Virtualization Technology News and Information
RSA Conference 2024 Q&A: FireMon Will Showcase Firewall Behavior Testing, Workflow Integration, Traffic Flow Analysis, and Rule Recertification

VMblog RSA 2024 

Are you getting ready for the upcoming RSA Conference, the world's leading information security conference and exposition?  The event is quickly approaching, taking place May 6 - 9, 2024 at the Moscone Center in San Francisco.  This year's theme: The Art of Possible - as we collectively create works that will change our perspective on what we can accomplish. Let's celebrate limitless opportunities, challenge the status quo, and explore new horizons together.

Ahead of the show, VMblog received an exclusive interview with Jody Brazil, CEO and Cofounder of FireMon, a leading network security policy management company that brings visibility, control, agility, and automation to enterprise cloud and hybrid network infrastructure.



VMblog:  Please provide a brief overview of your organization.

Jody Brazil:  FireMon has been at the forefront of the security management industry, delivering first-ever functionality such as firewall behavior testing, workflow integration, traffic flow analysis, and rule recertification. Our solutions have helped more than 1,700 organizations gain visibility into and control their complex network security infrastructures worldwide.

VMblog:  What's your involvement at RSA 2024?

Brazil:  FireMon will be at Booth 6371 in the North Exhibit Hall. Two senior leaders will also speak at the RSA Conference.

We begin with a session by our Senior VP of Cloud Security, Rich Mogul, on Tuesday, May 7 (08:30 PT). His discussion is entitled ‘CloudSec Hero to Zero: Self-Obsolescing Through Prolific Efficiency.' During this informative session, he will highlight proven triage and remediation techniques and explain how to build an efficient and sustainable CloudSec program. This discussion is the perfect session for those who've been dropped into the deep end of cloud security.

On Wednesday, May 8 (14:00 PT), Tim Woods, our VP of Technology Alliances, will present ‘A CISO's Guide to Confronting Today's Network Complexity.'

He will chart a course through the escalating challenge of network complexity in today's hybrid enterprise environments. The discussion will provide strategic insights, practical tools, and future-focused perspectives to help security leaders lead their organizations confidently into a secure digital future.

VMblog:  How do companies deal with evolving compliance requirements, especially as it relates to their network infrastructure today?

Brazil:  Regulatory compliance requirements are always being updated and are often difficult to interpret. At FireMon, our team of experts identifies essential network security controls and how they map to regulation requirements such as those in the recently-released PCI DSS 4.0, helping enable IT and Security teams to ensure their network policy meets compliance standards.

For example, these essential network security controls in PCI DSS 4.0 include taking inventory of authorized and unauthorized devices, continuous vulnerability assessment and remediation, and maintaining, monitoring, and analyzing audit logs while securing the configurations for network devices.

VMblog:  Is PCI DSS 4.0 compliance that much more challenging to adhere to?

Brazil:  The new PCI DSS 4.0 regulations took effect on March 31 this year. Potential fines for non-compliance range from $5,000 to $100,000 per month. This means no enterprise can afford not to implement the resources essential to satisfy the new regulations as soon as possible.

Fortunately, FireMon is purpose-built to alleviate these concerns as it has the out-of-the-box and custom reporting capabilities essential for PCI DSS 4.0 compliance. Ensuring compliance with these new standards is a critical step in safeguarding digital assets and maintaining customer trust.

We pride ourselves on leading the industry in consolidated compliance reporting, featuring support for custom assessments using internal business policies or external frameworks and providing comprehensive visibility across all platform elements.

Real-time violation detection and rule lifecycle management are cornerstones of FireMon's offerings, ensuring businesses are prepared for PCI DSS 4.0 and positioned for ongoing success in the rapidly evolving cybersecurity landscape.

VMblog:  How important is the network security policy management market today, given how systems are more integrated than ever?

Brazil:  The increasing complexity of networks, driven by the constant influx of cloud services, new devices, and applications, presents a significant challenge for managing firewall policies and rules. A typical enterprise environment has millions of rules, and one misconfiguration can lead to devastating consequences like compliance violations, outages, and data breaches.

For example, FireMon Policy Manager is a purpose-built network security policy management (NSPM) platform that automates the management of firewall and cloud security policies to eliminate policy-related risk, accurately and quickly change rules, and meet internal and external compliance requirements. This helps customers reduce risk by giving them real-time visibility and control over their policy environment. They can manage change to avoid policy misconfigurations and rapidly accelerate business growth by improving their security stance.

VMblog:  At a time when the focus is on CloudSec and network infrastructure optimization, have privacy requirements become more important?

Brazil:  Absolutely, the need for robust privacy measures is vitally important. Building a privacy-centric organization requires integrating privacy into the very foundation of a business even before the other puzzle pieces can come together.

Data breaches, cyber threats, and regulatory requirements have heightened the awareness of privacy concerns. Businesses have become more discerning about the protection of their personal information, and regulators are tightening the screws on organizations that fail to meet privacy standards. You simply can't have strong CloudSec and network infrastructure without good privacy protocols.

Of course, building a privacy-centric organization is not a one-time activity. Instead, it's an ongoing commitment to safeguarding sensitive information. We believe FireMon is a key ally in this regard by providing the tools and capabilities needed to integrate privacy seamlessly into any organization's foundation.

VMblog:  Will you be involved with the exclusive Press Club Wine Bar?

Brazil:  We're excited to announce that we'll be working closely with Fortinet to host this invite-only event featuring the perfect pairing of two industry pioneers.

We will highlight how FireMon and Fortinet can jointly enhance an organization's cybersecurity strategy. Guests will see first-hand how the combined forces of FireMon and Fortinet enhance intelligence, visibility, and management capabilities across hybrid infrastructures.


Published Monday, April 29, 2024 6:29 AM by David Marshall
There are no comments for this post.
To post a comment, you must be a registered user. Registration is free and easy! Sign up now!
<April 2024>