Visibility

APIC

Compliance

Provisioning

Software De�nedNetworking

Security PolicyOrchestration

3

1

2

App

Agility is the single most-critical competitive advantage in today’s business landscape. Enterprises must develop and deploy applications faster than their competitors. To meet the new pace of business, Cisco has introduced their software defined network (SDN) architecture - Cisco ACI.

Cisco ACI is a policy-based network automation solution that integrates physical and virtual environments to deliver consistent control and visibility to accelerate application delivery, reduce operating costs, and increase business agility.

Cisco also recognizes that cybersecurity is a top priority for enterprises subject to frequent attacks. Cisco ACI improves network security and reduces the impact of a successful breach through micro-segmentation, layer 4 to 7 automation, and a whitelist-based policy model.

Tufin Orchestration Suite™ is a unified platform for orchestrating application connectivity across the enterprise network. Now Tufin also provides visibility, compliance, design and automated provisioning of application flows across heterogeneous environments including firewalls, hybrid cloud platforms. Tufin supports visibility, change monitoring and compliance for Cisco ACI tenants, contracts, and applications.

Benefits

• Enhance agility with application-centric automation for network security policy changes

• Reduce complexity by managing enterprise security policies from a single pane of glass

• Strengthen the security posture by designing and implementing micro-segmentation across physical, virtual and cloud networks

• Reduce time and effort invested in audit readiness with continuous compliance

• Gain visibility of security and connectivity across cloud and on-prem infrastructure

• Increase control through a unified console supporting all leading enterprise solutions for traditional networks, firewalls, SDN platforms, and public cloud platforms

www.tufin.com

Orchestrating Application Connectivity with Cisco ACI and Tufin

Technology Partner Solution Brief

Cisco application-centric infrastructure with multi-vendor security policy orchestration from Tufin

www.tufin.com

Copyright © 2019 TufinTufin, Unified Security Policy, Tufin Orchestration Suite and the Tufin logo are trademarks of Tufin. All other product names mentioned herein are trademarks or registered trademarks of their respective owners.

SB-01-19

Tufin’s Unified Security Policy matrix: define and enforce security baseline across hybrid networks

Orchestrate secure application connectivity across heterogeneous environments

Application and Security Policy Visibility and Control

The integration of the Tufin Orchestration Suite™ with Cisco ACI enables customers to standardize application security policies across multiple security enforcement points in the ACI fabric. It enables security teams to visualize and control changes to Application Profiles including their Endpoint Groups, contracts, and services alongside firewall policies, ACLs, and user groups. These capabilities provide tight control over the network security posture, and automated tracking of changes. The change tracking and reporting provides an immediate troubleshooting solution to identify the specific changes causing an unexpected disruption in connectivity. Tufin’s support for heterogeneous environments provides comprehensive security insight into the Cisco ACI fabric and the broader network through a single pane of glass.

Application Compliance and Audit Readiness

Tufin’s integration with Cisco ACI enables security managers to apply and manage a unified security policy across their on-prem infrastructure and hybrid cloud. The Tufin Orchestration Suite™ manages all security policy changes through an auditable, automatically documented change process with built-in security and compliance checks. The comprehensive audit trail for all changes ensures compliance with internal and regulatory standards. Configurable alerts and reports instantly identify and remediate violations, reducing the time and effort to achieve audit readiness.

For more information, visit: www.cisco.com/go/aci.

About Tufin

Tufin is the leader in Network Security Policy Orchestration, serving more than half of the top 50 companies in the Forbes Global 2000. Tufin simplifies management of some of the largest, most complex networks in the world, consisting of thousands of firewall and network devices and emerging hybrid cloud infrastructures. Enterprises select the award-winning Tufin Orchestration Suite™ to increase agility in the face of ever-changing business demands while maintaining a robust security posture. Tufin reduces the attack surface and meets the need for greater visibility into secure and reliable application connectivity. Its network security automation enables enterprises to implement changes in minutes with proactive risk analysis and continuous policy compliance. Tufin serves over 2,100 customers spanning all industries and geographies; its products and technologies are patent-protected in the U.S. and other countries. Find out more at www.tufin.com.