The network fabric of digital enterprises is in a rapid state

of flux thanks to the growing adoption of cloud and edge computing. Research shows that digital enterprises seldom restrict themselves to a single cloud platform as competing cloud vendors offer hyper scalable, secure, and stable hosting environments. Add to this the complexity of migration, from a physical data center to the cloud, which makes securing the infrastructure, data, and applications that much more challenging.

Be it Microsoft Azure, Amazon Web Services (AWS) or Google Cloud Platform (GCP), they all offer a shared responsibility model for securing your cloud assets across the physical, infrastructure, and the data and access layers. While the first two are the responsibility of your cloud provider, the last is most definitely the user’s responsibility.

Public cloud platforms like Microsoft Azure offer enormous scalability to handle an ever-increasing demand on workloads by adding resources manually or in an automated fashion. When workloads expand and change at such speed, so should their security.

Managing Security in the Azure Cloud

―Are Enterprises Ready?

Whether your data and applications are stored on premises, in the data center, or public clouds (or a combination of all three), organizations still need to meet their requirements of security, control, compliance, and governance by themselves. The on-demand nature of public clouds such as Azure naturally means that workloads move and regroup, where maintaining continuous visibility and control over the rapid changes calls for expert intervention.

Whether you have a hybrid or a cloud-first strategy, there are common security challenges:

• Centralize visibility and threat management for your hybrid environment

• Deploy applications and workloads securely

• Manage access and control privileges to cloud and on-premises workloads

• Secure data transfer, data migrations

• Accomplish all of the security deployments at the

pace and scale demanded by cloud architectures

FIREMON TECHNICAL BRIEF

FireMon + Microsoft AzureHyper Scalable Clouds Need Hyper Scalable Security

FireMon understands the native networking components of multiple public cloud accounts, and, more importantly, we can normalize and unify security policies into a single pane of glass – removing your struggles with separate solutions for cloud and data center environments. Customers migrating from on-premises infrastructure to the public cloud can now work with a platform they are already familiar with, which means less training, and minimal change.

FireMon can manage and ensure continuous compliance of native public cloud security policies across accounts, subscriptions, virtual machines, and security groups in Azure

Virtual Network as well as other public clouds, the AWS Virtual Private Cloud, and the GCP Virtual Cloud Platform.

With the FireMon platform, customers have the ability to manage any firewall policy deployed in the cloud. This means integrating firewall policies from vendors like Check Point, Palo Alto Networks, Cisco, Fortinet, and Juniper Networks into Azure, AWS, and Google Cloud environments. Whether the firewall is located in a physical or virtual environment, you can monitor its security policies with as much visibility as with a physical firewall.

FireMon + Micrsoft Azure Delivers:

Rapid rule creation to manage cloud traffic target certain types of traffic, based on the traffic’s protocol, ports, sources, and destinations

Ability to create and modify firewall rules for specific instances in the cloud

Configurable global access control rules to support rapid migration between the data center and the cloud

Agile and context-aware policy creation with adaptive automation helps modify rulesets with the speed and

agility demanded by digital enterprises

Normalize and unify security policies into a single pane of glass across the Azure public cloud, data center, and on premises infrastructure

Features Customer Benefits

Monitoring, alerting, and observability for complex environments across the extended enterprise

Support for Azure Marketplace

Support virtual machine (VM) objects in policy, including the ability to view instance names instead of interfaces. Associate cloud-native objects andpolicy with instances

Support for Azure application security groups

Flexible automation capabilities tailored to specific needs

Implement global, uniform security policy across the environment to achieve a strong security posture

100% visibility of the network results in comprehensive control and governance

Fast, on-demand deployment of the FireMon OS in the cloud

Secure migrations from on-premises to publiccloud infrastructures

Manage security rules within security groups to control inbound/outbound traffic

Automate policy changes in the cloud, reducemisconfiguration errors

Differentiate between inbound and outbound rules Deploy granular, instance-level security

Device pack support Easy and quick deployment

To learn more about FireMon’s integration with Microsoft Azure, please visit www.firemon.com