Sysnet’s firewall review service is part of a suite of infrastructure audit and review services that can assist an organisation with understanding the state of their network infrastructure and security posture. The service is delivered by Sysnet consultants in consultation with a customers’ firewall and security teams.
The firewall review service consists of two complementary components: the firewall architectural review and the firewall policy review. Each of the reviews can encompass technology from most of the leading firewall vendors. The services are offered as either independent, discrete work packages or as a combined detailed review.
The complete firewall review service offers an organisation a detailed and documented review of their firewall architecture and policy, focusing on both operational and tactical issues. The consultant involved will use both their experience of firewall deployments and industry best practice to highlight the strengths and weaknesses of an organisations current firewall deployment and where appropriate recommendations will be made.
For maximum benefit to be gained from the review it is essential that the company make available access to the appropriate personnel, to provide an accurate understanding of the current firewall architecture and company security policies.
After the completion of the each review a Sysnet consultant will produce a report based on their findings, identifying any risks, gaps between company policy and deployment and suggestions for remedial action or recommendations as to how the current deployment may be enhanced.
After a report has been submitted that covers the subject matter of the review, a Sysnet consultant will attend a meeting to discuss the reports recommendations if appropriate.
Firewall Architecture Review
The firewall architecture review offers an organisation the opportunity to compare the architecture and operational deployment of their firewall infrastructure to industry best practice and de facto standards. Each review encompasses a single firewall management station and the enforcement gateways that it controls; this typically requires two days of a consultant’s time to be spent at the customer’s premises and another two days to produce a report of the findings.
The firewall architecture review will encompass areas such as:
· Validation of firewall policy compared to published company security policies.
·Assessment of the firewall configuration against “best practice” and regulated compliance requirement like PCI DSS
·Physical architecture, including resilience
·Network topology, with regard to the deployment of other key servers
·Operating system versions and patch versions
·Physical device review
· Logging and reporting
· Device backup and recovery
· A review of any VPN settings
· A review of UTM components, if appropriate
A single architectural review will cover a maximum of two management stations, managing a total of five unique enforcement gateways or four HA enforcement gateways. There is the option to extend this to greater numbers of firewalls by the purchase of additional consultancy. Reviews of large firewall estates can be undertaken by arrangement.
The review specifically excludes a detailed review of the policy configured on the firewall devices. The firewall policy review detailed below, can assist a company with this level of detailed policy analysis.
Firewall Policy Review
The firewall policy review offers an organisation the opportunity to compare their firewall policy to corporate policy, industry best practice and de facto standards. Each review encompasses up to ten firewalls and would require two days of a consultant’s time to be spent at the customer’s premises and another two days to produce a report of the findings.
The firewall policy review service will encompass:
· Rule usage analysis and rule optimisation
· Access policy violation management
· Access policy compliance and access path analysis
· Compliance metrics and audit reports
· Remediation alternatives
The review may be carried out as a one off service to baseline firewall policy or as a periodic service to ensure that firewall policy is aligned to business and/or regulatory requirements.
A single policy review will cover a total of ten firewalls, with the option to extend this to greater numbers of firewall by the purchase of additional consultancy. Reviews of large firewall estates can be undertaken by arrangement.
This service offers an organisation a snapshot of the status of their currently deployed firewall policies enabling them to minimise their risk and exposure, aiding compliance and providing a holistic view of the access and control of perimeter boundaries.
For further information on our Firewall Review service, please contact one of our Sales representatives by calling +27 46 622 6123 or by completing our Online Enquiry Form or Request a Call Back Form on our website.
Also, please feel free to visit our resource centre for helpful articles, latest news, videos, wikis and useful links related to industry topics and terminology.