Bridging NetOps and SecOps: An Experts’ Panel

March 16, 2021
Cisco | Conscia | AlgoSec

Silos hurt security. Your network and its security are not managed by just one team. It is the responsibility of both NetOps and SecOps, but these teams don’t always play well together. 

In this security experts’ panel, Doug Hurd from CiscoHenrik Skovfoged from Conscia, Oren Amiram and Tsippi Dach from AlgoSec will share how you can bring NetOps and SecOps teams together with Cisco ACI, Cisco Secure Workload (formerly Cisco Tetration) and AlgoSec. 

Discover how NetOps and SecOps teams can: 

Relevant Resources
Firewall analyzer

AlgoSec Firewall Analyzer - Complete Network Visibility for Your Network Security Policy Management

AlgoSec Firewall Analyzer delivers visibility and analysis of complex network security policies across on-premise, cloud, and hybrid networks. It automates and simplifies security operations including troubleshooting, auditing, and risk analysis. Using Firewall Analyzer, security and operations teams can optimize the configuration of firewalls, routers, web proxies, and related network infrastructure to ensure security and compliance. With the AlgoSec AppViz add-on, all business applications are discovered, identified, and mapped, providing critical security information regarding the firewalls and firewall rules supporting each connectivity flow.

Provide Complete Visibility into Your Hybrid Network

AlgoSec Firewall Analyzer lets you:
  • Visualize complex networks with a dynamic network topology map
  • Automatically discover applications and services
  • Map, clean up, and optimize applications and firewall rulesets
  • Identify and Mitigate risks and associate them to business applications
  • Define and enforce network segmentation
  • Reduce firewall auditing time and costs by up to 80% with automated compliance reports

Instantly Visualize Your Network Security Policy

Firewall Analyzer automatically pulls information from a wide range of devices to generate an interactive network topology map of the entire heterogeneous network. Through this map you can understand the impact of network security policies on traffic, quickly troubleshoot connectivity issues, plan changes and perform “what-if” traffic queries. Visualization of network Security Policy

Automatically Discover Applications and Services

AlgoSec AutoDiscovery is an innovative technology that automatically identifies all your enterprise applications and services and their connectivity flows, and quickly generates an up-to- date connectivity map of your applications — without requiring any prior knowledge or manual configuration by your security, networking or applications experts. It provides full visibility of your network security environment, including firewalls and the firewall rules that determine network traffic.

Map, Clean Up, and Optimize Applications and their Associated Firewall Rulesets

Firewall rules support applications or processes that require network connectivity to and from specific servers, users and networks. Firewall Analyzer with AppViz automatically associates the relevant business applications that each firewall rule supports, enabling you to review the firewall rules quickly and easily. Firewall Analyzer then provides a wide range of actionable recommendations to help you clean up and optimize the security policy. With AppViz, you can tie firewall rule sets to the applications that connect to it, cleaning up rules that connect to unused or decommissioned applications. Firewall Analyzer can uncover unused, duplicate, overlapping or expired rules, consolidate and reorder rules, and tighten overly permissive “ANY” rules, without impacting business requirements.

Identify and Mitigate Risky Firewall Rules and Discover and Associate Vulnerabilities to Business Applications

Prioritize your risk based on what your business values most — the applications that power it. Firewall Analyzer discovers and prioritizes all risks and their associated rules and associated applications in your network security policy. Firewall Analyzer relies upon the broadest risk knowledge base, which includes industry regulations and best practices, as well as customized corporate policies, to ensure that all risks are uncovered. Automatically integrate and map vulnerabilities from the leading vulnerability scanners to their business applications and associated firewall rules — including servers and complex connectivity flows. This way, you know exactly which applications and which firewall rules introduce risk.

Easily Define and Enforce Network Segmentation

Firewall Analyzer makes it easy to define and enforce network segmentation throughout your network and across all leading firewall platforms. With Firewall Analyzer you can quickly confirm that your existing network security policy does not violate your network segmentation strategy or block critical business services, and meets compliance requirements.

Prepare for Your Next Audit in Hours, Not Weeks

Firewall Analyzer automatically generates pre-populated, audit-ready compliance reports for all leading industry regulations, including PCI DSS, HIPAA, SOX, NERC, FISMA, and ISO, as well as custom corporate policies, to reduce audit preparation efforts and costs by as much as 80%. About AlgoSec The leading provider of business-driven security management solutions, AlgoSec helps the world’s largest organizations align security with their business processes. With AlgoSec, users can discover, map and migrate business application connectivity, proactively analyze risk from the business perspective, tie cyber-attacks to business processes and intelligently automate network security changes with zero touch - across their cloud, SDN and on-premise networks. Over 1,800 enterprises, including 20 of the Fortune 50, have utilized AlgoSec’s solutions to make their organizations more agile, more secure and more compliant - all the time. Since its inception, AlgoSec has provided the industry’s only money-back guarantee.

DevSecOps: Putting the Sec into the DevOps

DevSecOps: Putting the Sec into the DevOps

DevOps enables companies to deliver innovations faster to market. But with multiple functional teams collaborating on development, and so many moving parts, security is often left out of the DevOps process and then tacked on at the end - delaying deployment into production and negating many of the benefits of DevOps. Presented by renowned industry expert Prof. Avishai Wool, this new technical webinar will cover best practices for incorporating security into the DevOps lifecycle. This insight will help ensure better collaboration between security and the development teams right from the start and reduce the time, cost and risk of deploying applications into production. In this webinar Professor Wool will cover how to: • Identify and map existing applications and their connectivity flows to establish a baseline • Adjust application connectivity for each stage of the DevOps lifecycle – without coding • Automatically deploy connectivity throughout the development lifecycle using templates • Proactively assess risk and compliance throughout the DevOps process • Manage and maintain security in the production environment  

Cisco algosec

Cisco & AlgoSec achieving application-driven security across your hybrid network

Your network extends into hybrid environments and may include private clouds running Cisco ACI, and on-premises devices. Managing network security policies in your multi-vendor estate is complex. Because your network is made up of multiple vendors and each part of your network estate is managed in its own silo, it is tough to get centralized management of your entire network. Making changes is a chore and validating security is difficult. Learn how to unify, consolidate, and automate your entire network security policy management across your Cisco and multi-vendor estate. In this session Roxana Diaz, Worldwide Technical Solutions Architect at Cisco, and Yonatan Klein, AlgoSec’s Director of Product, will discuss how to manage the Cisco and multi-cloud estate and how to: Capitalize on your Cisco ACI investment to take advantage of its full capabilities Bring centralized visibility, automation, and compliance monitoring into your Cisco and multi-vendor network ecosystem Get full visibility of your entire hybrid network estate, including items within the Cisco ACI security environment, as well as outside it, including Cisco firewalls and routers, as well as multi-vendor devices. Take advantage of Cisco Tetration Analytics and AlgoSec’s intelligent discovery to get a full picture of your network and application traffic and to design and provision a micro-segmentation network policy design. Unify, consolidate, and automate your network security policy management Proactively assess risk throughout your entire network, including Cisco ACI contracts, and recommend the necessary changes to eliminate misconfigurations and compliance violations

Choose a better way to manage your network