SecurView’s Palo Alto Services

Security Framework

Advisory Services

SOC Services

Integration Services

Onsite SME

Managed Services

Security Framework

Advisory Services

SOC Services

Integration Services

Onsite SME

Managed Services

Palo Alto’s Security Framework has three major features:

dia-5

Next-Generation Firewall

  • App ID (High Risk Apps, SAAS Apps, App Vulnerability)
  • User ID (Server Users, DB Login Failed)
  • Content ID (High Risk URL, Common URL)
  • IPS, and URL Filtering

Threat Intelligence Cloud

  • Database of Known Malware
  • Detects and creates prevention

Advanced Endpoint Protection

  • Policy-based Restriction
  • Malware Protection

You can obtain rich security data from Palo Alto’s Security Framework:

Security Lifecycle Report

Policy Enforcement

Standardized Prevention

APIs for Threat Data

Security Lifecycle Report

Policy Enforcement

Standardized Prevention

APIs for Threat Data

How does SecurView add value to this Security Framework?

SecurView adds value to Palo Alto’s Security Framework by offering: Advisory Services which help improves security posture and compliance,  SOC services that offer real-time threat protection, and Integration Services for Firewall deployments.

Advisory Services

  • App Usage Review
  • Discovered Apps Analysis
  • Un-identified Apps
  • High Risk Apps
  • File Transfer Analysis
  • Threat Analysis
  • Review of Security Posture
  • Recommendations

SOC Services

  • Event Monitoring of NGFW
  • Tuning of NGFW Policies
  • Alert on new threats
  • Monitor End Point Threat Posture
  • Global Threat Data
  • Weekly/Monthly SLR/Malware report
  • Command and Control Analysis
  • Vulnerability detection/protection

Advisory Services

  • App Usage Review
  • Discovered Apps Analysis
  • Un-identified Apps
  • High Risk Apps
  • File Transfer Analysis
  • Threat Analysis
  • Review of Security Posture
  • Recommendations

SOC Services

  • Event Monitoring of NGFW
  • Tuning of NGFW Policies
  • Alert on new threats
  • Monitor End Point Threat Posture
  • Global Threat Data
  • Weekly/Monthly SLR/Malware report
  • Command and Control Analysis
  • Vulnerability detection/protection

Integration Services

The deployment services for Palo Alto contain solution design, implementation planning, initial configuration, and knowledge transfer.

043-firewall

Firewall: New Installation

  • Device registration process
  • Activation Licenses and Subscriptions
  • Basic configuration
  • Simple Security policies
  • High Availability configuration
  • NAT Rule configuration

Firewall: Advanced Installation

  • PAN-OS upgrade & install software update
  • Create the Security Perimeter
  • Palo Alto Panorama deployment (management console)
  • Firewall virtualization
  • Firewall traffic shaping and quality of service (QoS)
  • VPN configuration
  • Application filtering
  • IDS & IPS configuration
  • PAN WildFire deployment (private cloud mode)
  • Deploy Best practices

Firewall: Optimization

  • Seamless deployment from Layer 4 to Layer 7 policies
  • Compare the configuration with current best practices
  • Validate the configuration of the next-generation firewall feature sets and suggest ways to make the best use of various features such as: App-ID, User-ID, Content-ID, and Global Protect
  • Additional review of traffic, threats and system logs to identify recommended changes where optimization applicable
  • Review the architecture and topological design of your next-generation firewalls
  • Review firewall security policy and remove duplicate and unused policy rule

Firewall: Migration

  • Firewall Migration from the Third party to PANW including
    • Cisco
    • Juniper (SRX & ScreenOS)
    • Check Point
    • Sidewinder
  • Identify business security & operational requirements
  • Create a detailed network Diagram
  • The object, object group, ACL, NAT rules migration
  • Interface & Zone mapping
  • Virtual firewall
  • IPsec, remote access, Web VPN migration
  • Layer 4 to Layer 7 rule conversion
  • Enable Advance feature migration like Threat prevention, URL filtering

Onsite SME

As a business owner you may or may not know the scope or depth of your needs for security services. To make things easier, SecurView’s offers Onsite SME for Palo Alto services to help customers optimize security policies and understand their security requirements.

  • On site support
  • Provide day to day support to NGFW implementation
  • Create configuration template for post installation review
  • Prepare Policy Updates for Pending App-IDs
  • Time-Based Log review and Report Deletion
  • Review SLR reports and firewall policies and make recommendation
  • Help customer to optimize security policies
  • Participate in review meetings with senior staff as required
  • Liaison with Palo Alto Network
  • Any special tasks as requested by the customer

Managed Services

  • Troubleshoot operational issue & vendor coordination.
  • Update rule as acquired
  • Daily / weekly/month checklist.
  • Firewall health check. (CPU, Memory, TCP/UDP session)
  • Monitor Firewall Logs