skybox notes

From thelinuxwiki

Revision as of 18:25, 17 February 2016 by Nighthawk (Talk | contribs)

(diff) ← Older revision | Latest revision (diff) | Newer revision → (diff)

Jump to: navigation, search

skyboxsecurity

Firewall Optimization and Cleanup

shadowed rules
redundant rules
rule usage, unused identified

Firewall Policy Compliance

out of the box cis benchmarks
examples: snmp community string violations
access (rule) policy violations
example: login services to dmz

Network Visibility and Intelligence

firewall map
zones
validation
missing hops
export as image or visio
access analyzer!! will show which firewalls allow and which deny, identify which devices need rules

Vulnerability Control - Actionable Remediation

risk = impact x likelyhood
remediation tickets and tracking

Vulnerability Control -Context-Aware Prioritization

GUI Analytics Center
hotspots mapped to business units, geography, vendor platforms and/or security bulletins
threat origins defined

 example: inside or outside

Retrieved from "http://www.thelinuxwiki.com/index.php?title=skybox_notes&oldid=960"