5 Critical Mistakes to Avoid: Choosing an NGFW in a Silo

Share and earn Cybytes
Facebook Twitter LinkedIn Email

This post is part of a blog series where we dive into the five critical mistakes to avoid when evaluating a next-generation firewall. Avoid these, and you’ll be well on your way to picking the right next-generation firewall.

How will you know if the NGFW you’re considering is the right one for your organization? The safest bet is to test it. But when evaluating and selecting a new NGFW, there are some common mistakes security professionals often make. One of these critical mistakes is highlighted in detail below, along with insight and recommendations to help you avoid the blunder.

Mistake #2: Choosing an NGFW in a Silo

Several teams within IT count on the firewall to effectively and efficiently perform their job functions, all of which have very different needs and priorities:

  • Networking team: hassle-free integration with current architecture, ease-of-use/deployment, network uptime.
  • Security team: seamless integration with existing security controls, better overall security, threat prevention versus detect-and-respond tactics.
  • Security operations team: single-pane management, automated features and capabilities.
  • Data center team: automated features and capabilities, scalability to meet evolving needs, single-pane management.
  • Application team: simple, fast and secure application deployment.

In a typical evaluation scenario, the firewall vendor works directly with the networking team to evaluate and implement a firewall. Accounting only for the needs of the networking team is a critical mistake with potentially dire results for other teams that rely on the firewall. For example, the networking team usually isn’t concerned with security and may prefer an option that doesn’t account for the scope of security your business demands. The security and security operations teams should be engaged early to provide input into the level of threat prevention and other security capabilities required. For the sake of overall business efficiency and success, organizations must account for the varying needs of all key stakeholders when choosing a new firewall.

To avoid choosing an NGFW in a silo, while also ensuring maximum performance, security and ROI, run a proof of concept in your organization. A POC allows you to accurately test next-generation firewalls, their affiliated services and subscriptions – either on their own or against one another – in your actual, operational IT environment, whether it is physical, virtual or a hybrid.

For more critical mistakes to avoid when evaluating a next-generation firewall, download the white paper: 5 Critical Mistakes When Evaluating a Next-Generation Firewall.

The post 5 Critical Mistakes to Avoid: Choosing an NGFW in a Silo appeared first on Palo Alto Networks Blog.

Share this post and earn Cybytes
Facebook Twitter LinkedIn Email
About Palo Alto Networks
Palo Alto Networks is the next-generation security company maintaining trust in the digital age by helping tens of thousands of organizations worldwide prevent cyber breaches. With our deep cybersecurity expertise, commitment to innovation, and game-changing Next-Generation Security Platform, customers can confidently pursue a digital-first strategy and embark on new technology initiatives, such as cloud and mobility. This kind of thinking and know-how helps customer organizations grow their business and empower employees all while maintaining complete visibility and the control needed to protect their critical control systems and most valued data assets. Our platform was built from the ground up for breach prevention, with threat information shared across security functions system-wide, and designed to operate in increasingly mobile, modern networks. By combining network, cloud and endpoint security with advanced threat intelligence in a natively integrated security platform, we safely enable all applications and deliver highly automated, preventive protection against cyberthreats at all stages in the attack lifecycle without compromising performance. Customers benefit from superior security to what legacy or point products provide and realize a better total cost of ownership.
Promoted Content
Unit 42 Report - Ransomware: Unlocking the Lucrative Criminal Business Model
Ransomware, specifically cryptographic ransomware, has quickly become one of the greatest cyber threats facing organizations around the world. This criminal business model has proven to be highly effective in generating revenue for cyber criminals in addition to causing significant operational impact to affected organizations. It is largely victim agnostic, spanning across the globe and affecting all major industry verticals. Small organizations, large enterprises, individual home users – everyone is a potential target. Ransomware has existed in various forms for decades, but in the last several years criminals have perfected the key components of these attacks. This has led to an explosion of new malware families and has drawn new actors into participating in these lucrative schemes.

Our Revolution

We believe Cyber Security training should be free, for everyone, FOREVER. Everyone, everywhere, deserves the OPPORTUNITY to learn, begin and grow a career in this fascinating field. Therefore, Cybrary is a free community where people, companies and training come together to give everyone the ability to collaborate in an open source way that is revolutionizing the cyber security educational experience.

Support Cybrary

Donate Here to Get This Month's Donor Badge


We recommend always using caution when following any link

Are you sure you want to continue?