AlgoSec

Master the Zero Trust Strategy for Improved Cybersecurity

Wed, 08 Mar 2023 17:01:07 GMT

In today's digital world, cyber threats are becoming more complex and sophisticated. Businesses must adopt a proactive approach to cybersecurity to protect their sensitive data and systems. This is where zero trust security comes in - a security model that requires every user, device, and application to be verified before granting access.

If you're looking to implement zero trust security in your business or want to know more about how it works, join our upcoming webinar. AlgoSec co-Founder and CTO Avishai Wool will discuss the benefits of zero trust security and provide you with practical tips on how to implement this security model in your organization.

Zero Trust Framework for Network Security

Thu, 02 Feb 2023 10:11:27 GMT

With the increasing number of cyber threats, securing your network has become a top priority. Zero Trust Architecture is a new approach to cybersecurity that has proven to be effective in protecting against these threats. By incorporating Zero Trust principles into your security infrastructure, you can rest assured that your sensitive data is protected.

In this informative video, Prof. Avishai Wool, CTO and Co-Founder of AlgoSec, discusses the key principles of Zero Trust and provides practical tips on how to integrate it into your existing security infrastructure.

Don't miss this opportunity to take your security to the next level! Watch this video now and start implementing the best practices for Zero Trust Architecture.

Simplifying Firewall Audits and Demonstrating Compliance

Tue, 22 Mar 2022 11:15:34 GMT

AlgoSec Firewall Analyzer delivers out-of-the-box compliance reports for the widest range of industry standards including PCI-DSS, ISO 27001, Sarbanes Oxley and more. These reports help you dramatically reduce the time and effort required to prepare for audits - by as much as 80%.

Top 5 Predictions & Best Practices for 2022

Tue, 21 Dec 2021 14:09:54 GMT

In this video, Prof. Avishai Wool, AlgoSec CTO and co-founder, provides his expert opinion on the Top 5 ongoing and new challenges in cybersecurity and network security management expected to take place in 2022 and offers invaluable best practices. To learn more, please contact us to set up a demo at https://www.algosec.com/lp/request-a-demo/

Build and enforce defense in-depth | An AlgoSec-Cisco Tetration webinar

Sun, 28 Nov 2021 15:39:29 GMT

Jothi Prakash Prabakaran, Senior Product Manager (Cisco), Yoni Geva, Product Manager (AlgoSec) | July 2020

Micro-segmentation protects your workloads and applications against lateral movement of malware and limits the spread of insider threats, yet successfully implementing a defense-in-depth strategy using micro-segmentation is complicated. In this technical webinar, Jothi Prakash Prabakaran, Senior Product Manager at Cisco, and Yoni Geva, Product Manager at AlgoSec, will provide a step-by-step blueprint to implementing this strategy using the micro-segmentation capabilities of Cisco Tetration and network security policy management capabilities of AlgoSec.

They will demonstrate how to tighten your security posture within the data center using an allow-list approach. They will also show how to enforce these granular micro-segmented policies enforced on the workloads with Cisco Tetration and a coarse grain policy enforced across the infrastructure through AlgoSec network security policy management.

Watch this webinar to learn how to:
• Understand your business applications to create your microsegmentation policy
• Validate your micro-segmentation policy is accurate
• Enforce these granular policies on workloads and summarized policies across your infrastructure
• Use risk and vulnerability analysis to tighten your workload and network security
• Identify and manage security risk and compliance in your micro-segmented environment

AlgoSec's Baseline Compliance Capability

Thu, 29 Jul 2021 09:50:35 GMT

AlgoSec Firewall Analyzer allows security teams to easily and efficiently define baseline hardware and software configurations to which devices must adhere, and generates reports to identify devices that do not comply with the corporate baseline, minimizing system risks.

Cisco Meraki – Visibility, Risk & Compliance Demo

Tue, 16 Mar 2021 19:52:09 GMT

Product demo - Discover how you can gain visibility, risk and compliance for Cisco Meraki. Click here for a personal demo: https://www.algosec.com/lp/request-a-demo/

Manage your network security with AlgoSec & VMWare

Tue, 16 Mar 2021 19:50:24 GMT

Watch this demo and see how you can tighten your security and get increased visibility with AlgoSec and VMWare. Click here for a personal demo: https://www.algosec.com/lp/request-a-demo/

Customer Story - Mark Grady from Leading payment solutions company

Tue, 16 Feb 2021 22:22:25 GMT

Leading payment solutions company credits AlgoSec for increasing security and compliance.

Click here for a personal demo: https://www.algosec.com/lp/request-a-demo/

[Panel] How to Solve the Hybrid Cloud Policy Management Challenge

Wed, 23 Sep 2020 16:38:07 GMT

Yonatan Klein, Director of Product, Omer Ganot, Product Manager and Yitzy Tannenbaurm, Product Marketing Manager (AlgoSec)

Today, your network is complex, extending beyond the perimeter in multiple locations, made up of multiple public and private clouds, SDNs, as well as on-premises data centers. Security controls are a “black box.” IT and security staff find it difficult to gain visibility, and maintain security in the hybrid cloud.

Join a panel discussion with Yonatan Klein and Omer Ganot from AlgoSec’s product management team, along with moderator Yitzy Tannenbaum as they debate the hybrid management cloud challenge.

They will discuss how to solve complex challenges securing hybrid networks, including:
• Gaining full policy and network visibility for their hybrid, multi-cloud network
• Multiple clouds with emphasis on the hybrid network - private and public
• Effective communication among multiple business, IT and security stakeholders to save time, reduce risk, and avoid misconfigurations
• Managing network security controls in a heterogeneous network environment

Webcast: Build and enforce defense in-depth | An AlgoSec-Cisco Tetration webinar

Wed, 23 Sep 2020 15:45:44 GMT

Jothi Prakash Prabakaran, Senior Product Manager (Cisco), Yoni Geva, Product Manager (AlgoSec) | July 2020

Panel Discussion: Network Security and Compliance best practices for...

Tue, 15 Sep 2020 20:06:08 GMT

Financial institutions are forced to invest heavily in digital transformation to gain a competitive edge, especially with customer-facing technology innovations. However, delivery often trails behind the need. New apps are developed, but network security policy
management is often perceived as holding up progress, impeded by manual change-management processes, growing compliance requirements and never-ending audits.

There’s a better way to manage your network security!

Watch our special panel discussion to learn how you can simplify your network security management, reduce risk and ensure continuous compliance.

Topics include:

• How to overcome security management complexities with automation
• How to pass compliance audits in the face of demanding regulations
• Key industry metrics that compare security environments within and beyond the finance industry
• Real financial customers case studies

AlgoSec cloud central Policy Management

Tue, 08 Sep 2020 23:06:11 GMT

In this video we will demonstrate the power of central policy management of cloud security controls.
Save time, identify and prevent human error and risk by managing a single policy set instead of doing the same for multiple similar security controls.

Micro-segmentation – from Strategy to Execution

Wed, 08 Jul 2020 22:48:10 GMT

Avishai Wool, CTO & Co-founder (AlgoSec) | June 2020

Organizations heavily invest in security solutions to keep their networks safe, but still struggle to close the security gaps. Micro-segmentation helps protect against the lateral movement of malware and minimizes the risk of insider threats. Micro-segmentation has received lots of attention as a possible solution, but many IT security professionals aren’t sure where to begin or what approach to take.

In this practical webinar, Prof. Avishai Wool, AlgoSec’s CTO and co-founder will guide you through each stage of a micro-segmentation project – from developing the correct micro-segmentation strategy to effectively implementing it and continually maintaining your micro-segmented network.

• What is micro-segmentation.
• Common pitfalls in micro-segmentation projects and how to avoid them.
• The stages of a successful micro-segmentation project.
• The role of policy change management and automation in micro-segmentation.

Don't forget to also click on the links in the Attachments tab.

"Achieving intent-based network security across your hybrid network" with...

Wed, 24 Jun 2020 16:49:12 GMT

Avishai Wool, AlgoSec CTO and co-founder, discusses how to achieve intent-based network security across your hybrid network at Check Point Cyber Security Summit 2020.

Learn about:

How to reduce the attack surface of your network

The benefits of lateral segmentation

How to manage micro-segmented networks

Policy Optimization

Mon, 22 Jun 2020 11:01:54 GMT

Learn how to clean up and optimize your firewall policies with the AlgoSec solution

Optimize your Juniper Investment with Intelligent Network Security Automation

Wed, 25 Mar 2020 19:30:22 GMT

Max Shirshov, EMEA Solutions Architect (AlgoSec) | March 24, 2020
Are you maximizing all the capabilities that your Juniper solutions offer? Expand its potential and maximize your ROI. Discover how to secure your homogeneous and multi-vendor network with intelligent automation.

In this webinar, Max Shirshov, EMEA Solutions Architect at AlgoSec, will demonstrate how to assess risk and audit the firewall estate for regulatory compliance, address security breaches caused by misconfigured network devices, and provide fast and efficient change management utilizing the AlgoSec Security Management solution for your Juniper devices.

Join the webinar to learn how to:

Gain complete visibility into your Juniper-estate as well as multi-vendor and hybrid networks
Intelligently push security policy changes to your Netscreen and SRX firewalls, MX routers and Juniper Space, as well as other vendors’ security devices, SDN and public clouds
Automate application and user aware security policy management and ensure your Juniper devices are properly configured
Assess risk and ensure regulatory compliance across your entire enterprise environment

Managing Application Connectivity in the World of Network Security

Wed, 18 Mar 2020 14:05:32 GMT

Asher Benbenisty, Director of Product Marketing | Feb 27 2018

The constant barrage of application connectivity and network security policy change requests, while fighting a relentless battle against cyber-attacks, means your security management efforts need to be focused on what matters most - ensuring that your business applications continue to run smoothly while remaining secure and compliant.

During this technical webinar, Asher Benbenisty, Director of Product Marketing at AlgoSec, discusses how taking an application-centric approach to security policy management will improve both your security and operational efficiency.

Learn how to:

Gain insight into your company’s security policy management maturity level
Understand your business applications’ network connectivity - including discovering and mapping the connectivity flows
Identify security risks across your enterprise network and prioritize them based on business criticality
Securely migrate business application connectivity and security devices to a new data center

Managing Effective Security Policies Across Hybrid and Multi-Cloud Environments

Wed, 18 Mar 2020 14:04:50 GMT

Yitzy Tannenbaum, Product Marketing Manager | Oct 25 2018

Enterprises are not only migrating applications to the cloud from on-premise data centers, but they are developing multi-cloud strategies to take advantage of availability and cost structures as well as to avoid vendor lock-in. In fact, IDC has predicted that more than 85% of IT organizations will commit to multi-cloud architectures already by the end of this year.

In complex, multi-cloud and hybrid environments, security teams need to understand which network flows and security controls impact application connectivity, including cloud-specific security controls (Network ACL and security groups) as well as virtual and physical firewalls that protect cloud resources. They need to manage policies that maintain their compliance posture across multiple clouds and hybrid environments.

In this webinar, Yitzy Tannenbaum illuminates security-policy issues in multi-cloud and hybrid environments and show you how to achieve:

Visibility across the multi-cloud network topology to ensure deployment of security controls that support network-segmentation architecture
Uniform security policy across complex multi-cloud and hybrid environments
Automatic monitoring of multi-cloud and hybrid network-security configuration changes to analyze and assess risk and to avoid compliance violations
Instant generation of audit-ready reports for major regulations, including PCI, HIPAA, SOX and NERC, in the context of multi-cloud environments
Automatic provisioning of application connectivity flows across a variety of security controls in hybrid environments

Robert Blank von AlgoSec auf der ITSA 2019

Mon, 16 Mar 2020 14:54:15 GMT

Robert Blank (Regional Sales Manager DACH von AlgoSec) spricht auf der ITSA 2019 in Nürnberg. Erfahren Sie mehr darüber, wie die Security Policy Change-Automatierung von AlgoSec funktioniert, wie Cisco-Security komplettiert wird, und bekommen Sie hier das neueste Update zur Partnerschaft zwischen AlgoSec mit Cisco.

5 ways to enrich your Cisco security posture with AlgoSec

Sun, 15 Mar 2020 12:02:44 GMT

Discover the benefits of integrating AlgoSec with your entire Cisco fabric, multi-cloud and multi-vendor network environments.

Network Security Vision with Application Visibility | Live discussion and demo

Mon, 09 Mar 2020 15:53:57 GMT

Avishai Wool, CTO & Co-founder (AlgoSec) & Yoni Geva, Product Manager (AlgoSec) | March 5, 2020

You’re always making changes to your network, commissioning and decommissioning servers, moving data to and from the cloud, revising application connectivity settings and policies, and/or adding and removing business applications.

But how do you make sure that you are not running blind and making network configuration mistakes that may lead to outages? Are you leaving firewall openings for unused applications, making your network vulnerable to insider threats or outside attackers?

Stop running blind. Expand your vision with application visibility.

With application visibility, you associate your traffic flows to the related business applications, enhance network visibility, improve troubleshooting, gain enhanced compliance reports, and even save time while improving security on your network.

In this webinar, Avishai Wool, AlgoSec’s co-founder and CTO, and Yoni Geva, AlgoSec’s Product Manager, will demonstrate – in a live demo - how to overcome these challenges and ensure business continuity through application visibility.

Join the webinar and learn how to:
• Associate your business applications with your security policy rules.
• Identify the network traffic relevant for each application.
• Identify hidden risks and vulnerabilities in your applications.
• Associate compliance violations with the relevant business applications.
• Improve troubleshooting by identifying affected applications.
• Better document the applications on your network.

5 Dinge, von denen Sie sicherlich nicht gewusst haben, die Sie mit einer...

Thu, 05 Mar 2020 14:08:47 GMT

Dietmar Wyhs, Regional Sales Manager DACH | Oct 9 2017

Die heutigen Unternehmen entwickeln sich kontinuierlich weiter, um neue Anwendungen, Transformationsinitiativen wie Cloud und SDN zu unterstützen und täglich neue und anspruchsvollere Cyber-Attacken abzuwehren. Aber die Sicherheits- und Netzwerk-Mitarbeiter haben Schwierigkeiten mitzuhalten. Dies wirkt sich nicht nur auf die Business-Agilität aus, sondern setzt Ihr Unternehmen Risiken aus und behindert dessen Fähigkeit, sich der modernen Bedrohungslandschaft zu stellen.

Viele Fachleute sind der Meinung, dass sie die neuesten Anwendungen brauchen, um diese Herausforderungen zu bewältigen. Aber was, wenn Sie bereits haben, was Sie brauchen und diese Anwendung in Ihrem Unternehmen genutzt wird: Ihre Security Policy Management Lösung?

Die heutigen Sicherheitsrichtlinien-Management-Lösungen machen weit mehr als die Automatisierung von traditionellen Änderungsmanagement Aufgaben. In diesem technischen Webinar zeigt Ihnen Dietmar Wyhs fünf wichtige Sicherheitsmanagement-Herausforderungen, denen Unternehmensorganisationen sich heutzutage stellen. Gleichzeitig erklärt er, wie die Lösung von AlgoSec Ihnen helfen kann, Sicherheitsbedrohungen zu bewältigen, Risiken zu verringern, und schnell auf Ausfällen zu reagieren, bei gleichzeitiger Maximierung der Geschäftsagibilität und Sicherstellung der Compliance in den unterschiedlichen, sich ständig verändernden Hybridnetzwerken.

Dieses technische Webinar konzentriert sich auf:

•Verwalten von Sicherheitsrichtlinien von End-to-End-Lösungen öffentlicher und privater Clouds einschließlich Microsoft Azure, Amazon Web Services AWS, Cisco ACI und VMWare NSX
•Zuordnung von Sicherheitslücken zu Anwendungen, zur Bewertung und Priorisierung des Risikos
•Möglichkeit Cyber-Attacken mit Geschäftsprozesse zu korrelieren
•Migration von Firewall-Richtlinien zwischen Firewall-Herstellern
•Durchführung einer vollautomatischen, Zero-Touch-Sicherheitsregelwerksänderung

CouchTalk: Cisco ACI and AlgoSec – Visibility and Automation

Wed, 04 Mar 2020 14:51:39 GMT

Kyle Wickert, Worldwide Solution Architect, and Yitzy Tannenbaum, Product Marketing Manager, discuss security policy change management throughout your Cisco and hybrid environment.

AlgoSec provides visibility and automation into Cisco ACI, enables intent-based networking with Cisco Tetration, and manages and automates Cisco firewalls

Cisco ACI & AlgoSec: Achieving application-driven security across your hybrid...

Mon, 17 Feb 2020 14:42:55 GMT

As your network extends into hybrid and multi-cloud environments, including software-defined networks such as Cisco ACI, managing security policies within your hybrid estate becomes more and more complex.

Because each part of your network estate is managed in its own silo, it’s tough to get a full view of your entire network. Making changes across your entire network is a chore and validating your entire network’s security is virtually impossible.

Learn how to unify, consolidate, and automate your entire network security policy management including both within the Cisco ACI fabric and elements outside the fabric.

In this session Omer Ganot, AlgoSec’s Product Manager, will discuss how to:

Get full visibility of your entire hybrid network estate, including items within the Cisco ACI security environment, as well as outside it.
Unify, consolidate, and automate your network security policy management, including elements within and outside of the Cisco ACI fabric.
Proactively assess risk throughout your entire network, including Cisco ACI contracts, and recommend the necessary changes to eliminate misconfigurations and compliance violations

Microsegmentation for Network Security – AlgoSec / SANS Webinar

Thu, 26 Sep 2019 13:53:23 GMT

Organizations heavily invest in a mix of security solutions to keep their networks safe, but still, struggle to close the security gaps. Micro-segmentation helps protect the organizations' network against the lateral movement of malware and minimizes the risk of insider threats. Micro-segmentation has received lots of attention as a possible solution, but many IT security professionals aren't sure where to begin or what approach to take.

Dave Shackleford, the owner and principal consultant of Voodoo Security and a SANS analyst hosts Professor Avishai Wool, AlgoSecs CTO and co-founder, in this practical webinar to unveil why organizations are increasingly micro-segmenting for their networks, and guide you through each stage of a micro-segmentation project from development of the correct micro-segmentation strategy to effective implementation and maintenance of a micro-segmented network.

What micro-segmentation is
Why and how micro-segmentation can be part of the equation in protecting your network.
Common pitfalls in microsegmentation projects and how to avoid them.
The stages of a successful microsegmentation project.
How to monitor and maintain your micro-segmented network.
The role of policy management, change management, and automation in micro-segmentation.

Speaker Bios

Dave Shackleford

Dave Shackleford, a SANS analyst, instructor, course author, GIAC technical director and member of the board of directors for the SANS Technology Institute, is the founder and principal consultant with Voodoo Security. He has consulted with hundreds of organizations in the areas of security, regulatory compliance, and network architecture and engineering. A VMware vExpert, Dave has extensive experience designing and configuring secure virtualized infrastructures. He previously worked as chief security officer for Configuresoft and CTO for the Center for Internet Security. Dave currently helps lead the Atlanta chapter of the Cloud Security Alliance.

Avishai Wool

Prof. Avishai Wool, AlgoSec’s CTO and co-founder, is a world-renowned researcher and security industry veteran. He is a professor in the School of Electrical Engineering at Tel Aviv University and serves as the deputy-director of the Interdisciplinary Cyber Research Center at TAU. Prof. Wool has published more than 110 research papers and holds 13 US Patents, and has served on the program committee of the leading IEEE and ACM conferences on computer and network security. Prof. Wool has a B.Sc. (Cum Laude) in Mathematics and Computer Science, and a M.Sc. and Ph.D. in Computer Science.

The Capital One Breach: How to avoid the Misconfiguration danger?

Tue, 06 Aug 2019 15:36:01 GMT

Prof. Avishai Wool explains the Capital One data breach, which exposed the personal information of nearly 106 million people.

The AlgoSec network security policy management solution provides holistic visibility across cloud, on-premise, SDN and hybrid environments, enabling you to proactively analyze risk from the business perspective, intelligently automate security changes, avoid misconfiguration incidents and ensure continuous compliance.

Click here to learn how.

Cisco ACI & Hybrid Networks Breaking Down Silos with Central Policy Management

Tue, 30 Jul 2019 19:56:43 GMT

Yonatan Klein, Director of Product Management | July 30, 2019

While your network extended beyond the confines of the physical data center and you started using Software Defined Networks (SDN) such as Cisco ACI, managing security policies within your hybrid estate is complex.

Each part of your network estate is managed in its own independent silo instead of being holistically managed.

Learn how to unify, consolidate and automate your entire network security policy management including both the Cisco ACI SDN fabric and elements outside the SDN fabric.

In this webinar, Yonatan Klein, Director of Product Management at AlgoSec, explains how to centralize your security policy management throughout your network and the unique challenges required to manage an SDN fabric, such as Cisco ACI, in order get the most out of your entire network.

He covers how to:
Proactively assess risk throughout your network, including Cisco ACI contracts, and recommend the necessary changes to eliminate misconfigurations and compliance violations
Gain full visibility and unify security policy management of your entire hybrid network estate, simulate traffic routes and security policy for ACI and other network devices
Manage traffic change requests in a holistic manner, including automatically pushing security policy changes to Cisco ACI by creating contracts and filters to enforce data center whitelist policy; as well as identifying and provisioning changes to firewalls both within the ACI fabric as well as other network security controls that are on-premises and in the cloud

AlgoSec and Cisco ACI for Improved Data Center Security, Compliance and...

Tue, 30 Jul 2019 09:13:39 GMT

AlgoSec and Cisco ACI deliver security policy across the entire network, enables automated security policy change management for multi-vendor devices, provide risk and compliance analysis, and more.

Avoiding the Security/Agility Tradeoff with Network Security Policy

Thu, 11 Jul 2019 12:46:31 GMT

Yitzy Tannenbaum, Product Marketing Manager | July 10, 2019

Business application deployments and changes require IT, networking and security teams to be more agile than ever before.
But frequently, this agility comes at the expense of security and compliance and enables network breaches and cyber-attacks.

In this webinar, Yitzy Tannenbaum, Product Marketing Manager at AlgoSec, covers how network security policy automation helps you avoid this conflict.

Watch the webinar to learn how to:
• Plan for the entire network security lifecycle
• Discover your network topology and traffic flows
• Ensure continuous compliance and identify risks and compliance violations
• Easily implement changes across your hybrid network environment
• Mandate a consistent and unified change process

Effectively Managing Security Policy | Joint Fortinet & AlgoSec Webinar

Mon, 01 Jul 2019 13:56:06 GMT

Satish Veerapuneni, Director of Products and Solutions (Fortinet) and Yoav Karnibad, Product Manager (AlgoSec) | Jun 26 2019

In today’s complex and dynamic environment with growing digital business demands, IT often struggles to gain adequate visibility and control, and to ensure compliance with security policies and regulatory guidelines. Effective security policy management that accommodates the dynamic nature of today’s organizations is a key challenge for many IT departments.

In this webinar, Satish Veerapuneni, Director of Products and Solutions at Fortinet and Yoav Karnibad, Product Manager at AlgoSec will discuss how joint customers benefit from AlgoSec’s multi-vendor security policy management capabilities while leveraging Fortinet’s industry-leading Security Fabric’s FortiManager & FortiAnalyzer.

Join this live webinar to learn how to:
• Automate policy optimization and risk assessment across all your security devices.
• Enhance visibility and exercise greater control over your hybrid / heterogeneous network
• Tie application connectivity needs to network security policies, reduce planning time and costs for network change automation
• Assess risk and ensure regulatory compliance across the entire enterprise environment
• Realize single pane of glass management with advanced analysis and management of policy modifications through Fortinet Security Fabric’s FortiManager/FortiAnalyzer and AlgoSec’s Firewall Analyzer, FireFlow and BusinessFlow

Securely Managing Application Connectivity – Best Practices

Sun, 16 Jun 2019 11:42:42 GMT

Yoni Geva, Product Manager | June 12, 2019
New business applications are added, changed or removed every day, forcing implementation of complex, time-consuming network security changes. Migrating business applications to the cloud adds additional complexities, such as understanding the network connectivity of each application prior to deployment, provisioning the relevant firewalls and routers in the cloud, and then migrating and adjusting existing network connectivity to support them.

In this webinar, Yoni Geva, Product Manager at AlgoSec will present:

•Innovative application-discovery technologies
•Application-centric use cases, including policy cleanup and documentation
•How to simplify and accelerate rule recertification through automation
•How to prevent breaches by associating vulnerabilities to business applications and
firewall rules
•How to ensure ongoing compliance and audit-readiness

Firewall Rule Recertification with Application Connectivity

Mon, 29 Apr 2019 11:39:25 GMT

Asher Benbenisty, Director of Product Marketing | Apr 24 2019

Firewall rules must be reviewed and recertified regularly for an organization to stay secure, ensure continuous compliance and gain the optimal firewall performance. Firewall rules which are out of date, unused or unnecessary should be removed, as firewall bloat creates gaps in your security posture, causes compliance violations, and decreases firewall performance.

However, manual firewall rule recertification is complex, time-consuming and prone to errors.

Join Asher Benbenisty, AlgoSec’s Director of Product Marketing, on a special webinar introducing an application-centric approach to firewall recertification.

In this webinar Asher will cover:
• Why it is important to regularly review and recertify your firewall rules
• How to use application connectivity for firewall rule recertification
• How to automatically manage the rule-recertification process

Network security at the speed of DevOps

Mon, 15 Apr 2019 17:51:11 GMT

Anner Kushnir, VP Technology | Jul 24 2018

DevOps methodologies have become extremely popular to enable agile application development and delivery.
Unfortunately, when it comes to the associated network connectivity, such as whenever a new application needs to connect to an external resource, the process breaks. The application developer then needs to open change requests and wait for approvals which effectively breaks the continuous delivery cycle. As a result security is in the uncomfortable position of being a bottleneck and an impediment to innovation.

In this webinar, Anner Kushnir, AlgoSec’s VP of Technology will describe how the innovative 'Connectivity as Code' approach can be implemented to overcome these challenges, and seamlessly weave network security into the existing CI/CD pipeline in order to fully automate the application delivery process end-to-end.

This webinar will teach you how to:

Seamlessly manage network connectivity as part of the DevOps process for faster, more agile and problem-free application delivery
Avoid external out-of-band network connectivity problems that require separate and manual handling
Ensure continuous compliance and auditability throughout the application delivery process
Get clearly documented application connectivity requirements which help prevent disruptions to the business
Bridge the gap between application developers and network security throughout the entire application lifecycle

Migration to Cisco Firepower

Wed, 10 Apr 2019 00:00:00 GMT

How to utilize the AlgoSec solution to migrate to Cisco Firepower

Taming the storm clouds: managing network security across hybrid and multi-cloud

Thu, 28 Mar 2019 13:04:00 GMT

Yonatan Klein, Director of Product Management | Mar 27, 2019

Good old perimeter security, enforced by traditional firewall protection, is now combined with distributed firewalls, public cloud native security controls and third-party security services. The shared-responsibility security model means that IT organizations need to assume accountability for the data and overall security posture, as this is not exclusively the cloud providers’ responsibility.

Today, more than ever, enterprise security teams are challenged to stretch their tried-and-true security policies to their extended deployments. They lack visibility across this growing estate, they can’t keep up with DevOps, and they are unable to properly analyze risk. They need integrated security policy management solutions for hybrid-cloud environments.

Join Yonatan Klein, Director of Product Management at AlgoSec to learn how to take advantage of all the benefits of cloud and virtual deployments while maintaining your current security fundamentals.

Yonatan will cover how to:
•Easily and automatically identify security risks and misconfigurations in your cloud
•Centrally manage security controls across accounts, regions and VPCs/VNETs
•Gain complete visibility across subnets and instances, including security groups, network security groups and NACLs
•Obtain a cross-network-estate risk analysis

Movin' On Up to the Cloud: How to Migrate your Application Connectivity

Wed, 20 Mar 2019 10:53:55 GMT

Avivi Siman-Tov, Product Manager | Feb 6 2018

Migrating applications to the cloud or to another data center is a complex and risky process. First, you need to understand the applications you are currently running (application discovery). Then, you need to define and map the existing application connectivity flows (pre-migration), so that you can easily reestablish them post-migration.

If done manually, this is a difficult and time-consuming process, and a single mistake can cause outages, compliance violations and create holes in your security perimeter.

Understanding the migration destination is just as important; cloud security architecture is fundamentally different from physical networks, and it is extremely difficult to translate the network connectivity flows to the cloud security controls and then manage network security policies cohesively across the entire hybrid enterprise environment. All in all, migrating application connectivity is a complex, tedious and error-prone process that can take months and often compromises security, compliance and business agility.

In this webinar, Avivi Siman-Tov, Product Manager at AlgoSec, explores how to simplify and accelerate large-scale complex application migration projects, while making security a priority.

Discover best practices to:

Automatically discover applications and their existing connectivity flows
Analyze, simulate and compute the necessary changes – even between different network security technologies such as traditional firewalls and cloud security groups
Execute the necessary firewall rule changes, and mass-migrate relevant connectivity flows
Assess the risk and ensure compliance throughout the migration process
Deliver unified security policy management across the hybrid enterprise cloud environment

AlgoSec Zero Trust Presentation @Forrester Event

Thu, 15 Nov 2018 02:00:00 GMT

The Forrester Zero Trust Model, when applied to network security, can help organizations develop robust prevention, detection, and incident response capabilities. The session, presented at the Security and Privacy event in Washington DC covered the challenges organizations face and approaches that can be employed, including steps to achieve visibility, policy management automation, application connectivity analysis and network segmentation.

Selecting the right security policy management solution for your organization

Wed, 17 Oct 2018 18:30:00 GMT

Kyle Wickert, Worldwide Strategic Architect

IT must deliver more, faster. Yet as cyber-attacks increase in volume and sophistication, IT groups are finding themselves ill-equipped to secure their networks and maintain compliance while supporting business productivity.
In this era of digital transformation, managing security across complex enterprise networks presents huge challenges. Automation will ease the pressure.
Join Kyle Wickert, Worldwide Strategic Architect at AlgoSec, for a technical webinar on tips and best practices to help you select the right security policy management solution that will help drive business agility while ensuring security and compliance.

Key topics include:

Intelligent automation is more than just adding policies
Letting a business-centric approach take the lead
Extracting the best from existing automation processes and creating new ones
Managing it all together: cloud, SDN and on-premise

Network Security Audit? Passing Your Next One with Flying Colors

Thu, 06 Sep 2018 17:00:00 GMT

Prof. Avishai Wool, CTO | Sep 6 2018

Enterprises are required to maintain an unfailing state of compliance with laws and regulations.

Do you know about the upcoming PCI-DSS 3.2.1 standard and what it means for your operation? Are you ready to be audited?

Like fire drills, audits can catch us unprepared and expose inadequacies. What should we do now to make sure we pass the next audit with ease?

Presented by renowned industry expert, Professor Avishai Wool, this technical webinar imparts best practices and reveals specific techniques to help you make sure that your compliance posture stands up to any audit.

In this webinar, Professor Wool discusses:

Know if your network is compliant with the new PCI standard
Upgrade to the secure alternative to SSL to safeguard your payment data
Prepare for the next audit
Assure continuous compliance

Cisco ACI and AlgoSec Integration (ActiveChange Demo)

Mon, 18 Jun 2018 03:00:00 GMT

nhanced Security Policy Visibility and Change, Risk, and Compliance Management

Through the integration of AlgoSec and the Cisco® Application Centric Infrastructure (Cisco ACI™) architecture, customers can monitor security policy changes across their Cisco ACI system, obtain risk and compliance context for both managed and unmanaged security devices, and extend automation across their entire security
environment.

For more information contact AlgoSec at info@algosec.com or visit our website at www.algosec.com

Automate the entire security policy change management process with zero touch

Sun, 22 Apr 2018 03:00:00 GMT

Sharing Network Security Information with the Wider IT Community With Team...

Tue, 30 Jan 2018 02:00:00 GMT

Firewall Management 201: Lesson 18

Collaboration tools such as Slack provide a convenient way to have group discussions and complete collaborative business tasks. Now, these automated chatbots can be used for answering questions and handling tasks for development, IT and infosecurity teams.

For example, enterprises can use chatbots to automate information-sharing across silos, such as between IT and application owners. So rather than having to call somebody and ask them “Is that system up? What happened to my security change request?” and so on, tracking helpdesk issues and the status of help requests can become much more accessible and responsive. Chatbots also make access to siloed resources more democratic and more widely available across the organization (subject, of course to the necessary access rights).

In this video, Prof. Wool discusses how automated chatbots can be used to help a wide range of users for their security policy management tasks – thereby improving service to stakeholders and helping to accelerate security policy change processes across the enterprise.

Learn more about AlgoSec at http://www.algosec.com and read Professor Wool's blog posts at http://blog.algosec.com

The Benefits of Mapping Firewall Rules to Business Applications

Fri, 05 Jan 2018 02:00:00 GMT

Learn more about AlgoSec at http://www.algosec.com and read Professor Wool's blog posts at http://blog.algosec.com

New! How to Manage Dynamic Objects in Cloud Environments

Fri, 05 Jan 2018 02:00:00 GMT

Learn more about AlgoSec at http://www.algosec.com and read Professor Wool's blog posts at http://blog.algosec.com

Lesson 7: How to Prepare for Network Segmentation by Identifying the Segment...

Fri, 05 Jan 2018 02:00:00 GMT

Learn more about AlgoSec at http://www.algosec.com and read Professor Wool's blog posts at

How to Intelligently Select the Security Groups to Modify When Managing...

Tue, 26 Sep 2017 03:00:00 GMT

Best Practices for Amazon Web Services (AWS) Security: Lesson 7

Learn more about AlgoSec at http://www.algosec.com and read Professor Wool's blog posts at http://blog.algosec.com

Lesson 7: How to Aggregate Network Flows Into Application Flows

Tue, 26 Sep 2017 03:00:00 GMT

Learn more about AlgoSec at http://www.algosec.com and read Professor Wool's blog posts at http://blog.algosec.com

Lesson 17: PCI - Linking Vulnerabilities to Business Applications

Tue, 29 Aug 2017 03:00:00 GMT

Firewall Management 201: Lesson 17

PCI-DSS 3.2 regulation requirement 6.1 mandates that organizations establish a process for identifying security vulnerabilities on the servers that are within the scope of PCI. In this new lesson, Professor Wool explains how to address this requirement by presenting vulnerability data by both the servers and the by business processes that rely on each server. He discusses why this method is important and how it allows companies to achieve compliance while ensuring ongoing business operations.

Learn more about AlgoSec at http://www.algosec.com and read Professor Wool's blog posts at http://blog.algosec.com

The Right Way to Audit AWS Policies

Wed, 12 Jul 2017 03:00:00 GMT

Best Practices for Amazon Web Services (AWS) Security: Lesson 6

In this whiteboard video lesson Professor Wool provides best practices for performing security audits across your AWS estate.

Learn more about AlgoSec at http://www.algosec.com and read Professor Wool's blog posts at http://blog.algosec.com

How to Integrate Security into the Test Environment

Wed, 12 Jul 2017 03:00:00 GMT

Best Practices for Incorporating Security into DevOps

In a typical DevOps scenario development team adds new functionality to an existing business application and then rolls it out into production. However, while the new functionality worked as planned in both the test and pre-production environments, the application then fails when moved into the live production environment. In this video, Professor Wool will discuss the reasons why this process went wrong, and how you can fix it.

Learn more about AlgoSec at http://www.algosec.com and read Professor Wool's blog posts at http://blog.algosec.com

Tips for Adding Capacity Without Changing Your Security Policies

Wed, 12 Jul 2017 03:00:00 GMT

Best Practices for Incorporating Security into DevOps

In theory adding capacity should be fairly straightforward, with minimal need for any intervention by the organization’s security team. But in practice it’s a little more complex. In this video Professor Wool provides some tips and best practices to help you add capacity without having to change your security policies, complete a security review or worse still, cause an outage or gap in the security perimeter.

Learn more about AlgoSec at http://www.algosec.com and read Professor Wool's blog posts at http://blog.algosec.com

How to Integrate Security into the CI Process

Wed, 12 Jul 2017 03:00:00 GMT

Best Practices for Incorporating Security into DevOps

In previous lessons Professor Wool discussed how building security into DevOps processes at an early stage helps organizations maximize the speed and agility of application development, while minimizing the risks of problems and outages when the applications go live. In this whiteboard video Professor Wool looks at how security automation helps to speed up the practice of Continuous Integration (CI) - a core element of DevOps.

Learn more about AlgoSec at http://www.algosec.com and read Professor Wool's blog posts at http://blog.algosec.com

Onboarding New Firewall Devices Using AlgoSec's APIs

Fri, 12 May 2017 03:00:00 GMT

Security integration is a common requirement for many enterprise customers and MSSPs. This video showcases the process to operationalize this requirements including:
1. Onboarding new firewall devices through a web portal
2. Easily get compliance scores for newly onboarded devices
3. Identify firewall cleanup opportunities
4. Identify if security policies are blocking application connectivity

The AlgoSec QRadar App for Incident Response

Fri, 03 Mar 2017 02:00:00 GMT

This video demonstrates a new AlgoSec App for incident response which integrates with the IBM QRadar Security Intelligence Platform.

Through AlgoSec’s integration with IBM QRadar, this App enhances and automates the Security Incident Response process by:

* Augmenting security incident data with business context
* Automatically associating applications with compromised servers
* Identifying network connectivity to/from a compromised server
* Automatically isolating a compromised server from the network

Demo: AlgoSec's Cisco ACI App Center

Fri, 03 Mar 2017 02:00:00 GMT

The AlgoSec Connectivity and Compliance App provides insights into your network and security posture, including a current snapshot of risk and compliance across your ACI fabric.

Key capabilities of the App include:

- Traffic assessment to determine if specific traffic is traversing the network or if its blocked - including visibility into security devices and their status across the traffic route

- The ability to automatically update the firewall policy in the event that connectivity is blocked erroneously

- Instant risk analysis for Cisco ACI contracts alongside firewall security policies

- A detailed PCI compliance report for your Cisco ACI fabric, that’s ready for auditors

Lesson 14: Synchronized Object Management in a Multi-Vendor Environment

Fri, 10 Feb 2017 02:00:00 GMT

Firewall Management 201: Lesson 14

Many organizations have different types of firewalls from multiple vendors, which typically means there is no single source for naming and managing network objects. This ends up creating duplication, confusion, mistakes and network connectivity problems especially when a new change request is generated and you need to know which network object to refer to. In this lesson Profession Wool provides tips and best practices for how to synchronize network objects in a multi-vendor environment for both legacy scenarios, and greenfield scenarios.

Learn more about AlgoSec at http://www.algosec.com and read Professor Wool's blog posts at http://blog.algosec.com

Lesson 16: How to Take Control of a Firewall Migration Project

Fri, 10 Feb 2017 02:00:00 GMT

Firewall Management 201: Lesson 16

Some companies use tools to automatically convert firewall rules from an old firewall, due to be retired, to a new firewall. In this lesson, Professor Wool explains why this process can be risky and provides some specific technical examples. He then presents a more realistic way to manage the firewall rule migration process that involves stages and checks and balances to ensure a smooth, secure transition to the new firewall that maintains secure connectivity.

Learn more about AlgoSec at http://www.algosec.com and read Professor Wool's blog posts at http://blog.algosec.com

Lesson 2: Bringing Reachability Analysis into Incident Response

Fri, 10 Feb 2017 02:00:00 GMT

Advanced Cyber Threat and Incident Management: Lesson 2

In this lesson Professor Wool discusses the need for reachability analysis in order to assess the severity of the threat and potential impact of an incident. Professor Wool explains how to use traffic simulations to map connectivity paths to/from compromised servers and to/from the internet. By mapping the potential lateral movement paths of an attacker across the network, the SOC team can, for example, proactively take action to prevent data exfiltration or block incoming communications with Command and Control servers.

Learn more about AlgoSec at http://www.algosec.com and read Professor Wool's blog posts at http://blog.algosec.com

Lesson 15: How to Synchronize Object Management with a CMDB

Fri, 10 Feb 2017 02:00:00 GMT

Firewall Management 201: Lesson 15

Many organizations have both a firewall management system as well as a CMDB, yet these systems do not communicate with each other and their data is not synchronized. This becomes a problem when making security policy change requests, and typically someone needs to manually translate the names used by in the firewall management system to the name in the CMDB, which is a slow and error-prone process, in order for the change request to work.

In this lesson Professor Wool provides tips on how to use a network security policy management to coordinate between the two system, match the object names, and then automatically populate the change management process with the correct names and definitions.

Learn more about AlgoSec at http://www.algosec.com and read Professor Wool's blog posts at http://blog.algosec.com

AlgoSec Splunk App for Incident Response

Mon, 28 Nov 2016 02:00:00 GMT

This video demonstrates a new AlgoSec App for incident response which integrates with Splunk.

Splunk can detect and analyze potential breaches while AlgoSec manages security policies and augments them with business context.

The new AlgoSec Splunk App enhances and automates incident response by highlighting the potential impact on business applications and business processes; adding information regarding the infected server's exposure to the internet, or access to sensitive internal networks; and automating the action needed to contain the incident.

Best Practices for Incorporating Security Automation into the DevOps Lifecycle

Wed, 16 Nov 2016 02:00:00 GMT

Best Practices for Incorporating Security into DevOps

In this lesson, Professor Wool examines the need for and the process of adjusting application connectivity throughout each stage of the DevOps lifecycle.

Lesson 13: Zero-Touch Change Management with Checks and Balances

Tue, 15 Nov 2016 02:00:00 GMT

Firewall Management 201: Lesson 13

In this lesson, Professor Wool highlights the challenges, benefits and trade-offs of utilizing zero-touch automation for security policy change management. He explains how, using conditional logic, its possible to significantly speed up security policy change management while maintaining control and ensuring accuracy throughout the process.

Cisco ACI and AlgoSec Integration (Overview and Demo)

Mon, 31 Oct 2016 02:00:00 GMT

Enhanced Security Policy Visibility and Change, Risk, and Compliance Management

For more information contact AlgoSec at info@algosec.com or visit our website at www.algosec.com

Combining Security Groups and Network ACLs to Bypass AWS Capacity Limitations

Thu, 29 Sep 2016 03:00:00 GMT

Best Practices for Amazon Web Services (AWS) Security: Lesson 5

AWS security is very flexible and granular, however it has some limitations in terms of the number of rules you can have in a NACL and security group. In this lesson Professor Wool explains how to combine security groups and NACLs filtering capabilities in order to bypass these capacity limitations and achieve the granular filtering needed to secure enterprise organizations.

Learn more about AlgoSec at http://www.algosec.com and read Professor Wool's blog posts at http://blog.algosec.com

Using AWS Network ACLs for Enhanced Traffic Filtering

Mon, 26 Sep 2016 03:00:00 GMT

In this lesson Professor Wool examines the differences between Amazon's Security Groups and Network Access Control Lists (NACLs), and provides some tips and tricks on how to use them together for the most effective and flexible traffic filtering for your enterprise.

Learn more about AlgoSec at http://www.algosec.com and read Professor Wool's blog posts at http://blog.algosec.com

Lesson 3: Best Practices for Bringing NSX Security Policy Management into the...

Mon, 22 Aug 2016 03:00:00 GMT

Network Security for VMware NSX: Lesson 3

Once the NSX environment is up and running it needs to be part of the organization’s network security policy change process, and subject to the organization’s governance, audit, and regulatory compliance requirements. In this lesson Professor Wool discusses how to approach managing changes, auditing and compliance when the security team doesn’t ‘own’ the virtual environment.

Lesson 1: Migrating to NSX: Understanding the Why in Order to Figure Out the How

Mon, 22 Aug 2016 03:00:00 GMT

VMware’s NSX enables datacenter owners to secure East-West traffic using filtering policies that are enforced by the VMware infrastructure. However, migrating from existing traditional filtering technologies to VMware NSX can be a daunting task. In this lesson Professor will discuss why it’s important to understand the motivations for a migration to NSX in order to successfully plan and implement the actual migration to the VMware NSX platform.

Learn more about AlgoSec at http://www.algosec.com and read Professor Wool's blog posts athttp://blog.algosec.com

Lesson 2: Tips on How to Create Filtering Policies for NSX

Mon, 22 Aug 2016 03:00:00 GMT

Network Security for VMware NSX: Lesson 2

When setting up an NSX data center you need to write filtering policies for any traffic that goes into an NSX data center, exits from it, or moves between different servers inside the NSX data center. In this lesson, Professor Wool recommends a multi-stage process to help users write secure and effective policies for east East-West traffic.

Learn more about AlgoSec at http://www.algosec.com and read Professor Wool's blog posts athttp://blog.algosec.com

Lesson 4: Using Next Generation Firewalls for Cyber Threat Prevention

Thu, 19 Nov 2015 02:00:00 GMT

Next Generation Firewalls: Lesson 4
As part of the blacklisting approach to application security, most NGFW vendors now offer their customers a subscription based service that provides periodic updates to firewall definitions and signatures for a great number of applications especially the malicious ones. In this lesson, Professor Wool discusses the pros and cons of this offering for cyber threat prevention. It also discusses the limitations of this service when home-grown applications are deployed in the enterprise, and provides a recommendation on how to solve this problem.

Learn more about AlgoSec at http://www.algosec.com and read Professor Wool's blog posts at http://blog.algosec.com

Lesson 3: Managing Your Security Policy in a Mixed Next Gen and Traditional...

Thu, 19 Nov 2015 02:00:00 GMT

Next Generation Firewalls: Lesson 3
Next generation firewalls (NGFWs) allow you to manage security policies with much greater granularity, based on specific applications and users, which provides much greater control over the traffic you want to allow or deny. Today, NGFWs are usually deployed alongside traditional firewalls. Therefore change requests need to be written using each firewall type’s specific terminology; application names and default ports for NGFWs, and actual protocols and ports for traditional firewalls. This new lesson explains some of challenges of writing firewall rules for a mixed firewall environment, and how to address them.

Learn more about AlgoSec at http://www.algosec.com and read Professor Wool's blog posts at http://blog.algosec.com

Lesson 12: Managing Your Security Policy for Disaster Recovery

Thu, 19 Nov 2015 02:00:00 GMT

In this lesson Professor Wool discusses ways to ensure that your security policy on your primary site and on your disaster recovery (DR) site are always sync. He presents multiple scenarios: where the DR and primary site use the exact same firewalls, where different vendor solutions or different models are used on the DR site, and where the IP address is or is not the same on the two sites.

Learn more about AlgoSec at http://www.algosec.com and read Professor Wool's blog posts at http://blog.algosec.com

Protect Outbound Traffic in an AWS Hybrid Environment

Wed, 06 May 2015 03:00:00 GMT

Best Practices for Amazon Web Services (AWS) Security: Lesson 2

Outbound traffic rules in AWS Security Groups are, by default, very wide and insecure. In addition, during the set-up process for AWS Security Groups the user is not intuitively guided through a set up process for outbound rules – the user must do this manually. In this lesson, Professor Wool, highlights the limitations and consequences of leaving the default rules in place, and provides recommendations on how to define outbound rules in AWS Security Groups in order to securely control and filter outbound traffic and protect against data leaks.

Learn more about AlgoSec at http://www.algosec.com and read Professor Wool's blog posts at http://blog.algosec.com

The Fundamentals of AWS Security Groups

Wed, 06 May 2015 03:00:00 GMT

Best Practices for Amazon Web Services (AWS) Security: Lesson 1

In this lesson Professor Wool provides an overview of Amazon Web Services (AWS) Security Groups and highlights some of the differences between Security Groups and traditional firewalls. The lesson continues by explaining some of the unique features of AWS and the challenges and benefits of being able to apply multiple Security Groups to a single instance.

Learn more about AlgoSec at http://www.algosec.com and read Professor Wool's blog posts at http://blog.algosec.com

AlgoSec Case Study: BM&FBOVESPA (English)

Wed, 01 Apr 2015 03:00:00 GMT

Hear Wellington Vita, Information Security Manager, explain how AlgoSec helps BM&FBOVESPA maintain a secure, compliant trading environment.

Lesson 9: How to Structure Network Objects to Plan for Future Policy Growth

Mon, 08 Dec 2014 02:00:00 GMT

Firewall Management 201: Lesson 9
In this lesson, Professor Wool explains how you can create templates - using network objects - for different types of services and network access which are reused by many different servers in your data center. Using this technique will save you from writing new firewall rules each time you provision or change a server, reduce errors, and allow you to provision and expand your server estate more quickly.

Learn more about AlgoSec at http://www.algosec.com and read Professor Wool's blog posts at http://blog.algosec.com

Lesson 8: NAT Considerations When Managing Your Security Policy

Tue, 11 Nov 2014 02:00:00 GMT

Firewall Management 201: Lesson 8
A business owner makes a simple change request to allow traffic to a new application. You now need to figure out the right firewall rules to change. This should be pretty simple… but what if you’re using NAT (Network Address Translation) in your environment? In this lesson, Professor Wool explains some key principles of NATing and why it’s critical to understand your NAT policy in order to identify the right paths for network traffic, which firewalls rules really need to be modified, and how to write your security policy correctly.

Learn more about AlgoSec at http://www.algosec.com and read Professor Wool's blog posts at http://blog.algosec.com

AlgoSec Overview: Managing Security Policies in Your Data Center

Wed, 29 Oct 2014 02:00:00 GMT

As your data centers and the security infrastructure that protects them continue to grow in size and complexity, so too does your security policy. Yet, manually managing complex security polices across devices and operations teams is no longer viable. It’s costly, risky and inefficient, and prevents you from keeping up with the speed of your business.

What if you could manage your security policies in a way that's simple, automated, and orchestrated? Now you can with AlgoSec. AlgoSec empowers organizations to manage security at the speed of your business. Through its application-centric approach, AlgoSec automates and simplifies security policy management across virtual, cloud and physical environments to accelerate application delivery while ensuring security.

Lesson 1: How to Structure Your Security Policy in a Segmented Network

Wed, 01 Oct 2014 03:00:00 GMT

Network Segmentation: Lesson 1

In this lesson, Professor Wool presents a simple yet highly effective strategy to help you future proof your network segmentation policy against future changes. Using the concept of a diamond, Professor Wool shows how you can define very specific rules at each end point of the diamond and broader policies in the middle. This will significantly reduce the time and effort needed to work on change requests—without compromising on security in any way.

Learn more about AlgoSec at http://www.algosec.com and read Professor Wool's blog posts at http://blog.algosec.com

Segmenting your Network for Security - The Good, the Bad, and the Ugly

Wed, 16 Jul 2014 00:00:00 GMT

Segmenting your network is one of the foundations of a sound security strategy. It limits the movements of an attacker, and therefore limits the overall impact of a security breach.
So why is it that most organizations struggle when it comes to defining, implementing and enforcing effective network segmentation?
In this webcast, AlgoSec and expert penetration tester Mark Wolfgang examine common segmentation mistakes and review best practices for defining and enforcing effective network segmentation.

Lesson 3: Using Object Naming Conventions to Reduce Firewall Management Overhead

Thu, 10 Apr 2014 03:00:00 GMT

Firewall Management 201: Lesson 3
In this lesson, Professor Wool offers some recommendations for simplifying firewall management overhead by defining and enforcing object naming conventions.
Learn more about AlgoSec at http://www.algosec.com and read Professor Wool's blog posts at http://blog.algosec.com

Examining the Need for Application-Centric Security Policy Management

Thu, 13 Mar 2014 02:00:00 GMT

Managing Business Application Connectivity: Lesson 1

In this lesson, Professor Wool examines the challenges of managing data center applications and their connectivity requirements. Professor Wool also offers tips for bridging the gap between application owners and network and security teams - to ensure faster, more secure deployment, maintenance and decommissioning of critical applications.

Learn more about AlgoSec at http://www.algosec.com and read Professor Wool's blog posts at http://blog.algosec.com

Managing the Security Policy in Your Data Center and Network

Thu, 06 Mar 2014 02:00:00 GMT

Overwhelmed with managing the security policy in your data center and network? What if you could...

Easily provision connectivity for your data center applications?
Process firewall changes 4x faster - and get it right every single time?
Discover and eliminate security policy misconfigurations?
Prepare for firewall audits at the click of a button?

Now you can... with AlgoSec

Mitigating Risk in Your Firewall Policy

Fri, 21 Dec 2012 02:00:00 GMT

http://www.algosec.com/ - AlgoSec Firewall Analyzer helps you understand the level of risk in your network security policy, providing complete visibility of your security posture and enabling you to mitigate risk across traditional and next-generation firewalls as well as routers. Firewall Analyzer analyzes your policy against the broadest database, which can also be customized to address your corporate policies, of more than 120 industry best practices, which includes application-based risks.

Lesson 6: Analyzing Routers as Part of Your Security Policy

Tue, 25 Sep 2012 02:00:00 GMT

Firewall Management 201: Lesson 6
In this lesson, Professor Wool examines some of the challenges when it comes to managing routers and access control lists (ACLs) and provides recommendations for including routers as part of your overall security policy with tips on change management, auditing and ACL optimization.

Learn more about AlgoSec at http://www.algosec.com and read Professor Wool's blog posts at http://blog.algosec.com

Lesson 1: Examining the Most Common Firewall Misconfigurations

Mon, 17 Sep 2012 03:00:00 GMT

Firewall Management 201: Lesson 1

In this lesson, Professor Wool discusses his research on different firewall misconfigurations and provides tips for preventing the most common risks.

Learn more about AlgoSec at http://www.algosec.com and read Professor Wool's blog posts at http://blog.algosec.com

New Customer Collection Video

Tue, 07 Aug 2012 03:00:00 GMT

Lesson 2: Automating the Firewall Change Control Process

Thu, 28 Jun 2012 03:00:00 GMT

Firewall Management 201: Lesson 2
In this lesson, Professor Wool examines the challenges of managing firewall change requests and provides tips on how to automate the entire workflow.
Learn more about AlgoSec at http://www.algosec.com and read Professor Wool's blog posts at http://blog.algosec.com

Lesson 2: NGFWs - Whitelisting & Blacklisting Policy Considerations

Wed, 06 Jun 2012 03:00:00 GMT

Next Generation Firewalls: Lesson 2
In this lesson, Professor Wool examines the pros and cons of whitelisting and blacklisting policies and offers some recommendations on policy considerations.

Learn more about AlgoSec at http://www.algosec.com and read Professor Wool's blog posts at http://blog.algosec.com

Lesson 1: Next-Generation Firewalls: Overview of Application and User-Aware...

Mon, 21 May 2012 03:00:00 GMT

Next Generation Firewalls: Lesson 1
In this lesson, Professor Wool examines next-generation firewalls and the granular capabilities they provide for improved control over applications and users.

Learn more about AlgoSec at http://www.algosec.com and read Professor Wool's blog posts at http://blog.algosec.com

Lesson 5: Managing Firewall Policies in a Disappearing Network Perimeter

Mon, 07 May 2012 03:00:00 GMT

Firewall Management 201: Lesson 5
In this lesson, Professor Wool examines how virtualization, outsourcing of data centers, worker mobility and the consumerization of IT have all played a role in dissolving the network perimeter and what you can do to regain control.

Learn more about AlgoSec at http://www.algosec.com and read Professor Wool's blog posts at http://blog.algosec.com

AlgoSec Case Study: T-Mobile

Mon, 07 Mar 2011 02:00:00 GMT

Peter Erceg, Head of IT Security at T-Mobile, talks about how AlgoSec helped T-Mobile optimize their firewall policy, reduce efforts for PCI compliance and automate network security policy changes.