Get Your Global Excellence Awards Entry Kit Now
Join the Cyber Security Worldwide Community on LinkedIn
 Home Executive Briefings Security Predictions Entry Kit Global Excellence Volunteer as Judge Register Awards About
A CSO’s guide to key security risks that impact online business-critical applications

Tufin™ is the leadingprovider of Security Policy Management solutions that enable companies to cost-effectively manage their firewall, switch and router policies, reduce security and business continuity risks, and ensure Continuous Compliance with regulatory standards. The award-winning Tufin Security Suite provides security teams with powerful automation that slashes the time and costs spent managing change and successfully passing audits. Founded in 2005, Tufin serves more than 1,100 customers in industries from telecom and financial services to energy, transportation and pharmaceuticals. Tufin partners with leading vendors including Check Point, Cisco, Juniper Networks, Palo Alto Networks, Fortinet, F5, Blue Coat, McAfee and BMC Software, and is known for technological innovation and dedicated customer service.

Info Security PG: What are the key security risks to online business-critical applications?

Ruvi Kitov: The biggest risk that our customers grapple with is maintaining secure application connectivity. Firewalls are the lynchpin between applications and the network.  Application related firewall policies need to be designed and implemented in a way that does not expose the organization to unnecessary risk or cause application downtime – both of which happen all the time due to inefficient application connectivity management,

Until the launch of our latest product, SecureApp, network security teams had no way to abstract application connectivity related data across multiple firewall rule bases, which was preventing them from being able to effectively architect, troubleshoot, and maintain secure application connectivity.  Now that they can do this in an automated fashion, they not only improve security but increase application uptime and availability, so that ROI on investments in application connectivity management include not just cost savings, but revenue generation stemming from more uptime, better application performance, etc.

Info Security PG: How have firewalls evolved over the years and why are they still critical to enterprise security?

Ruvi Kitov: There are two facets to this:  First, firewall technology has evolved, driven by the need for organizations to have visibility into Internet and web-based application traffic.  Next Generation Firewalls add two new fields to firewall rules – users and applications.  The result is that organizations can leverage firewalls to craft very specific, granular network access polices.

The second facet is that firewalls serve a fundamentally different purpose.  15 years ago, their primary purpose was to protect network perimeters – the premise being that firewalls served as a “moat” around the electronic “castle” that contained all the organization’s electronic assets.  The rise of mobile computing, teleworking, and a host of other trends created a situation where perimeters could no longer be a hardened shield. They needed to be porous in order to let remote workers, business partners and customers access network resources.

Many felt this heralded the death of the firewall, but quite the contrary – firewalls were instead leveraged extensively (and quite strategically within the network) to create “mini perimeters” (network segments or zones) around clusters of network resources.  Firewalls now manage secure access to resources within these zones as well as manage the flow of traffic across them.  This is what set the stage for firewalls playing such a key role in managing application connectivity.

Info Security PG: What are the main trends driving changes in providing security policy management and effectively controlling firewalls? How is Tufin responding to those trends?

Ruvi Kitov: When sweeping shifts happen, it is not always obvious to those impacted the most – they are way too busy doing their jobs.  Not to mention, these shifts unfold incrementally over time. For example, five to ten years ago, firewall and applications teams rarely, if ever interacted – they had no reason to.  But as firewalls became used more regularly for internal network segmenting, their role in managing application connectivity became much more significant, and communication barriers between the two groups became an impediment. One of SecureApp’s fundamental value adds is that it enables firewall teams and applications teams to share information in a much more standardized, effective way. 

To answer your question directly, the abovementioned trends relating to the shifting use and function of firewalls are absolutely what is driving innovation in the Security Policy Management market.  As a result, our job is to make sure that our vision is aligned with the needs of the market, and that we are dedicating development resources to automate the right set of processes far enough in advance so that we stay ahead of the curve.

Company: Tufin Technologies
15 New England Executive Office Park,
Burglington, MA 01803

Founded in: 2005
CEO: Ruvi Kitov
Public or Private: Private
Investors: Independently funded
Products: Tufin has three core products which it sells bundled as the Tufin Security Suite (TSS). TSS consists of SecureTrack, its firewall operations management and auditing product, SecureChange, its security change automation solution, and SecureApp, its game-changing Application Connectivity Management product.

Tufin SecureTrack™ is the industry-leading Security Operations Management solution for network and next generation firewalls as well as network infrastructure including routers, switches, load balancers and web proxies. SecureTrack features powerful tools that eliminate routine, manual tasks while assuring security and business continuity for large and small enterprises. It also enables organizations to comply with regulatory standards and successfully pass security audits. SecureTrack combines triggered compliance alerts with built-in reports such as PCI DSS 2.0 to dramatically reduce audit preparation times.

Tufin SecureChange enables companies to automate security change management and risk analysis for the network. With SecureChange, companies can automate business processes to proactively enforce security policies and support governance initiatives.

Tufin SecureApp™ is a groundbreaking approach to managing network security policies top-down, from the application perspective. With SecureApp, security professionals and application owners can easily define, update, monitor and remove applications - without analyzing long lists of access rules on multiple firewalls and routers.

TSS is essential for organizations that cannot afford to compromise on the security, compliance and efficiency of their network operations. With SecureApp™, SecureTrack™ and SecureChange™, organizations can manage change, prevent risks, and achieve continuous compliance.

Company’s Goals: To continue to lead the market in delivering solutions that enable security administrators to more proactively, strategically, and efficiently manage network security operations