Change Management/Compliance

The Challenge

Organization must respond rapidly to competition in the business environment and carry out frequent and swift changes in their primary business processes in order to maintain their position or to acquire additional, new market shares.

 IT departments which modify their organization’s computer systems to accommodate new business practices, to organizational changes or to entry into new fields, are required to introduce many changes on a daily basis in terms of network configuration and the overall organizational computer network, complete with routing, disconnecting, changing authorizations, entry passwords and so on, as well as adding and uninstalling software and data systems.

 In the framework of today’s reality, when organizations introduce frequent changes in their computer arrays, having to trace these changes, document, record them and manage them is far from being a luxury – it is an operational imperative stemming from managerial, organizational and mostly business reality.

All those Firewall rules, authorizations and passwords involved with complex IT networks and systems must be well-documented and managed. In addition, firewall managers must verify that at each moment, though they may be subject to sudden configuration changes, they will not have critical data security ’holes’ which attract hackers.

Changing business processes make for the opportunity hackers eagerly await, rightly hoping (in most cases) that the organization dedicates most of its IT resources to the changes it is forced to make rather than in enforcing data security regulation.

SOX – Not for keeping your legs warm…

The Sarbanes–Oxley Act of 2002 (SOX), a federal law enacted as a reaction to a number of major corporate and accounting scandals, including Enron and others, was accepted by numerous stock exchanges and financial markets worldwide. These regulations set standards for public accounting, some of which are directly related to the world of IT, for managing computer network changes and recording them. In many countries, these regulations also include personal accountability and compliance by corporate executives and seniors.

The Solution

The complexity of IT arrays necessitates the introduction of systems featuring routing management and definitions, complete with switches, Firewalls, passwords and authorizations. This makes for better and more efficient control, oversight, and change documentation. Change management systems also features the ability to simulate changes and gage their impact over organizational data security (Impact assessment).

Primary Features

  • Unified, centralized change management within the organizational IT network
  • Visualization of network-defined rules and routes
  • Gap Analysis of planned IT network segments vs. existing ones
  • Verifying data security rules and enforcing them after they change
  • Assessing the impact of configuration and other changes before executing them – for example on the level of organizational data security

Best of Breed: Choosing the best product

After carefully exploring software vendors and existing on the shelf technologies, we at Spider Solutions have chosen as our business partners for Change management systems manufactured by: Tufin, Firemon.

tufin firemon

Spider Solutions’ service concept:

We place the highest emphasis on prompt, professional, courteous and efficient service, so we dedicate a great deal of time and resources in training our employees and certifying them by the leading software and hardware companies, our business partners.

Call center

Spider Solutions’ call center, which is on call 24/7, is fully staffed with data security engineers at our clients’ disposal.