HIPAA News

AlgoSec Unveils Automated ISO 27001 Firewall Compliance Solution

(May 22, 2008)-- AlgoSec, provider of Firewall Operations and Security Risk Management solutions announced its automatically completed ISO 27001 report, eliminating labor and time intensive enterprise firewall compliance requirements. The audit-ready ISO 27001 report rounds out AlgoSec's compliance offering, which also includes automatically completed PCI DSS and SOX out-of-the-box compliance reports.

The latest turnkey offering enhances the AlgoSec Firewall Analyzer (AFA) Product Suite, which helps users automate complex and time-consuming aspects of firewall, router and VPN administration. AlgoSec's firewall and VPN analysis software solutions work across all available platforms from the leading three enterprise firewall vendors: Cisco, Check Point and Juniper/NetScreen.

The AlgoSec ISO/IEC 27001 compliance report precisely follows the reporting requirements of the ISO/IEC 27001:2005 International Standard "Information technology -- Security techniques -- Information security management systems -- Requirements," and on the companion ISO/IEC 27002:2005 "Code of practice for information security management" International Standard. The compliance report answers the requirements that apply to an organization's firewalls -- which are a central part of any organization's Information Security Management System (ISMS).

With the automatically completed ISO/IEC 27001, PCI DSS and SOX reports enterprises now can:

-- View firewall and VPN compliance requirements relative to the standard that is relevant to their industry
-- Easily identify how to remediate when in contravention to a line item in the requirement
-- Receive real-time reports reflecting any changes made in the firewall and VPN configuration
-- View risky firewall and VPN rules relative to the standards -- Provide auditors with a pre-populated compliance report

For more information on ISO, PCI DSS and SOX compliance and to view screenshots and sample reports please visit: http://www.algosec.com/en/solutions/security_compliance.php

"Government- and industry-mandated compliance requirements are increasing and organizations are investing more time and energy trying to adhere to the various standards. At AlgoSec we strive to automate those difficult, complex and time-consuming issues surrounding firewall compliance and administration. Our latest out-of-the box ISO compliance report does just that -- automatically analyzes the firewall configuration relative to government-mandated standard, a required but until now difficult task," said Dr. Avishai Wool, AlgoSec co-founder and CTO.

Some key technical features of the AlgoSec Firewall Analyzer solutions include:

-- Market-leading analytics engine founded on best practice policies on NIST, NSA, PCI DSS, ISO, FISMA, HIPAA, Basel II and more
-- Side-by-side group comparisons of firewall policies and risks across firewall vendors: Check Point, Cisco and Juniper
-- Querying capability across multiple firewall platforms to ensure business continuity and enable easy troubleshooting
-- "What if" analyses across multiple firewall platforms before implementing changes to ensure expected and desired outcomes
-- Automatically generated graphical firewall network diagram -- Rule usage analysis, including identifying duplicated, disabled,
expired and unused rules and objects and provides guidance for rule reordering to optimize performance
-- Continuous security audit provides complete audit trail and replaces error prone manual task to ensure configuration matches policy

Through its off-line setup, AlgoSec's application is easy to deploy and use even in the most complex firewall and VPN environments. Its detailed policy analysis features, combined with an easy to navigate web GUI provides users with instant visibility into hidden risks in the firewall and VPN policy, while offering administrators a rich set of capabilities to help them reduce the large amount of time spent managing these devices.

Share or bookmarklet this web page at: