Prezentacja na temat: "Network Automation – czyli jak można automatyzować w sieciach."— Zapis prezentacji:
1Network Automation – czyli jak można automatyzować w sieciach. Note for the user of the slide deck:Part of the slides are marketing examples examples on how NetMRI is beneficial to existing customers. Those examples are taken from the published Case studies on the Infoblox website.In the section change technical examples are added on how you can use CCS scripting to automate change.Depending on your public you can either cut some of the marketing slides (are they already convinced on NetMRI and do they have examples to convince their customers).If the presentation is given to a mix of technical and management people, cut the API slides from example 3 (slide 22) onwards until Policy complianceNetwork Automation – czyli jak można automatyzować w sieciach.Adam Obszyński CCIE #8557, CISSP
46Closing the Security Lifecycle Gap InfoSecTeamSet department policyKnow all connected L2/L3 devices & end hostsAutomate remediation of non-compliant devicesSimplify compliance auditsEnsure security policies being followedReduce risk of security vulnerabilitiesIntegrate with SIEMs and other 3rd partiesSecure and enforce access to network infrastructureWithin the security realm, there are typically three departments that follow a lifecycleInfoSec teamNetwork Ops TeamSecurity Ops TeamHistorically there has been a gap in the lifecycle across the three teams where there are different tools, processes and requirements.The InfoSec teams sets department policies, but it’s challenging for the network team to deploy and implement the overall corporate standards and policies because of the gap between goals and actionable requirements. Add in the Security Ops team who’s task is enforcing and monitoring the policies and verifying implementation, the challenge is greater trying to prove aspects that may not be cohesive.Infoblox helps close the gap by bridging the requirements between the 3 teams and helps takes departmental policies and actually creating an actionable plan to implement and ensure security success.Network OpsTeamSecurity Ops TeamDeploy & implementEnforce & monitor
47Discovery & Change Monitoring Network OpsTeamInfoblox Network AutomationSend for approvalDiscover, fingerprint, and identify all switches, routers, firewalls, etc., from 50 vendors1Alert on violations2Backup the configurations for all L2, L3 devices3Automatically check if devices have been changedFor the Network Ops team, Infoblox helps with five key areas:Automatic discovery of devicesBackup and archives of all L2 and L3 device configurationsContinuous change monitoring and detectionChange approval for simplified auditingContinuous monitoring to ensure network devices remain within policyApprove change for auditing or remediate directly4Deploy policies to continuously monitor network for compliance5
48Visibility & Compliance Auditing Security Ops TeamVisibility & Compliance AuditingSend to SIEM, Network MonitoringInfoblox Network AutomationLeverage network topology maps to monitor for unmanaged devices12Set user roles to track who changed what and when3Identify network hardware security gaps (EOL, PSIRT, etc.)4Turn unused switch ports off to reduce security profileFor the Security Ops team, there are 6 key aspects for how Infoblox’s Network Automation can help for visibility and compliance auditing.Automatic detection of new devices with easy to view topology mapsUser-based roles to secure and track access to network devicesFind potential hardware security gaps including Psirts (Cisco Product Security Incident Response Team), field notices and EOL/EOSSafely turn off unused switch ports closing a security gapTrack end hosts to determine how the network is being accessesGenerate reports on assets and inventories for correct information5Track end hosts to determine how network being accessedGenerate reports on assets, inventories to reduce risk6
49Bridging the Gap Network Automation Communication and reporting Set department policyReduced time to auditSimplified & customizable security policiesOut of the box compliance reportsInfoSecTeamImprove agility with automated network change provisioningInventory all network infrastructureRole based access & user auditingReduce risk profileContinuous real-time monitoringSIEM and 3rd party integrationsNetwork AutomationCommunicationand reportingDeploy & implementInfoblox Network Automation helps bridge the gap.For the Network ops team, improved agility with automated change provisioning, inventory of all network devices and role-based access and user auditing.For the Security ops team, the reduced risk profile and continuous monitoring ensure policies are being followed and integration with SIEM and 3rd party platforms provide a comprehensive view.This feeds back to the InfoSec team for reduced time to audit and leverage customizable security policies.Best of all, this is a single version of truth for the data.Enforce & monitorNetwork OpsTeamSecurity Ops TeamSingle version of truth
51FIN Infoblox Network Automation helps bridge the gap. For the Network ops team, improved agility with automated change provisioning, inventory of all network devices and role-based access and user auditing.For the Security ops team, the reduced risk profile and continuous monitoring ensure policies are being followed and integration with SIEM and 3rd party platforms provide a comprehensive view.This feeds back to the InfoSec team for reduced time to audit and leverage customizable security policies.Best of all, this is a single version of truth for the data.