It’s kind of a paradox that as an organization’s network grows, they have to add more and more security appliances and programs to keep it safe, yet with increased complexity comes diminishing returns on those investments. What happens is that new security platforms implement new rules, which often conflict with or duplicate existing protections. And don’t forget that the network itself is constantly changing, especially these days with cloud deployments, which further muddies the waters. At some point, it becomes almost impossible to manage everything, fix vulnerabilities and maintain good security without a lot of help.
For the past 15 years, FireMon has been pioneering the field of network security policy management, providing a dedicated way for organizations to get full visibility into their networks and devices, and overlaying that knowledge with the rules, platforms, hardware and programs designed to protect it. Of course this unified look at network protection configuration settings has changed over the years, especially recently as hybrid infrastructures have become increasingly popular, but the core FireMon platform is still the same, just expanded to meet every new network advancement. More so than any other platform we have recently reviewed, it’s clear that FireMon has a mature offering and any of the early bugs or quirks have long since been worked out.
Because FireMon brings together all the complicated and sometimes conflicting policies from other security platforms, it works with almost any existing cybersecurity product. That includes everything from firewalls to vulnerability scanners, and everything in between. It also works within hybrid infrastructures, including all cloud deployments or networks that have embraced micro-segmentation.
To collect all of the information that it needs, the FireMon platform is installed in three parts. The heart of the system is the application server, which provides the …