Tufin’s R23-1 Enables Enterprises to Unify Network Visibility, Control Across On-Premises and Cloud Environments
Latest release prevents security blind spots with improved network access automation, enhanced policy management, and new network topology capabilities.
Note: TDWI’s editors carefully choose vendor-issued press releases about new or upgraded products and services. We have edited and/or condensed this release to highlight key features but make no claims as to the accuracy of the vendor's statements.
Tufin, a leader in network and cloud security policy automation, has released version R23-1 of its Tufin orchestration platform, which extends a security team’s visibility and control into the cloud so enterprises can better bridge the gaps between network and cloud security. With R23-1, Tufin customers can confidently accelerate application delivery and rapidly respond to network access requests, all while optimizing security. Tufin R23-1 automates security policy changes and provides real-time visibility into the impact of those changes, from on-premises to the cloud. This helps organizations accelerate application delivery while reducing the risk of misconfiguration errors, helping to maintain security and compliance.
“Many large enterprises face a disconnect between network security and cloud operations teams, causing a bottleneck in deploying applications to production safely. By providing unified visibility and processes across on-premises and cloud networks, Tufin empowers network security teams to operate at cloud-equivalent speeds,” said Ruth Gomel Kafri, VP of products at Tufin. “Tufin R23-1 gives teams the ability to automate changes, establish guardrails, and reduce the overall attack surface, while maintaining the flexibility and agility that developers need to be successful.”
Enhanced Support for AWS Gateway Load Balancers
Tufin now supports interactive network topology modeling for AWS Gateway Load Balancers. This enables advanced path analysis, network connectivity troubleshooting, and change automation for firewalls running on AWS, resulting in better network visibility across hybrid networks and faster deployment of cloud changes.
Viewing and Managing Cisco Meraki Firewall Policies
Tufin customers now have a faster and easier way to view, search, and optimize Cisco Meraki firewall device rules. Security teams can now visualize and manage all Cisco Meraki firewall policies from a central console. This accelerates connectivity troubleshooting and compliance monitoring by providing holistic, cross-platform management.
Topology Support for Azure Virtual WAN and Azure Shared Express Routes
Tufin’s releases enables users to import Azure Virtual Hubs from Azure subscriptions and view these and Azure Express Routes in Tufin’s interactive topology map. This provides full topology modeling of the Azure environment, which gives better network visibility and change automation for firewalls running on and connecting to Azure (shared across multiple Azure subscriptions).
Viewing and Managing Azure ASGs
Tufin delivers a faster and easier way to view, search, and optimize Azure Application Security Groups (ASGs) that are part of Network Security Group (NSG) rules. Security teams can now troubleshoot ASG application connectivity and gain broader visibility and control across hybrid environments.
Incorporate Azure Firewalls into Change Automation
The new release supports Azure firewalls as part of the change automation process. Tufin will verify whether access exists already when a change is requested, saving significant time and avoiding lengthy rework. Once a change request is moved forward, Tufin’s automatic target selection mechanism eliminates the need to manually search for relevant firewalls to implement the request. Proactive risk assessment ensures that compliance regulations and internal security procedures are enforced. Once the change has been performed (outside of Tufin), it can be verified to ensure the request is implemented, helping to achieve better change SLAs.
Interactive Topology Map Device Grouping
Tufin offers users the flexibility to either group the topology by customer-defined domains or as freeform, customized groups (devices) such as different data centers, or public or private clouds. This provides better network visualization and allows Tufin users to easily identify network segments and the connections between them. Network administrators and security teams gain structured visibility into their network infrastructure to identify potential misconfigurations or vulnerabilities -- and troubleshoot network connectivity issues.
For more information about Tufin R23-1, please visit: https://forum.tufin.com/support/kc/R23-1/Content/Suite/WhatsNew/WN_Intro.htm