AlgoSec

Master the Zero Trust Strategy for Improved Cybersecurity

Wed, 08 Mar 2023 17:01:07 GMT

In today's digital world, cyber threats are becoming more complex and sophisticated. Businesses must adopt a proactive approach to cybersecurity to protect their sensitive data and systems. This is where zero trust security comes in - a security model that requires every user, device, and application to be verified before granting access.

If you're looking to implement zero trust security in your business or want to know more about how it works, join our upcoming webinar. AlgoSec co-Founder and CTO Avishai Wool will discuss the benefits of zero trust security and provide you with practical tips on how to implement this security model in your organization.

Zero Trust Framework for Network Security

Thu, 02 Feb 2023 10:11:27 GMT

With the increasing number of cyber threats, securing your network has become a top priority. Zero Trust Architecture is a new approach to cybersecurity that has proven to be effective in protecting against these threats. By incorporating Zero Trust principles into your security infrastructure, you can rest assured that your sensitive data is protected.

In this informative video, Prof. Avishai Wool, CTO and Co-Founder of AlgoSec, discusses the key principles of Zero Trust and provides practical tips on how to integrate it into your existing security infrastructure.

Don't miss this opportunity to take your security to the next level! Watch this video now and start implementing the best practices for Zero Trust Architecture.

Measures that actually Do reduce your hacking risks

Tue, 10 May 2022 14:14:53 GMT

Robert Bigman, former CISO of the CIA offers tried and proven hacking risk measures that are "must haves" in any organization's cybersecurity toolkit. To see how these can apply to securing the connectivity of your critical business applications, please visit https://www.algosec.com/

Top 5 Predictions & Best Practices for 2022

Tue, 21 Dec 2021 14:09:54 GMT

In this video, Prof. Avishai Wool, AlgoSec CTO and co-founder, provides his expert opinion on the Top 5 ongoing and new challenges in cybersecurity and network security management expected to take place in 2022 and offers invaluable best practices. To learn more, please contact us to set up a demo at https://www.algosec.com/lp/request-a-demo/

The 6 best practices to stay secure in the hybrid cloud

Sun, 02 May 2021 16:13:13 GMT

Omer Ganot(AlgoSec) | April 2021

Doug Hurd (Cisco) Henrik Skovfoged (Conscia) Oren Amiram (AlgoSec) Tsippi Dach (AlgoSec)
What if we told you that there were just six things that you can start doing to be more secure in your hybrid cloud environment?
In this session, you’ll get clear insight on what you can do right away to tighten your hybrid cloud network security. From visibility through network management, to risk and cleanup – security expert Omer Ganot will guide you through the steps to help you stay secure. Click here for a personal demo: https://www.algosec.com/lp/request-a-demo/

AlgoSec API Swagger

Thu, 01 Oct 2020 14:24:56 GMT

On premise and in the cloud, AlgoSec simplifies and automates network security policy management to make your enterprise more agile, more secure and more compliant – all the time.
The AlgoSec platform provides a set of Swagger API documentation, available right from the platform itself.

Swagger enables you to execute API request calls and access lists of requested parameters.

Firewall Rule Recertification with Application Connectivity

Mon, 29 Apr 2019 11:39:25 GMT

Asher Benbenisty, Director of Product Marketing | Apr 24 2019

Firewall rules must be reviewed and recertified regularly for an organization to stay secure, ensure continuous compliance and gain the optimal firewall performance. Firewall rules which are out of date, unused or unnecessary should be removed, as firewall bloat creates gaps in your security posture, causes compliance violations, and decreases firewall performance.

However, manual firewall rule recertification is complex, time-consuming and prone to errors.

Join Asher Benbenisty, AlgoSec’s Director of Product Marketing, on a special webinar introducing an application-centric approach to firewall recertification.

In this webinar Asher will cover:
• Why it is important to regularly review and recertify your firewall rules
• How to use application connectivity for firewall rule recertification
• How to automatically manage the rule-recertification process

Boosting Network Security with ChatOps

Thu, 25 Apr 2019 12:30:30 GMT

Dania Ben Peretz, Product Manager | Apr 17 2019

The way we consume content has greatly evolved throughout the years - from text-only collateral to using applications that centralize the content and make it easier to access. However, the number of business applications is rapidly growing, ultimately causing organizations to suffer from “app fatigue”.

Network security stakeholders can benefit from such a shift in content consumption by taking a conversational approach with ChatOps.

In this webinar, Dania Ben Peretz, Product Manager at AlgoSec covers how ChatOps helps network security and operational staff to:

Shorten resolution time of critical security incidents
Manage security more efficiently through collaboration and transparency between IT, Security, Network and DevOps teams
Ensure ongoing security and compliance

Kuppingercole Analysts: Driving Agility and Reducing Cyber Risks with...

Wed, 06 Feb 2019 14:11:25 GMT

Joint Analyst webinar with Alexei Balaganski, Lead Analyst at KuppingerCole

Cisco ACI and AlgoSec Integration (ActiveChange Demo)

Mon, 18 Jun 2018 03:00:00 GMT

nhanced Security Policy Visibility and Change, Risk, and Compliance Management

Through the integration of AlgoSec and the Cisco® Application Centric Infrastructure (Cisco ACI™) architecture, customers can monitor security policy changes across their Cisco ACI system, obtain risk and compliance context for both managed and unmanaged security devices, and extend automation across their entire security
environment.

For more information contact AlgoSec at info@algosec.com or visit our website at www.algosec.com

Lesson 17: PCI - Linking Vulnerabilities to Business Applications

Tue, 29 Aug 2017 03:00:00 GMT

Firewall Management 201: Lesson 17

PCI-DSS 3.2 regulation requirement 6.1 mandates that organizations establish a process for identifying security vulnerabilities on the servers that are within the scope of PCI. In this new lesson, Professor Wool explains how to address this requirement by presenting vulnerability data by both the servers and the by business processes that rely on each server. He discusses why this method is important and how it allows companies to achieve compliance while ensuring ongoing business operations.

Learn more about AlgoSec at http://www.algosec.com and read Professor Wool's blog posts at http://blog.algosec.com

How to Integrate Security into the Test Environment

Wed, 12 Jul 2017 03:00:00 GMT

Best Practices for Incorporating Security into DevOps

In a typical DevOps scenario development team adds new functionality to an existing business application and then rolls it out into production. However, while the new functionality worked as planned in both the test and pre-production environments, the application then fails when moved into the live production environment. In this video, Professor Wool will discuss the reasons why this process went wrong, and how you can fix it.

Learn more about AlgoSec at http://www.algosec.com and read Professor Wool's blog posts at http://blog.algosec.com

Tips for Adding Capacity Without Changing Your Security Policies

Wed, 12 Jul 2017 03:00:00 GMT

Best Practices for Incorporating Security into DevOps

In theory adding capacity should be fairly straightforward, with minimal need for any intervention by the organization’s security team. But in practice it’s a little more complex. In this video Professor Wool provides some tips and best practices to help you add capacity without having to change your security policies, complete a security review or worse still, cause an outage or gap in the security perimeter.

Learn more about AlgoSec at http://www.algosec.com and read Professor Wool's blog posts at http://blog.algosec.com

How to Integrate Security into the CI Process

Wed, 12 Jul 2017 03:00:00 GMT

Best Practices for Incorporating Security into DevOps

In previous lessons Professor Wool discussed how building security into DevOps processes at an early stage helps organizations maximize the speed and agility of application development, while minimizing the risks of problems and outages when the applications go live. In this whiteboard video Professor Wool looks at how security automation helps to speed up the practice of Continuous Integration (CI) - a core element of DevOps.

Learn more about AlgoSec at http://www.algosec.com and read Professor Wool's blog posts at http://blog.algosec.com

Demo: AlgoSec's Cisco ACI App Center

Fri, 03 Mar 2017 02:00:00 GMT

The AlgoSec Connectivity and Compliance App provides insights into your network and security posture, including a current snapshot of risk and compliance across your ACI fabric.

Key capabilities of the App include:

- Traffic assessment to determine if specific traffic is traversing the network or if its blocked - including visibility into security devices and their status across the traffic route

- The ability to automatically update the firewall policy in the event that connectivity is blocked erroneously

- Instant risk analysis for Cisco ACI contracts alongside firewall security policies

- A detailed PCI compliance report for your Cisco ACI fabric, that’s ready for auditors

Lesson 1: How to Bring Business Context into Incident Response

Fri, 10 Feb 2017 02:00:00 GMT

Advanced Cyber Threat and Incident Management: Lesson 1

SIEM solutions collect and analyze logs generated by the technology infrastructure, security systems and business applications. The Security Operations Center (SOC) team uses this information to identify and flag suspicious activity for further investigation. In this lesson, Professor Wool explains why it’s important to connect the information collected by the SIEM with other databases that provide information on application connectivity, in order to make informed decisions on the level of risk to the business, and the steps the SOC needs to take to neutralize the attack.

Learn more about AlgoSec at http://www.algosec.com and read Professor Wool's blog posts at http://blog.algosec.com

Lesson 14: Synchronized Object Management in a Multi-Vendor Environment

Fri, 10 Feb 2017 02:00:00 GMT

Firewall Management 201: Lesson 14

Many organizations have different types of firewalls from multiple vendors, which typically means there is no single source for naming and managing network objects. This ends up creating duplication, confusion, mistakes and network connectivity problems especially when a new change request is generated and you need to know which network object to refer to. In this lesson Profession Wool provides tips and best practices for how to synchronize network objects in a multi-vendor environment for both legacy scenarios, and greenfield scenarios.

Learn more about AlgoSec at http://www.algosec.com and read Professor Wool's blog posts at http://blog.algosec.com

Lesson 16: How to Take Control of a Firewall Migration Project

Fri, 10 Feb 2017 02:00:00 GMT

Firewall Management 201: Lesson 16

Some companies use tools to automatically convert firewall rules from an old firewall, due to be retired, to a new firewall. In this lesson, Professor Wool explains why this process can be risky and provides some specific technical examples. He then presents a more realistic way to manage the firewall rule migration process that involves stages and checks and balances to ensure a smooth, secure transition to the new firewall that maintains secure connectivity.

Learn more about AlgoSec at http://www.algosec.com and read Professor Wool's blog posts at http://blog.algosec.com

Lesson 2: Bringing Reachability Analysis into Incident Response

Fri, 10 Feb 2017 02:00:00 GMT

Advanced Cyber Threat and Incident Management: Lesson 2

In this lesson Professor Wool discusses the need for reachability analysis in order to assess the severity of the threat and potential impact of an incident. Professor Wool explains how to use traffic simulations to map connectivity paths to/from compromised servers and to/from the internet. By mapping the potential lateral movement paths of an attacker across the network, the SOC team can, for example, proactively take action to prevent data exfiltration or block incoming communications with Command and Control servers.

Learn more about AlgoSec at http://www.algosec.com and read Professor Wool's blog posts at http://blog.algosec.com

Lesson 15: How to Synchronize Object Management with a CMDB

Fri, 10 Feb 2017 02:00:00 GMT

Firewall Management 201: Lesson 15

Many organizations have both a firewall management system as well as a CMDB, yet these systems do not communicate with each other and their data is not synchronized. This becomes a problem when making security policy change requests, and typically someone needs to manually translate the names used by in the firewall management system to the name in the CMDB, which is a slow and error-prone process, in order for the change request to work.

In this lesson Professor Wool provides tips on how to use a network security policy management to coordinate between the two system, match the object names, and then automatically populate the change management process with the correct names and definitions.

Learn more about AlgoSec at http://www.algosec.com and read Professor Wool's blog posts at http://blog.algosec.com

AlgoSec Splunk App for Incident Response

Mon, 28 Nov 2016 02:00:00 GMT

This video demonstrates a new AlgoSec App for incident response which integrates with Splunk.

Splunk can detect and analyze potential breaches while AlgoSec manages security policies and augments them with business context.

The new AlgoSec Splunk App enhances and automates incident response by highlighting the potential impact on business applications and business processes; adding information regarding the infected server's exposure to the internet, or access to sensitive internal networks; and automating the action needed to contain the incident.

Best Practices for Incorporating Security Automation into the DevOps Lifecycle

Wed, 16 Nov 2016 02:00:00 GMT

Best Practices for Incorporating Security into DevOps

In this lesson, Professor Wool examines the need for and the process of adjusting application connectivity throughout each stage of the DevOps lifecycle.

Lesson 13: Zero-Touch Change Management with Checks and Balances

Tue, 15 Nov 2016 02:00:00 GMT

Firewall Management 201: Lesson 13

In this lesson, Professor Wool highlights the challenges, benefits and trade-offs of utilizing zero-touch automation for security policy change management. He explains how, using conditional logic, its possible to significantly speed up security policy change management while maintaining control and ensuring accuracy throughout the process.

Cisco ACI and AlgoSec Integration (Overview and Demo)

Mon, 31 Oct 2016 02:00:00 GMT

Enhanced Security Policy Visibility and Change, Risk, and Compliance Management

For more information contact AlgoSec at info@algosec.com or visit our website at www.algosec.com

Lesson 4: Using Next Generation Firewalls for Cyber Threat Prevention

Thu, 19 Nov 2015 02:00:00 GMT

Next Generation Firewalls: Lesson 4
As part of the blacklisting approach to application security, most NGFW vendors now offer their customers a subscription based service that provides periodic updates to firewall definitions and signatures for a great number of applications especially the malicious ones. In this lesson, Professor Wool discusses the pros and cons of this offering for cyber threat prevention. It also discusses the limitations of this service when home-grown applications are deployed in the enterprise, and provides a recommendation on how to solve this problem.

Learn more about AlgoSec at http://www.algosec.com and read Professor Wool's blog posts at http://blog.algosec.com

Lesson 3: Managing Your Security Policy in a Mixed Next Gen and Traditional...

Thu, 19 Nov 2015 02:00:00 GMT

Next Generation Firewalls: Lesson 3
Next generation firewalls (NGFWs) allow you to manage security policies with much greater granularity, based on specific applications and users, which provides much greater control over the traffic you want to allow or deny. Today, NGFWs are usually deployed alongside traditional firewalls. Therefore change requests need to be written using each firewall type’s specific terminology; application names and default ports for NGFWs, and actual protocols and ports for traditional firewalls. This new lesson explains some of challenges of writing firewall rules for a mixed firewall environment, and how to address them.

Learn more about AlgoSec at http://www.algosec.com and read Professor Wool's blog posts at http://blog.algosec.com

Lesson 12: Managing Your Security Policy for Disaster Recovery

Thu, 19 Nov 2015 02:00:00 GMT

In this lesson Professor Wool discusses ways to ensure that your security policy on your primary site and on your disaster recovery (DR) site are always sync. He presents multiple scenarios: where the DR and primary site use the exact same firewalls, where different vendor solutions or different models are used on the DR site, and where the IP address is or is not the same on the two sites.

Learn more about AlgoSec at http://www.algosec.com and read Professor Wool's blog posts at http://blog.algosec.com

Lesson 5: The Challenges of East West Traffic Discovery for Network Segmentation

Mon, 21 Sep 2015 03:00:00 GMT

Network Segmentation: Lesson 5

In this lesson, Professor Wool presents some of the challenges of setting up security policies for East-West traffic. On the one hand these policies need to allow all legitimate business traffic to flow through the data center, yet on the other hand they need to be very specific so as to block everything else. Watch this video to find out more.

Learn more about AlgoSec at http://www.algosec.com and read Professor Wool's blog posts at http://blog.algosec.com

Lesson 6: How to Build Firewall Policies for East West Traffic

Mon, 21 Sep 2015 03:00:00 GMT

Network Segmentation: Lesson 6

Following on from Professor Wool’s previous lesson, this lesson presents a step-by-step process for writing firewall policies for East-West traffic. This involves an iterative process of discovering, identifying and then writing explicit ‘allow’ rules for all valid business traffic that goes through the network segment. Watch this video to find out more.

Learn more about AlgoSec at http://www.algosec.com and read Professor Wool's blog posts at http://blog.algosec.com

Lesson 11: Tips for Filtering Traffic within a Private Cloud

Fri, 01 May 2015 03:00:00 GMT

Firewall Management 201: Lesson 11

In this lesson, Professor Wool provides the example of a virtualized private cloud which uses hypervisor technology to connect to the outside world via a firewall. If all worksloads within the private cloud share the same security requirements, this set up is adequate. But what happens if you want to run workloads with different security requirements within the cloud? Professor Wool explains the different options for filtering traffic within a private cloud, and discusses the challenges and solutions for managing them.

Learn more about AlgoSec at http://www.algosec.com and read Professor Wool's blog posts at http://blog.algosec.com

Lesson 3: Common Mistakes and Best Practices for Designing Network Security...

Thu, 26 Mar 2015 02:00:00 GMT

Network Segmentation: Lesson 3

In this lesson, Professor Wool examines common missteps when organizations create security zones and best practices to consider for an improved defense.

Learn more about AlgoSec at http://www.algosec.com and read Professor Wool's blog posts at http://blog.algosec.com

Lesson 4: Data Center Segmentation Best Practices

Wed, 28 Jan 2015 02:00:00 GMT

Network Segmentation: Lesson 4

In this lesson, Professor Wool provides recommendations for how to design your network for optimal segmentation in two typical scenarios: Allowing traffic from an external partner application into the corporate data center, and structuring network traffic flows within the data center to force specific flows with more check points for better security.

Learn more about AlgoSec at http://www.algosec.com and read Professor Wool's blog posts at http://blog.algosec.com

Tips for Secure Decommissioning of Business Applications

Fri, 14 Mar 2014 02:00:00 GMT

Managing Business Application Connectivity: Lesson 4

In this lesson, Professor Wool examines the challenges of decommissioning business applications and offers recommendations for improving security without impacting network operations by removing firewall rules that are no longer in use.

Examining the Need for Application-Centric Security Policy Management

Thu, 13 Mar 2014 02:00:00 GMT

Managing Business Application Connectivity: Lesson 1

In this lesson, Professor Wool examines the challenges of managing data center applications and their connectivity requirements. Professor Wool also offers tips for bridging the gap between application owners and network and security teams - to ensure faster, more secure deployment, maintenance and decommissioning of critical applications.

Learn more about AlgoSec at http://www.algosec.com and read Professor Wool's blog posts at http://blog.algosec.com

Lesson 10: Tips to Simplify Migrations to a Virtual Data Center

Thu, 13 Mar 2014 02:00:00 GMT

Firewall Management 201: Lesson 10
In this lesson, Professor Wool examines the challenges of migrating business applications and physical data centers to a private cloud and offers tips to conduct these migrations without the risk of outages.

Learn more about AlgoSec at http://www.algosec.com and read Professor Wool's blog posts at http://blog.algosec.com

Lesson 7: Examining the Challenges of Accurately Simulating Network Routing

Thu, 13 Mar 2014 02:00:00 GMT

Firewall Management 201: Lesson 7
In this lesson, Professor Wool examines the complex challenges of accurately simulating network routing, specifically drilling into three options for extracting the routing information from your network: SNMP, SSH and HSRP or VRPP.

Learn more about AlgoSec at http://www.algosec.com and read Professor Wool's blog posts at http://blog.algosec.com