your migration efforts Prevent outages and ensure a seamless transition Engage stakeholders to safeguard application performance Use automation to validate and recertify rules efficiently Leverage AI to build and maintain a comprehensive application repository Sign up today to gain the tools and insights needed for a seamless migration process! Presenters Amir Erel Director of Product, AlgoSec Amir Erel has over 20 years’ experience in the software industry, leading product management teams for a variety of large organizations, including Stratesys, Nice Systems and Siemens. Amir brings extensive product experience in enterprise SW, telco, virtualization technologies and security – from defining product vision to executing product plans. As Director of Product Management, Amir helps steer AlgoSec’s automation portfolio, and works with customers and partners to provide solutions for network security market needs. Amir holds a B.Sc. degree in Electric Engineering. Register now

Explore Algosec's customer success stories to see how organizations worldwide improve security, compliance, and efficiency with our solutions. Leading Bank Transforms Digitalization Journey With AlgoSec Organization Leading Bank Industry Financial Services Headquarters United States Download case study Share Customer
success stories "AlgoSec is like a person sitting in my bank taking care of everything - simplifying day-to-day operations and reducing human errors because everything is automated.” Background Background The bank is a full-service commercial bank headquartered in India. It offers a wide range of banking and financial products for corporate and retail customers through retail banking and asset management services. The bank offers personal, corporate, and internet banking services including accounts, deposits, credit cards, home loans, and personal loans. The Challenges The client’s key issues related to the management of the firewalls, dealing with rule duplication and human errors. Their network security operations teams were hampered by manual, slow, and error-prone security change-management processes. It often took around four days to process a single change across their complex network environment. The frequent errors that arose from manual processes opened security gaps and put them at risk of cyberattacks. Some of their challenges included: Human errors leading to misconfiguration – The organization was handling over 30 firewalls and 30 to 40 rules in a day across multiple firewalls. They lacked the skilled resources to implement these rule changes. This led to errors and misconfigurations. Lack of visibility – They lacked visibility into their overall network and traffic flows and failed to understand which rules applied to each firewall. Duplicate rules – They had many duplicate firewall policies, negatively impacting performance. Policy optimization – The organization required policies to be frequently optimized. Lack of visibility – The organization needed visibility across their networks, allowing them to quickly find and fix issues. Time-consuming manual change management processes. Solution The organization looked for a partner that understood their challenges, could integrate into their existing solutions, and could take full responsibility for any issues. In the words of the bank’s executive vice president, “ We were looking for a partner, not a product.” The key factors that the bank was looking for were: Alignment with their digital transformation vision – They wanted to align with key stakeholders among business, operations, network, and security teams. Automation as a key focus – Automation was important to reduce human errors, align with the considerable number of requests and adapt to the agile nature of critical applications. With automation, they were looking to implement firewall changes faster. Easy to use and integrate within the existing infrastructure. Unified view of their multi-vendor firewall estate – They wanted a single console where they could see all their firewalls, understand their collective risk, and gain a holistic view of the current state of their firewall policies. As a result, the customer implemented the AlgoSec Security Management Solution. Results: The AlgoSec Security Management Solution transformed the bank’s digitalization journey, leading to: Time to implement rule changes decreased from 4-5 days to less than 48 hours – a 60% reduction. Automatically implemented changes – Changes are automatically implemented, without needing to guess which rules and devices are in path. Reduced human error and elimination of repetitive, manual tasks. Simplified daily operations. Automated change management across application-centric infrastructure. Identified and mitigated risks. Transformed digitization journey. AlgoSec now has end-to-end visibility of which firewall it needs to implement the changes on. The bank was in the process of switching from a traditional infrastructure to Cisco ACI. The transition was smooth. AlgoSec seamlessly integrated into Cisco ACI and their existing Palo Alto Network devices. “I think we are the first in India who approached AlgoSec and got these solutions implemented – getting Cisco ACI, Palo Alto, and AlgoSec working hand in hand with full integration. This is the best thing we’ve seen till now,” noted the vice president. Looking ahead, they plan to extend AlgoSec’s offering, mapping rule applications, and other capabilities to help them migrate to the cloud. Schedule time with one of our experts

NOW AVAILABLE ON DEMAND Missed Operation Horizon?
Explore it on Your Schedule. The live event may be over, but the mission continues. Browse Zero Trust topics on demand, download the latest eBook, and schedule a demo to discuss your next steps with an AlgoSec expert. Schedule a demo Explore Operation Horizon videos Browse individual segments and watch the ones most relevant to your organization’s goals and challenges INTRO Zero Trust
overview Identity & App
Centric security Microsegmentation Cloud
Security Zero Trust
Implementation 04:58 min Zero Trust overview Traditional perimeter-based security models are no longer effective. Learn why Zero Trust has become essential and how organizations must adapt. “For decades now, security was built around the idea of inside vs. the outside. Today, that assumption is no longer valid.” Gavriel Sofer | CTO | 2Bsecure 5:18 min From Network-Centric to Identity & Application-Centric security Security must shift from static network boundaries to dynamic identity and application awareness. Discover how this transition enables stronger, more adaptive protection. “The network perimeter is gone. The system needs to verify who you are—not just where you are standing.” Dor Kviatkovski | Regional Sales Manager | Palo Alto Networks 7:23 min What is Microsegmentation
and why it matters Without visibility into application communications, enforcing security is nearly impossible. Learn how microsegmentation provides clarity, control, and reduced risk. “Many organizations are essentially operating in the dark with no clear view of the actual communications.” Zohar Furman | Senior Cyber Security Researcher | Akamai 8:19 min The cloud changes
Everything about security Hybrid and multi-cloud environments demand consistent, portable security policies. Explore how organizations can maintain control while enabling agility. “Your policies need to travel with the workloads across hybrid environments — aligning your cloud and on-prem.” Ravid Glam | Technical Account Manager | AWS 7:50 min Define Zero Trust
at the application level Move beyond theory and into execution. Learn how to define and enforce Zero Trust policies at the application level to reduce risk and simplify operations. “Zero Trust only works when everything moves as one. AlgoSec is the glue…” Avishai Wool | CTO and Co-Founder |AlgoSec Get the complete guide The business benefits of Application-Centric Zero Trust Dive deeper into the strategy and business impact of Zero Trust An application-centric approach to Zero Trust Reduce risk, improve visibility, and drive measurable outcomes Real-world use cases and expert insights Actionable steps to strengthen security and agility Download e-book Schedule a demo Want to speak with an expert? Schedule a demo to discuss your application security challenges and see how AlgoSec can help you simplify Zero Trust. Schedule a demo

Explore Algosec's customer success stories to see how organizations worldwide improve security, compliance, and efficiency with our solutions. NCR ACCELERATES TOWARDS ZERO-TRUST Organization NCR Global Industry Financial Services Headquarters Georgia, USA Download case study Share Customer
success stories “AlgoSec helps us be vendor-agnostic and understand our full security posture to lead us down this journey to achieve zero-trust.” Scott Theriault, Global Manager Network Perimeter Security NCR Corporation Background NCR Corporation is a leading global point-of-sale (POS) provider for restaurants, retailers, and banks and a provider of multi-vendor ATM software. Headquartered in Atlanta, Georgia, NCR has over 36,000 employees in 160 countries, and solutions are distributed in 141 countries. As NCR expands into public cloud platforms such as AWS, they require consistent visibility and security policy management across both on-premises and cloud environments. The challenge NCR needed to connect its DevOps pipeline with its network security. With over 4,500 policy changes made annually, it was difficult to securely manage their entire networking and security environment while being responsive to application owners but still achieve zero trust. Strategically, they were aiming to automate and orchestrate security policy changes across their entire hybrid network, so they could securely accelerate application delivery. As applications and services moved into AWS, NCR also needed unified governance across physical firewalls, Cisco ACI, and cloud-native controls such as AWS Security Groups and AWS Network Firewall. The solution They implemented the AlgoSec Security Policy Management Solution, made up of AlgoSec Horizon Security Analyzer , AlgoSec Horizon FireFlow , and AlgoSec Horizon AppViz and AppChange. This solution is now part of AlgoSec Horizon, which also includes AlgoSec Cloud Enterprise (ACE) for cloud-native visibility and policy management . AlgoSec Horizon Security Analyzer enables organizations to discover, identify, and map business applications across their entire hybrid network. It analyzes complex network security policies across the network. It automates and simplifies security operations, including troubleshooting, auditing, and risk analysis. AlgoSec Horizon FireFlow enables security staff to automate the entire security policy change process from design and submission to proactive risk analysis, implementation, validation, and auditing. Its intelligent, automated workflows save time and improve security by eliminating manual errors and reducing risk. AlgoSec Horizon AppViz , the application visibility add-on for AlgoSec Horizon Security Analyzer , provides visibility for your network applications, enabling secure application delivery. AlgoSec AppChange, the application automation add-on for AlgoSec Horizon FireFlow , allows for changes at the business application level, including during the application migrations, server deployment, and decommissioning projects. With ACE, NCR also gains visibility into AWS environments, including VPCs, Transit Gateways, Security Groups, and AWS Network Firewall, ensuring consistent zero-trust controls across their hybrid network. The results AlgoSec is a strategic component of NCR’s network security, managing its entire network security infrastructure. The AlgoSec platform enables the NCR Corporation to manage application connectivity end-to-end across their network — including public cloud, Cisco ACI, and physical firewalls. With AlgoSec Horizon and ACE, NCR now extends this visibility into AWS cloud environments, unifying security policy management across firewalls, Cisco ACI, and AWS-native controls such as Security Groups and AWS Network Firewall. “Most products don’t understand the end-to-end environment. AlgoSec does,” noted Scott Theriault, Global Manager, Network Perimeter Security. Some of the ways that NCR Corporation benefits from AlgoSec include: Launched migration of their on-premises data centers into the Cisco ACI fabric. Extended micro-segmentation to Cisco ACI environment. Extended segmentation and zero-trust policy enforcement into AWS cloud architectures. Achieved complete visibility of their global security posture from a single dashboard. Automated risk analysis, achieving visibility and insights into the risk that changes introduce. Streamlined auditing process with to automatic logging and audit-ready compliance reports. Cleaned up and reduced firewall policies with rule cleanup, object cleanup, and policy tuning. Unified governance across on-prem, ACI, and AWS environments to support consistent zero-trust policy controls. “As we aspire to achieve zero-trust, when moving into the cloud, micro-segmentation and container security come into play. Therefore, we need tools like AlgoSec to assist us in the journey because most application owners don’t know what access is needed. This tool helps them learn what needs to be implemented to reduce the attack surface,” stated Theriault. Schedule time with one of our experts

Explore Algosec's customer success stories to see how organizations worldwide improve security, compliance, and efficiency with our solutions. Global Energy Group Streamlines Change Requests Process Organization Energy Group Industry Utilities & Energy Headquarters International Download case study Share Customer
success stories "Now we can do a firewall change in around one hour. Before, it took five days or more with 20 engineers. Today, we do the same job, but much quicker, with 4 people - resulting in happier customers,” says the Security Service Delivery Manager. “One of the best things you win in the end, is the cost. With 500 changes on a firewall a month, that’s significant.” IT Integrator Gets Faster Implementation of Firewall Changes – Leading to Greater Efficiency and Lower Costs BACKGROUND The company is the IT integrator for a large energy group, which offers low-carbon energy and services. The group’s purpose is to act to accelerate the transition towards a carbon-neutral world, through reduced energy consumption and more environmentally friendly solutions, reconciling economic performance with a positive impact on people and the planet. The IT integrator of the group designs, implements and operates IT solutions for all its business units and provides applications and infrastructure services. It includes four “families” of services: Digital and IT Consulting, Digital Workplace, Cloud Infrastructures, and Network and Cybersecurity, and Agile business solutions. CHALLENGES This large group (with 170,000 employees) had a complex network with multiple elements in the firewall. With 240 firewall change requests and 500 changes a month, they needed an easier and faster way to manage these changes, ensuring their business applications functioned properly while maintaining their security posture. The main challenges were: Large network with lots of rules. Slow execution of change requests. Change requests were very labor intensive. SOLUTION With 500 monthly firewall changes, the customer was searching for a solution that provided: Faster implementation of firewall changes. Clear workflow and easier change management processes. Comprehensive firewall support. Visibility into their business applications and traffic flows. The client chose AlgoSec for its workflow solution, requiring a tool that would help the customer seamlessly submit the request and enable the engineer to implement the optimal changes to the firewall. They implemented the AlgoSec Security Policy Management Solution, made up of AlgoSec Horizon Security Analyzer, AlgoSec Horizon FireFlow, and AlgoSec Horizon AppViz and AppChange (formerly AlgoSec BusinessFlow). AlgoSec Horizon Security Analyzer ensures security and compliance by providing visibility and analysis into complex network security policies. AlgoSec Horizon FireFlow improves security and saves security staffs’ time by automating the entire security policy change process, eliminating manual errors, and reducing risk. AlgoSec Horizon AppViz provides critical security information regarding the firewalls and firewall rules supporting each connectivity flow by letting users discover, identify, and map business applications. AlgoSec AppChange empowers customers to make changes at the business application level, including application migrations, server deployment, and decommissioning projects. RESULTS “We do the job quicker, with less people. With 500 changes on a firewall a month, that’s significant. I recommend AlgoSec as it gives a quick solution for the request and analysis,” said the Security Service Delivery Manager. By using the AlgoSec Security Management Solution, the customer gained: Greater insight and oversight into their firewalls and other network devices. Identification of risky rules and other holes in their network security policy. Easier cleanup process due to greater visibility. 80% reduction in manpower. Faster implementation of policy changes – from five days to one hour. Schedule time with one of our experts

Explore Algosec's customer success stories to see how organizations worldwide improve security, compliance, and efficiency with our solutions. Nationwide Organization Nationwide Industry Financial Services Headquarters Columbus Ohio, USA Download case study Share Customer
success stories AlgoSec delivers an application-centric solution to meet the network security challenges of one of the top financial services firms in the US. To learn more, go to https://algosec.com/ Schedule time with one of our experts

Confidently automate your security policy change process with AlgoSec Horizon FireFlowfrom planning through risk analysis, implementation and validation Automated security policy management Leverage intelligent automation to confidently automate your security policy change process from planning through risk analysis, implementation, and validation. Schedule a demo Explore automation maturity Experience zero-touch change management Accelerate security policy changes while ensuring accuracy, saving time, and preventing errors – with zero-touch. Watch a video Speed up secure application deployment AppChange allows for changes at the business application level, including during application migrations, server deployment, and decommissioning. Learn more Save time by identifying devices that are in the way Automatically identify devices that are blocking connectivity flow, so you know what rules need to change. Download the Ebook Design smarter security policies Make existing rules and objects smarter to reduce complexity. Mitigate risk Make sure your changes don’t introduce risk, vulnerability, or compliance violations. Automatically analyze every proposed change before it’s implemented. Make changes exactly as intended Validate that changes were successfully and accurately applied and tickets not prematurely closed. Integrate with your existing processes Don’t change the way you work – use the tools you already know. Seamlessly integrate with your existing IT Service Management solution. End-to-end security management Intelligent automation is only one piece of a robust security policy. See how our full solution suite completes the picture. Horizon Security Analyzer See the whole picture Enable visibility across your hybrid network, optimize firewall rules, and prioritize risks. Horizon Security Analyzer solution AlgoSec Cloud Effortless cloud management Security management across the multi-cloud and multi-vendor estate AlgoSec Cloud solution Horizon AppViz Optimize the discovery of applications and services Leverage advanced AI to identify your business applications and their network connectivity accurately. Horizon AppViz solution Equip yourself with the technical details to discuss with your team and managers Ready for a deep dive? Contact us today Got everything you need?
Here’s how you get started How to buy Download now Get the conversation started by sharing it with your team Solution brochure Browse now Take a deep breath.
You’re about to dive deep! Cloud Security Watch the video "We cut the time it takes to implement firewall rules by at least 50%" What they say about us Placeholder Name Get the latest insights from the experts The 100x Revolution, learn how to Future-Proof your business applications with Secure Application Connectivity. Anywhere. Download the eBook Case Study- Nationwide Testimonial - AlgoSec Watch it now Product introduction video- Learn the key capabilities of the AlgoSec Secure application connectivity platform. Watch it now Horizon FireFlow automates the security change policy process from planning through deployment to production. Horizon FireFlow integrates with your existing with IT Service Management (ITSM) solutions, such as ServiceNow, BMC Remedy and HP for quick, accurate changes. What is Horizon FireFlow? Using Horizon FireFlow you can manage all inbound firewall rules to protect the network against incoming traffic, such as disallowed connections, malware, and denial-of-service (DoS) attacks and outbound firewall rules to protect against outgoing traffic, originating inside a network. How can I manage my firewall's inbound & outbound rules? Horizon FireFlow enables firewall security policy management through automated changes to firewall policies. Horizon Horizon FireFlow zero-touch change management integrates strategy, planning and design, implementing proactive risk analysis, validation and auditing to prevent errors and save time. How can I manage my firewall security policy? Firewall change requests are requests for a firewall configuration change which result in a change to the network security infrastructure. Firewall change requests must be monitored to prevent unintentional errors that violate compliance standards or increase vulnerabilities to the network. What are firewall change requests? Firewall policy rules determine what traffic your firewall allows and what is blocked. Firewall rules examine the control information in individual packets, and either block or allow them according to the criteria that you define. Firewall rules control how the firewalls protect your network from malicious programs and unauthorized access. What are firewall policy rules? When making changes to firewall rules, be aware of any potential security risks. Firewall rules should always be documented, with the creation and expiration date, the name of the person who added the rule and clarification of the rule’s purpose and what applications, services, devices, users and data it affects. What are the best practices for managing firewall policy rules? FAQ Schedule time and let's talk about intelligent automation Work email* First name* Last name* Company* country* Select country... Short answer* By submitting this form, I accept AlgoSec's privacy policy Continue Schedule time and let's talk about intelligent automation

AlgoSec offers support programs to provide the right level of service for each customer’s needs AlgoSec support programs We aim to provide the most professional and highest level of technical support to our customers. Support is provided through centers located around the globe which serve customers and partners in their local time zone View detailed information Customer Type Access to Knowledgebase and Documentation Access to AlgoSec Technical Community New Upgrades Patches and Hotfixes Email Support Coverage During Local Business Hours (9:00-17:00) 24 x 7 Coverage Instant Online Chat Priority Access to Support and R&D 6-Hour Response Time for Severity 1 Issues* 2-Hour Response Time for Severity 1 Issues* Designated Support Engineer Staging Environment in AlgoSec QA Lab Annual On-Site Preventive Maintenance Visit Quarterly Service Review 10% Discount On Certification Training (Unlimited Number of People) Self service Self service SMB SMB Preferred Enterprise Premium Large enterprise Schedule time with one of our experts Schedule time with one of our experts Work email* First name* Last name* Company* country* Select country... Short answer* By submitting this form, I accept AlgoSec's privacy policy Continue

Discover how global customers use Algosec to enhance their network security, streamline operations, and ensure continuous compliance. Our customers Financial Services Read the story Read the story Read the story Read the story Read the story Read the story Read the story Read the story Show more We empower the world’s most complex organizations to gain visibility, reduce risk and process changes at zero-touch across the hybrid network. NCR Nationwide Insurance Testimonial See what people who use AlgoSec have to say about it Read customers stories Filter by industry All industries Energy and Utilities Read the story Read the story Read the story Read the story Read the story Read the story Read the story Read the story Show more Government Read the story Read the story Read the story Read the story Read the story Read the story Read the story Read the story Show more Healthcare & Pharmaceuticals Read the story Read the story Read the story Read the story Read the story Read the story Read the story Read the story Read the story Read the story Read the story Show more Motor Vehicles Read the story Read the story Read the story Read the story Read the story Read the story Show more Technology Read the story Read the story Show more Retail and Consumer Goods Read the story Read the story Read the story Read the story Read the story Read the story Show more Telecom, IT, MSSP Read the story Read the story Read the story Read the story Read the story Read the story Read the story Read the story Show more Transportation Read the story Show more Schedule time with one of our experts Work email* First name* Last name* Company* country* Select country... Short answer* By submitting this form, I accept AlgoSec's privacy policy Continue

Partners live session: Recent release highlights & updates ASMS A33.20 Partner Live Session Date: 7th of January, 2026 Duration: 45 minutes + live Q&A Time: 4:00 PM CEST / 10:00 AM EDT | 5:00 PM AEST / 12:30 PM IST Join our exclusive partner-only session and discover what's new in the ASMS A33.20 release. Learn how to empower your customers with deeper visibility, streamlined compliance, and intelligent automation. In today’s rapidly evolving threat landscape, security teams must act with clarity, speed, and confidence. That’s exactly what ASMS A33.20 enables. This release transforms static workflows into intelligent, insight-driven action — helping customers align risk decisions with business priorities across hybrid and multi-cloud environments. During this live partner session, we’ll walk you through: New visibility across AWS, GCP, and Palo Alto Strata Business-aware risk profiling and compliance automation Intelligent change automation and actionable reporting Key value drivers and partner enablement insights Sign up to attend this webinar Email* First name* Last name* Company* country* Select country... Select Time-Zone* Choose Time-zone By submitting this form I agree to receive relevant marketing material from AlgoSec, subject to its privacy policy Register Now Thank You! Thank you for registering for our webinar. We’ve reserved your spot. Please check for a confirmation email from AlgoSec Marketing with additional details about the webinar. See you there. Nitin Rajput Regional Sales Engineer Director, AlgoSec Nitin Rajput is a seasoned Information Security professional with 15 years of extensive experience in auditing, implementing, and managing cybersecurity solutions. His expertise spans across designing robust cybersecurity frameworks and conducting comprehensive risk and compliance assessments. Nitin holds the industry’s most respected certifications—CISA, CISSP, and CCSP—and is recognized globally as the gold standard in information security. With a proven track record of securing critical systems and ensuring compliance with leading frameworks, Nitin continues to drive excellence in the evolving landscape of cybersecurity. Alexandre Charles, Regional Sales Engineer, AlgoSec Alexandre Charles is an experienced cybersecurity expert with over 28 years in the field, guiding secure digital transformation initiatives for enterprise clients. He specializes in safeguarding critical applications and accelerating secure cloud strategies. Alexandre is passionate about aligning security with business outcomes to drive innovation and trust in digital environments.

Explore Algosec's customer success stories to see how organizations worldwide improve security, compliance, and efficiency with our solutions. Leading payment solutions company credits AlgoSec for increasing security and compliance Organization Payment Solutions Industry Financial Services Headquarters Download case study Share Customer
success stories "Leading fintech company rapidly improves security and compliance with AlgoSec jumpstart program" Background The company is one of the largest payment solutions providers, with offices processing more than 28 billion transactions worldwide. The company services 800,000 merchant outlets that generate $120 billion in processing volume. Its businesses include credit card processing, merchant acquisition and issuance of bank credit cards. The company grew to its enormous size through innovation and acquisition. It has introduced modern technology into the payments industry and has acquired many innovative companies over the last three decades. Challenges Today, the company operates 10 data centers with varying security architectures and firewall equipment from different vendors. The security staff is currently in the process of a cross-company firewall consolidation that will take several years to complete. The company is automating its change management of firewall rules to cut down on the time and effort spent on researching and implementing rules to keep up with its fast growth. It deploys rule changes during tight, scheduled “push windows” and conducts compliance reviews twice per year. The firewall change process is highly complex with many steps: Request Design Peer Review Management Approval Implementation Validation Success for the security team is all about time. They seek to automate the process by reducing time spent on: Research and writing rules Peer reviews Staging Security peering after staging Firewall push window requirements Quarterly firewall ruleset reviews as part of compliance objectives Solution The security team acquired AlgoSec Horizon Security Analyzer (AFA) and deployed it at two of its data centers in Arizona and Colorado. In both locations, the company is in the process of firewall migration to consolidate on one vendor. However, they need to add firewall clusters one at a time after each migration instead of all at once. The company took advantage of AlgoSec’s Jumpstart Program that delivers the benefits of AlgoSec Horizon Security Analyzer in conjunction with other AlgoSec solutions quickly. With Jumpstart, the company is quickly able to: Automate the discovery and mapping of enterprise applications Automate the change management processes Adopt the new processes across the company Realize rapid ROI The company’s lead security infrastructure consultant proclaimed, “AlgoSec customized their Jumpstart Program just for us. Their people are engaged, personable, skilled and highly efficient. They became part of our team dedicated to our success.” In addition to getting Horizon Security Analyzer up and running quickly and delivering its benefits, the Jumpstart team’s AFA deployment immediately identified network security gaps and helped the company close them, making them more secure and compliant. Results AlgoSec Horizon Security Analyzer is achieving all the goals of the security team. Time for policy writing reduced from 90 hours to 15 hours – 83% less Cut the total process time by half, enabling the security team to keep up with the barrage of change requests. Reduced the admin overhead from 30 to 4 – 87% less “Automation is definitely the way to go,” declared their security consultant. “We can now stay on top of the process even while we migrate our firewalls. We are looking for more from AlgoSec.” The company is now in the process of implementing AlgoSec Horizon FireFlow (AFF) to enhance the existing change management system with intelligent network and security automation. AlgoSec Horizon FireFlow enforces compliance and automatically documents the entire change-management lifecycle. Some of the features include: Processing of firewall changes with zero-touch automation Elimination of mistakes and rework, and improvement of accountability for change requests Proactive assessment of the impact of network changes to ensure security and continuous compliance Automation of the rule–recertification processes Schedule time with one of our experts