Tufin®, the market-leading provider of Network Security Policy Orchestration solutions, today announced the latest release of its award-winning Tufin Orchestration Suite™, R16-1, which unifies security policy management across Amazon Web Services (AWS) and on-premises platforms. Tufin Orchestration Suite R16-1 features an innovative approach enabling network security managers to get a bird’s-eye view of their heterogeneous networks, application connectivity and network security policies across cloud platforms and physical devices from a single console. This grants network and security teams much-needed visibility and addresses several key challenges for the cloud and enterprise security. As enterprises adopt private, public or hybrid cloud-based architectures and more applications are deployed across the heterogeneous corporate network, security and network teams are being challenged to ensure uncompromised network security policies with maximum business agility.
“Network and security teams lack visibility into public and private cloud infrastructure,” said Ofer Or, VP Products, Tufin. “Our customers now have a central console to ensure connectivity and security policy for mission-critical applications spanning hybrid cloud and physical networks. Tufin Orchestration Suite R16-1 is the only solution that provides automatic discovery and visualization of AWS application connectivity across heterogeneous environments.”
Tufin Orchestration Suite R16-1 introduces automatic and agentless discovery of AWS applications. This approach, based on Virtual Private Cloud (VPC) Flow Logs and VM tags, enables enterprises to regain control over their cloud platforms while enabling full agility to DevOps teams. The new Application Connectivity Map automatically visualizes AWS application connectivity that spans across cloud platforms and on-premises infrastructure.
Tufin Orchestration Suite R16-1 also extends full orchestration capabilities to AWS applications enabling application migration, rogue application discovery, real-time security and compliance checks at the application level, and an accurate audit trail for applications that span AWS and on-premises infrastructure.
In R16-1, Tufin monitors and proactively ensures the level of rule permissiveness in network security policies across vendors and platforms. Enterprises can configure a central baseline for security rule permissiveness and rely on Tufin to enforce it via the Unified Security Policy™. In this way, enterprises can reduce the attack surface and ensure that future changes do not compromise their security posture with overly permissive network access. These permissiveness limitations can also be leveraged to enforce continuous compliance with industry regulations like PCI DSS, NERC CIP V5 and HIPAA.
Tufin Orchestration Suite R16-1 continues to lead the market with accurate topology simulation and path analysis, adding support for Fortinet NAT to enable trusted network security policy change automation and orchestration. Another enhancement in R16-1 is the ability to track and monitor changes to Palo Alto Networks rule tags, security profiles and log profiles for simplified audit preparation and deeper visibility and control over policy changes.
Tufin will be demonstrating Tufin Orchestration Suite R16-1 in South Expo booth #S1821 at RSA, February 29-March 3 at the Moscone Center in San Francisco. The new release will be generally available in April 2016.