Security Manager helps organizations with large networks better manage their network security. The goal of network security management is to answer the question, "Is my network providing the security and reducing risk the way we intended it to"? It's a difficult question to answer in large, complex network environments
Security Manager addresses the security management challenge in three ways:
Device Management: Network security devices are constantly changing to meet the needs of the businesses they protect. Managing change can be a difficult challenge, but with Security Manager getting the right configuration in place and removing unnecessary configuration items becomes manageable. Security Manager will plan and report on any changes to the firewall policy, increasing visibility and reducing the cost of making changes. It will show you which of your rules are unused and how traffic flows through each rule, letting you clean up unnecessary access and tighten down existing rules.
Risk: Measuring whether a network security infrastructure is configured appropriately is difficult. With Security Manager, you can use risk as a key metric to answering that question. Security Manager will hunt out the paths through the network that lead to vulnerable systems where the potential for data compromise exists. Once the risk is measured and assessed, it will recommend network and host level controls for reducing that risk.
Compliance: Compliance with industry and government regulations is another way many of us determine if our network security is correct. With continued, automated analysis of things like PCI and NSA guidelines, Security Manager will greatly improve your compliance posture. Additionally, Security Manager's integration into daily operation tasks allows for quick and easy implementation of best practice procedures (like continuous monitoring and access justification) that go along way towards satisfying many cornerstone compliance