Do the old rules still apply?

Conducting a review of firewall rules and logs helps to ensure an organisation is maintaining a secure, efficient, and compliant network that provides protection against evolving threats and minimises the risk of unauthorised access or disruptions.

It is not uncommon for outdated or unnecessary firewall rules to accumulate, increasing administration complexity and reducing firewall effectiveness and performance. Conducting a regular review and update of those rules will streamline the configuration and reduce risks.

Whilst automated policy management and orchestration increasingly will be used to streamline the deployment and management of firewall rules across complex network environments these options don’t fully eliminate the risk of misconfigurations or inconsistent security policies across on-premises, cloud, and hybrid environments.

Kaon Security assist organisations by reviewing their firewall rule-sets to identify security risks, duplicated rules, and bad practices. Our pragmatic technical approach ensures any issues that are found during the review exercise are communicated to our client in an efficient manner so that mitigation work may be scheduled appropriately.

In addition, Kaon Security review the architecture from a best practice perspective and provide recommendations for improvement.

Once our consultant has completed the exercise we share a detailed report with the customer that includes risk ratings and remediation recommendations.

Conctact us today if you would like some further details.

 

New version release - PMaaS

With the pending release of our first enhancement upgrade Policy Management as a Service here’s a quick overview of some of the new and updated functions being introduced.

Support for additional governance policy content

PDF documents supplied by the client to Kaon Security can be uploaded to their unique instance of Policy Management as a Service (PMaaS). New menu headings and sub-items can be added to PMaaS’ left-hand menu to categorise the additional policy content. If a customer requires a user to review and accept any of the additional policy content documents on-screen, then the display can include an acknowledgement block at the bottom of the PDF document.

A selection of functions to manage the ownership of the additional policy content are available, such as assigning a policy owner, review date and review cycle, which will automate the release of policy review reminderst. Click below to watch a short introduction video on this new feature.

 

Add a brand new statement to an existing policy

Primary Users will be able to request a new statement to be added to a policy.

Export all combined Word documents

All the policy documents collated by topic and persona (user/manager/technical) will be output in Word format using a zip file.

 

We have also recently updated our content to reflect the release of the following:

• PCI-DSS content to reflect the release of the 4.0.1 guidance
• NSW Cybersecurity Guidelines 2025

Contact us today to discuss how Policy Management as a Service can help your organisation lay the foundations for a secure computing environment.