Tufin R25-2 Boosts Network & Cloud Security Automation
▼ Summary
– Tufin released Tufin Orchestration Suite R25-2 to enhance visibility, automation, and security controls across hybrid environments.
– The update addresses fragmented network management by providing a unified control plane that centralizes visibility and automates policy orchestration.
– R25-2 improves topology accuracy with expanded support for Palo Alto Networks and Cisco, helping resolve connectivity issues and reduce misconfigurations.
– It strengthens cloud compliance and automation for AWS, Azure, and GCP through proactive risk detection and end-to-end automation features.
– The release introduces streamlined SASE policy control for Zscaler and enhances AI-driven insights with TufinAI for natural language search and faster decision-making.
Businesses navigating today’s complex digital infrastructure face significant challenges in maintaining robust security across hybrid networks. Tufin Orchestration Suite (TufinOS) R25-2 directly confronts these issues by delivering a powerful update focused on expanded visibility, comprehensive automation, and stronger security controls. This release equips organizations to simplify operations and significantly strengthen their security posture across on-premises, cloud, and edge environments from a single, unified platform.
The modern security landscape often forces teams to juggle multiple vendor consoles, an inefficient and unsustainable practice. This fragmented approach creates siloed visibility and necessitates the management of separate tools and security policies, which frequently leads to unintentional security policy drift. The consequences are clear: application deployments slow down, security gaps widen, and compliance challenges multiply. Tufin’s solution is a unified control plane that centralizes visibility, automates policy orchestration, and ensures continuous compliance throughout hybrid networks.
The R25-2 release builds upon this foundation with four major advancements that fortify the unified control plane. These include improved topology accuracy, enhanced cloud compliance and automation, streamlined SASE policy control, and refined AI-driven insights via TufinAI. Collectively, these innovations provide customers with end-to-end visibility and automation capabilities.
Jeffrey Spear, Tufin CISO, commented on the industry’s needs, stating, “Enterprise networks are more fragmented than ever. Organizations require a modern security platform built to handle this reality. With these updates to our unified control plane, Tufin empowers teams to see more, automate more, and reduce risk across their entire environment, whatever its composition.”
A key focus of this release is improved topology accuracy. Enhanced multi-vendor visibility and troubleshooting now feature expanded support for Palo Alto Networks and Cisco rule sets and traffic paths. New capabilities grant visibility into Palo Alto EDLs, Cisco FMC AppID and URL categories, Cisco ACI Endpoint Security Groups (ESGs), and Policy-Based Routing (PBR). These improvements help organizations swiftly resolve connectivity issues and correct misconfigurations. By providing a clearer view of how policies are applied, Tufin enables security and network teams to reduce blind spots, prevent configuration errors, and accelerate troubleshooting. Teams can now understand policy interactions across various vendors, leading to faster and safer decision-making.
For organizations expanding their cloud footprint across AWS, Microsoft Azure, and Google Cloud Platform, stronger cloud compliance and automation is critical. R25-2 introduces substantial improvements in cloud automation and risk detection to streamline operations and bolster Zero Trust initiatives. Highlights include end-to-end automation for Microsoft Azure Network Security Groups (NSGs) and Open Policy Model devices, which simplifies provisioning and cuts down on manual tasks. The update also brings proactive violation detection for AWS and GCP environments, ensuring continuous compliance with automated risk alerts. Organization-level cloud management automatically onboards AWS and Microsoft Azure accounts, guaranteeing complete multi-cloud visibility and control. Furthermore, it optimizes overly permissive rules at scale for AWS Security Groups and Azure NSGs, effectively reducing the attack surface and improving the overall compliance posture.
As SASE architectures become central to enterprise connectivity, managing security policies across distributed environments grows more complex. R25-2 addresses this with streamlined SASE policy control, introducing automated change design and proactive risk analysis for Zscaler Internet Access (ZIA) environments. This provides teams with faster, more consistent workflows for SASE policy management. Tufin’s Rule Optimizer now extends to Zscaler ZIA, allowing customers to automatically identify and fix overly permissive rules. This tightens access control without disrupting application continuity. These enhancements let organizations unify security policy management across traditional firewalls, cloud infrastructure, and SASE deployments.
The power of AI-driven insights with TufinAI receives a significant boost in R25-2. Enhancements to the TufinAI Assistant, an AI-powered natural language search tool, remove technical barriers, speed up access to policy insights, and improve cross-team collaboration. Its simplified, natural-language search helps users instantly locate the correct rules based on specific criteria. The AI-driven search delivers high-quality, relevant results in seconds, saving valuable time and minimizing errors. Crucially, anyone on the team, regardless of their technical expertise, can run searches, analyze policies, and make well-informed decisions independently. TufinAI helps teams unlock the full potential of Tufin’s unified control plane, enabling faster time-to-value and more confident decision-making across all security and network operations.
(Source: HelpNet Security)
