Search results

Explore Algosec's customer success stories to see how organizations worldwide improve security, compliance, and efficiency with our solutions. Natura Cosméticos Improves Security Change Management with AlgoSec Organization Natura Cosméticos Industry Healthcare & Pharmaceuticals Headquarters Brazil Download case study Share Customer
success stories "With AlgoSec we are proactive. Now we can see all the changes and reduce the risks we have regarding requirements for SOX as well as maintain all the policies for information security" International Cosmetics Company Gains Visibility, Reduces Risk and Ensures Compliance with SOX AlgoSec Business Impact Deliver proactive security policy management Gain immediate visibility into all security policy changes Reduce risks and ensure compliance with SOX Background Natura Cosméticos is the largest cosmetics manufacturer and distributor in Latin America, with more than 1.5 million independent consultants and 100 million customers. Founded in 1969, the company is based in Brazil, where almost two-thirds of households buy its products. At $7.5 billion in revenues, Natura is a Forbes Global 2000 company and ranked #75 on the magazine’s most innovative companies list in 2014. Challenge Natura has offices throughout Brazil and operations throughout Latin America and France supported by two data centers, 33 firewalls, 18 clusters and 250 switches and routers. For years, a third party managed the company’s firewall rule changes, making visibility and management challenging.“If a change was made over the weekend, it would be difficult for us to find out what rules were changed, for what reason, who created them or why,” says Newton Rossetto, Chief Security Officer, Natura Cosméticos.“We’d find some firewall rules in the wrong places and unused rules,” adds Rossetto, but changing them was no simple matter. “Users had to create a worksheet with their requirements for our environment and then they would be implemented by a third party. After the rule was created, we then needed to check that it was right.” Natura needed a streamlined system for making and tracking security changes that gave IT better visibility across the company’s complex security environment. Solution Natura recognized that it had a “really confusing change management process,” Rossetto states. The company chose the AlgoSec Security Management Solution to manage and streamline the process. Results After a “simple and quick deployment,” according to Rossetto, AlgoSec enabled Natura to quickly “consolidate security policy management for our environment.” AlgoSec provides detailed online reports for each step of the change workflow and enables Rossetto’s team to manage security policy changes for multiple security devices on one common platform.“Now I can see all of the reports I need at any time. I can also see which rules were created and what objects are no longer needed,” says Rossetto. This visibility has allowed Natura to take a proactive role in security policy management which had been impossible when changes were previously outsourced to a third party. For a company growing at 14 percent each year, particularly one that does the majority of its sales and workforce management online, having complete visibility into the security rule-change process brings real peace of mind.For the Natura team, AlgoSec’s preset workflows for implementing and removing rules, changing objects and verifying rules, combined with its flexibility to accommodate the company’s specific needs, held great appeal. In addition, users liked the pre-populated request templates that saved them time compared to the old worksheets, as well as simplified communication with the security team. “With AlgoSec, the change management process is all automatic. We can approve the changes and know we will have the right rules with the right objects,” says Rossetto.AlgoSec also helped Natura’s security team reduce risks associated with Sarbanes-Oxley (SOX) requirements. AlgoSec evaluates every proposed change against regulatory standards, such as SOX, as well as industry best practices and corporate-specific policies. Any change found to be out of compliance is flagged before it can be implemented.In terms of customer service, as well as implementation, Rossetto states that working with AlgoSec has “been a very good experience. We have been very well supported from negotiation through successful deployment. We are very satisfied.” Schedule time with one of our experts

Security policy automation is the process of automating certain cybersecurity tasks like threat detection (ransomware, malware, security... Firewall Policy Management What is Network Security Policy Automation? Tsippi Dach 2 min read Tsippi Dach Short bio about author here Lorem ipsum dolor sit amet consectetur. Vitae donec tincidunt elementum quam laoreet duis sit enim. Duis mattis velit sit leo diam. Tags Share this article 8/9/23 Published Security policy automation is the process of automating certain cybersecurity tasks like threat detection (ransomware, malware, security rules, network changes), investigation, and remediation. Automating such practices reflects in the policy that governs them. Thus, security policy automation is the process of automating network security controls using a programmatic solution. In present-day security operation centers (SOCs), NSPM solutions can facilitate automation. These work by identifying vulnerabilities, threats, and attack surfaces in the security posture, assessing them, prioritizing them, responding to them in order through pre-defined actions, and streamlining the process for the security executives. So, automation doesn’t mean everything from end to end is automated. Some human intervention may be necessary, at least at the higher decision-making level. Benefits of network security policy automation Automation in security policy has several benefits for an organization. Thus, it’s not hard to see why companies are pumping money into network security automation solutions . Some of the proven benefits are: Automate manual tasks in cybersecurity The primary benefit of any automation practice is to reduce manual labor. Connectivity security automation frees up resources from many redundant manual tasks, which you can then deploy elsewhere. This automation yields several other benefits that make automation irresistible for companies. Bring down false positive alerts False positive alerts or alarms are those instances where the cloud security system gets triggered because of a false threat, like firewall rules . In other words, the management platform perceives certain actions to be threatening, which actually are harmless. This consumes unnecessary resources. IT teams can prevent such real-time false alerts by making use of regulatory automation. Automation tools can detect and verify such alarms and take pre-defined actions should the alerts be false. Consider it a second check before raising the issue at a higher level. Reduce downtime Downtime is one of the pressing issues in IT departments. A study by Gartner penned the average cost of downtime at $5,600 per minute for certain businesses. When the system detects a threat, it typically shuts down certain network segments (like web services, routers, and so on). This can result in downtime. Some downtimes might be unavoidable, but those arising from false positive alerts certainly are. Thus, network security policy automation helps in that regard too. Reduce headcount There’s a shortage of talent in the cybersecurity And often, competent men and women demand sky-high salaries. So, from an economic standpoint, using automation to counter the lack of talent makes sense. With automation, you can divert human resources to other productive tasks. Make compliance easier Compliance is critical for businesses, especially in critical insurance, medical, and legal sectors. Up-to-date infrastructure comprising of Cisco, AWS, Tufin , and other reputed companies with the latest cybersecurity measures is one of the prerequisites laid out by most regulators. Network security policy automation can help update the infrastructure to the latest standards. This, in turn, helps the business stay compliant. Why is automation still a challenge in network security? Despite all its promises and proven benefits, many companies are reluctant to invest in security automation And the reason is it’s challenging to do so. Automation is hard because management itself is hard. You can’t automate something you can’t fully manage properly. E mployees, teams, and projects change, as do the access control Because of such a dynamic environment, automation is still challenging. Another reason is teams tend to work in silos. Multiple stakeholders are involved, including the customers, who must understand and accept the changes. Automation in such instances, known as Deploy and Configure, remains a challenge. But despite the challenges, there are ways to automate multi-vendor on-premises network security Even if you successfully automate some aspects of the policy, it’d be a huge time and resource saver. How to automate network security policy management? Cloud-based security policy automation has been around for quite some time. It has received upgrades over time and has gotten better. Let’s look at present-day automation practices, change processes, and troubleshooting tips. Review the current policy You can’t start from scratch, especially if you have an existing network security policy . The best approach is to start automation from where you are. This way, your security teams do not need to make drastic changes, which may put your network in a more vulnerable state. So as a first step, review your existing cloud environments policy and establish needs. Post that, formulate a plan on which things you can automate and which require manual intervention. Start with things that can be automated. If starting from starch, you must create a security policy first. So, hire cybersecurity experts from AlgoSec to formulate and optimize a policy for your organization’s hybrid network. You can also use Prevasio CNAPP to manage the multi-cloud security You might also want to conduct a webinar if important stakeholders work remotely. The idea is to bring everyone on the same page. Select the type of security automation tools There are three types of hybrid environment security automation tools to choose from. These are no-code, low-code, and full-code automation. The type of automation you select will impact your security policy changes . Pricing of each tool will also play an important role. No-code security automation is the newest type. As the name suggests, such tools do not require coding to automate network security . There are several use cases and pre-made workflows that you can use right off the bat. These are much easier to manage but don’t grant you complete control over the policy. You can have several automation tools within low-code tools like some-code or more-code. Most businesses prefer these security tools since they offer a balance of user-friendliness and robust coding capabilities. You can change and apply the pre-defined use cases to your company’s security policy. Finally, you have full-code automation AlgoBot , for instance, is an intelligent chatbot for handling network security policy management tasks. These are legacy security orchestration, automation, and response (SOAR) platforms. A high level of coding work is necessary to work with these full-code firewall management tools, which poses a high barrier to entry. But the upside is you get full control over the policy. Adopt zero-touch change management Truth be told, you can’t automate 100% of the security policy. Skilled personnel will still be needed to look over everything. However, for those manual tasks, you need speed while still upholding the security principles. How do you balance both? With zero-touch change management. Zero-touch orchestration is an alternative to semi-automated security processes. Vulnerability management accelerates change requests, reducing the time it takes to implement requests to minutes. Despite the speed advantage, zero-touch orchestration has flaws. For example, it accepts the requests as-is and doesn’t check their validities. This can result in misconfiguration. For security risk mitigation , you can embed conditional logic into the orchestration and leverage security and speed. This form of automation will ensure none of the process steps are missed in the lifecycle. FireFlow provides automated security policy management, helping you confidently automate security policy change process. Establish priorities Deploying automation tools is one part done. The next part is adopting the best practices and organizing your team. One of the best practices of policy automation is to establish priorities. Finding the DevOps issues that are more critical to your security needs is imperative. Then place them higher for the team to address them. This requires you to look at your overall network posture (which you have done in the first step). Once you’ve established clear priorities, you should define the use cases and implement workflow automation. Train team members Last, to ensure continuous compliance, you must upskill your team members to grasp the implemented changes. The transition from manual to automated will be challenging for employees too. Make them understand why it’s being done and what they’re supposed to do. This is done through a combination of courses and practical knowledge. Besides the knowledge, they should also clarify where the machine’s capabilities end and human responsibility begins. Once automated, it will take some time for the team to get familiarized with it. For the best results, automate the workflow in batches and not the entire network at once. Develop the playbook along the way and get everyone on the same page. Once you get a tempo, invest in third-party tools and vendors to speed up the automation What’s next? Network security policy automation makes compliance easier, reduces downtime, and automates manual tasks in cybersecurity. However, automation still means having the right tools and professionals within reach. If you are looking forward to automating network security policy automation and getting the right guidance, we are here. Contact us today to learn more. Schedule a demo Related Articles 2025 in review: What innovations and milestones defined AlgoSec’s transformative year in 2025? AlgoSec Reviews Mar 19, 2023 · 2 min read Navigating Compliance in the Cloud AlgoSec Cloud Mar 19, 2023 · 2 min read 5 Multi-Cloud Environments Cloud Security Mar 19, 2023 · 2 min read Speak to one of our experts Speak to one of our experts Work email* First name* Last name* Company* country* Select country... Short answer* By submitting this form, I accept AlgoSec's privacy policy Schedule a call

Explore Algosec's customer success stories to see how organizations worldwide improve security, compliance, and efficiency with our solutions. Orange Cyberdefense Furnishes Application Delivery and Network Automation Organization Orange Cyberdefense Industry Retail & Manufacturing Headquarters Multinational Download case study Share Customer
success stories "We cut the time it takes to implement firewall rules by at least 50%" Application owners for global retail chain get faster response times with application visibility and automated deployment. Orange Cyberdefense is the expert cybersecurity business unit of the Orange Group, providing managed security, managed threat detection & response services to organizations around the globe. They embed security into Orange Business Services solutions with more than 250 security researchers and analysts and 16 SOCs distributed around the world supporting customers in over 160 countries. The Challenge Orange Cyberdefense is an on-site consultant for a large retail chain with hundreds of stores and hundreds of thousands of employees spread out across the world.The client has over 2,500 multi-vendor firewalls and Layer 3 devices in their global data centers. They also run hundreds of mission-critical business services. Business services include supply chain management and ERP systems, global eCommerce operations, financial management systems, and much more. As a result, they had to cope with hundreds of change requests daily.Some of the challenges included: Lack of centralized management – Multiple vendors’ firewalls are deployed, which were implemented by multiple third-party vendors. There was no validation that rules were consistently applied across multiple vendor’s management consoles. Commissioning and decommissioning devices – A mix of multi-vendor new and legacy devices run in the data center and maintaining consistency across multiple vendors and multiple versions of devices was difficult. Lack of automation – Firewall communication and traffic flows were described in Excel sheets and needed to be manually updated whenever there was a change. Slow execution of change requests – Implementing firewall changes took over a week. Poorly implemented rules – The rules did not reflect what the requester asked for. They either allowed too much traffic in or were too narrow, not allowing the required traffic and thus needed to be re-implemented. The Solution The client searched for a solution that provided: Faster implementation of firewall changes. Comprehensive firewall support for a globally dispersed multi-vendor, hybrid estate. Automation of security policy change management and documentation of security policy changes. Visibility into their business applications and traffic flows. They implemented the AlgoSec Security Policy Management Solution, made up of AlgoSec Firewall Analyzer, AlgoSec FireFlow, and AlgoSec AppViz and AppChange (formerly AlgoSec BusinessFlow). AlgoSec Firewall Analyzer analyzes complex network security policies across on-premise, cloud, and hybrid networks. It automates and simplifies security operations, including troubleshooting, auditing and risk analysis. Using Firewall Analyzer, the client can optimize the configuration of firewalls, and network infrastructure to ensure security and compliance. AlgoSec FireFlow enables security staff to automate the entire security policy change process from design and submission to proactive risk analysis, implementation, validation, and auditing. Its intelligent, automated workflows save time and improve security by eliminating manual errors and reducing risk. AlgoSec AppViz and AppChange (formerly AlgoSec BusinessFlow) discover, identify, and map business applications, providing critical security information regarding the firewalls and firewall rules supporting each connectivity flow. With AlgoSec AppChange, changes can be made at the business application level, including application migrations, server deployment, and decommissioning projects. The Results Some of the ways the client benefits from using AlgoSec include: Greater transparency by providing a single source of truth that took into consideration the entire network estate. 50% reduction in the time needed to implement firewall rules. More communication between network security/IT staff and business application owners who are now able to submit change requests in business language and easily describe their needs, thus reducing misconfigurations and potential breaches. Better compliance reporting – with both an easy API integration and also audit-ready compliance reports. Automated change management – network changes are now recorded while being made – not managed with Excel. By using AlgoSec, application owners have more visibility into the network and are better able to trace what has changed within their business applications. “Documentation is several hundred percent better this way,” said Hans Broomé, Network and Security Consultant at Orange Cyberdefense. “With many different versions of the services, by using AlgoSec the IT team is confident that they are making changes to the correct version.” There were even unexpected gains, such as improved security management procedures. Change requests became more accurate as they gained visibility into the network and made the change request process more systematic and transparent. Requesters, as well as stakeholders such as their managers, have full visibility of their change request’s status and can verify that the request works as intended. Orange Cyberdefense is also impressed with the dedicated attention they receive from AlgoSec. AlgoSec’s support team is familiar with the global organization and provides dedicated attention tailored to their exact needs. They stay up to date with the AlgoSec solution’s latest capabilities, and the technical team maximizes their use of it thanks to an extensive training library. “The best is yet to come,” concluded Broomé. Schedule time with one of our experts

Explore Algosec's customer success stories to see how organizations worldwide improve security, compliance, and efficiency with our solutions. Atruvia (formerly Fiducia IT AG) Reduces Security Risks For Banks With Algosec Organization Atruvia Industry Technology Headquarters Karlsruhe, Deutschland Download case study Share Customer
success stories "AlgoSec’s Security Management Solution is incredibly powerful. Its intelligent process improvements have directly translated into the highest level of security and compliance for our customers’ networks" Background With over 45 years’ experience in the banking sector, Atruvia ( formerly Fiducia IT AG) is one of the top ten IT providers in Germany. Today, Atruvia manages the IT networks of nearly 1,100 banks, constituting more than 100,000 PC workstations, 6,600 servers and 25,000 self-service banking terminals. Responsible for ensuring the smooth and secure processing of more than 16 billion transactions per year for its customers, Atruvia’s risk mitigation and regulatory compliance strategies are of utmost importance. Challenge To protect its customer networks, Atruvia implemented a number of security solutions, including 60 Check Point and 20 Juniper firewall clusters. However, managing multiple firewalls in a multi-vendor environment proved challenging. “Performing vulnerability assessments for such a large and complex firewall environment was extremely time-consuming, labor-intensive and prone to human error,” says Lutz Bleyer, Atruvia’s Chief Information Security Officer. With multiple stakeholders at each of its client organizations, Atruvia required a structured change management process to prevent firewall policies from growing unmanageable and creating security risks. “We needed a proven firewall management and workflow solution to eliminate potential security risks while providing us with complete visibility into our customer networks, anytime, anywhere,” says Bleyer. Solution After an in-depth analysis, Atruvia chose the AlgoSec Security Management Solution to optimize its security, compliance and change management processes. “AlgoSec provided the most comprehensive, intelligent automation solution for our firewall operations, helping us increase efficiency while improving risk mitigation and compliance,” says Bleyer. Results AlgoSec’s topology-aware technology provides Atruvia with complete visibility into the security landscape of its customers’ networks. “AlgoSec’s in-depth visibility enables us to easily create a hierarchy profile and establish a competency baseline of operations for each networks’ firewalls, even when multiple vendor technologies are involved,” says Bleyer. Atruvia’s security consultants and auditors are now closely aligned with their customers’ IT teams, regardless of their location. “The level of visibility AlgoSec provides across our customers’ security networks, and the ability to perform coordinated tasks remotely with them, enables us to work hand-in-hand as a joint team,” says Bleyer. Atruvia also uses AlgoSec to automate policy change management across customers’ firewall environments, enabling the company to eliminate manual and inefficient processes associated with the security policy change lifecycle, save time and reduce the potential for human error. “AlgoSec has fundamentally changed how we manage sophisticated, multi-device, multi-vendor firewall environments. By automating our workflows, we’ve eliminated unnecessary policy changes and reduced the time required to process changes by half,” explains Bleyer. “Thanks to AlgoSec’s intelligent automation, we’ve gained valuable optimization capabilities enabling our teams to operate smarter and faster.” Another important AlgoSec feature is its automatic assessment and reporting capabilities, which help Atruvia ensure that it remains in continuous compliance with corporate governance rules and adheres to regulatory standards, including ISO 27001, ISO 27002 and Sarbanes-Oxley (SOX). Data and network security, particularly within the financial sector, requires incredible focus on risk management and mitigation. “With AlgoSec we can now analyze every change and its impact on the network before it is live, and focus on risk mitigation rather than crisis management.” In summary, Bleyer commented, “Not only does AlgoSec more than measure up from a technology perspective, but the integrity of the company and its employees has surpassed our expectations and raised the bar for what we look for in other partners.” Schedule time with one of our experts

AlgoSec’s latest product release delivers automated application connectivity and security policy changes, deepens application visibility and discovery, and extends application risk analysis across multi-clouds and hybrid environments. Securely Accelerate Application Delivery and Policy Management with AlgoSec ASMS A32.10 AlgoSec’s latest product release delivers automated application connectivity and security policy changes, deepens application visibility and discovery, and extends application risk analysis across multi-clouds and hybrid environments. September 8, 2021 Speak to one of our experts RIDGEFIELD PARK, N.J., September 8, 2021 – AlgoSec , the application connectivity and security policy company, has introduced enhanced automated application connectivity and security policy changes, and deepened application visibility and discovery, in the latest version of its Network Security Management Solution. AlgoSec Security Management Suite (ASMS) A32.10 builds on previous versions to give IT and security experts the most comprehensive visibility and control over security across their entire hybrid environment. With A32.10, organizations can align network security with their overall business objectives, automating the process in a single platform for a seamless, zero-touch experience. The key benefits that AlgoSec ASMS A32.10 delivers to IT, network and security experts include: Intelligent application connectivity in SDNs and the cloud AlgoSec ASMS A32.10 introduces intelligent application connectivity management and enhanced security policy automation to leading SDN and cloud platforms, including VMware’s NSX-T. It also extends support for MSO-managed Cisco ACI devices, Cisco’s leading SDN platform. Application discovery and visibility across hybrid networks With A32.10 enterprises can use traffic logs to automatically discover applications on the network, providing enriched mapping across hybrid network estates. It provides a seamless and complete picture of the network across multiple public clouds including Google Cloud (GCP) and AWS Transit Gateway as well as Check Point R80 Inline and Ordering Layers. Extended application risk analysis A32.10 extends cloud risk management with new risk triggers of interest and unique filtering capabilities. When using A32.10, VMware NSX-T users can receive risk notifications, so they are aware of the potential compliance violations introduced by applications. “In this fast pace era of digital transformation, speed is of the essence. Unfortunately, many organizations confuse this for agility and take too many risks with their security, leaving them vulnerable to attack.” said Eran Shiff, Vice President, Product, of AlgoSec. “A32.10 makes it easier for organizations to securely accelerate application connectivity, enabling them to move fast across multi-cloud and hybrid environments and stay ahead of security threats, increasing business agility and compliance.” AlgoSec ASMS A32.10 is generally available. About AlgoSec AlgoSec, a global cybersecurity leader, empowers organizations to securely accelerate application delivery by automating application connectivity and security policy, anywhere. The AlgoSec platform enables the world’s most complex organizations to gain visibility, reduce risk and process changes at zero-touch across the hybrid network. AlgoSec’s patented application-centric view of the hybrid network enables business owners, application owners, and information security professionals to talk the same language, so organizations can deliver business applications faster while achieving a heightened security posture. Over 1,800 of the world’s leading organizations trust AlgoSec to help secure their most critical workloads across public cloud, private cloud, containers, and on-premises networks, while taking advantage of almost two decades of leadership in Network Security Policy Management. See what securely accelerating your digital transformation, move-to-cloud, infrastructure modernization, or micro-segmentation initiatives looks like at www.algosec.com Media Contacts: Tsippi Dach AlgoSec [email protected] Jenni Livesley Context Public Relations [email protected] +44(0)300 124 6100

New appointments from well-established cybersecurity companies underscore AlgoSec’s mission to be the global leader in securing application connectivity AlgoSec Names Rafi Kretchmer as Chief Marketing Officer, and Mike Danforth as New Regional Vice President of Sales New appointments from well-established cybersecurity companies underscore AlgoSec’s mission to be the global leader in securing application connectivity May 30, 2024 Speak to one of our experts RIDGEFIELD PARK, NJ, May 30, 2024 – AlgoSec , a global cybersecurity leader, today announced the appointment of two senior executives: Rafi Kretchmer will serve as Chief Marketing Officer, and Mike Danforth will assume the role of Regional Vice President of Sales for the America’s. Together these new leaders will further support AlgoSec in enabling the world’s most complex organizations to secure their business-critical applications across the public clouds, private clouds, containers, and on-premises networks; ensuring application uptime, risk management and continuous compliance. “The addition of Rafi Kretchmer and Mike Danforth to our executive team marks a significant milestone in establishing AlgoSec as a leading global cybersecurity company,” said Yuval Baron, Chairman and CEO of AlgoSec . “With their deep expertise and tenure in the cybersecurity industry, Kretchmer and Danforth will be instrumental in leveraging their expertise to provide customers with the solutions they need to deliver business applications faster while achieving a heightened security posture.” Combined, Kretchmer and Danforth have over 40 years of cybersecurity experience, including senior leadership roles at globally-recognized cybersecurity organizations. ● Rafi Kretchmer , Chief Marketing Officer – Rafi Kretchmer has more than two decades of extensive experience heading marketing and strategy for leading global B2B enterprises, with a proven track record of driving strategic business growth across global markets. Prior to joining AlgoSec, Rafi Kretchmer served as Vice President of Marketing at Check Point Software Technologies, Ltd. Prior to that, he held multiple senior marketing leadership roles in the SaaS market, including Chief Marketing Officer at Panaya, and Head of Marketing at Nice Systems and Amdocs. ● Mike Danforth , Regional Vice President of Sales, America’s – Mike Danforth brings 20 years of sales experience across the cybersecurity landscape. He has comprehensive experience with direct sales, channel sales and strategic partnerships. Throughout his tenure, Danforth has held several key leadership positions at start-ups and large public companies. Most recently, he served as Vice President of Sales for Palo Alto Networks, helping to build the Cortex product line to a billion-dollar business unit across every major sales vertical in the U.S., Canada, and LATAM. Before his career in cybersecurity, Mike also served 10 years in the U.S. Army as a paratrooper in the 82nd Airborne Division and later as a Leader in the prestigious 75th Ranger Regiment. Today’s security leaders must maintain a strong security posture against the increase in and constantly evolving landscape of cybersecurity threats , while also maintaining business continuity. The appointments of Kretchmer and Danforth will advance AlgoSec’s commitment to ensuring customers have the tools they need to securely accelerate business application deployment and accelerate digital transformation projects. For more information about AlgoSec and its leadership team, please visit algosec.com/company/management/ and follow the company on Twitter , LinkedIn and Facebook . About AlgoSec AlgoSec, a global cybersecurity leader, empowers organizations to secure application connectivity and cloud-native applications throughout their multi-cloud and hybrid network. Trusted by more than 1,800 of the world’s leading organizations, AlgoSec’s application-centric approach enables to securely accelerate business application deployment by centrally managing application connectivity and security policies across the public clouds, private clouds, containers, and on-premises networks. Using its unique vendor-agnostic deep algorithm for intelligent change management automation, AlgoSec enables acceleration of digital transformation projects, helps prevent business application downtime and substantially reduces manual work and exposure to security risks. AlgoSec’s policy management and CNAPP platforms provide a single source for visibility into security and compliance issues within cloud-native applications as well as across the hybrid network environment, to ensure ongoing adherence to internet security standards, industry, and internal regulations. Learn how AlgoSec enables application owners, information security experts, DevSecOps and cloud security teams to deploy business applications up to 10 times faster while maintaining security at https://www.algosec.com .

A gross dollar retention rate of over 90% and 36% year-over-year new business growth highlight adoption across industries AlgoSec’s Horizon Platform Fuels Company Growth and Global Application-Centric Security A gross dollar retention rate of over 90% and 36% year-over-year new business growth highlight adoption across industries September 9, 2025 Speak to one of our experts RIDGEFIELD PARK, NJ, September 9, 2025 – AlgoSec , a global cybersecurity leader, today announced a gross dollar retention rate of over 90% in the first half of 2025, following the launch of its AlgoSec Horizon platform. Since its release, the Horizon platform has gained adoption across industries, underscoring the market need for convergence of cloud and on-premises networks. This widespread adoption has driven a 36% increase in new annual recurring revenue (ARR) in the first half of 2025 compared to 2024. The Horizon platform utilizes advanced AI capabilities to automatically discover and identify an organization’s business applications across complex hybrid networks, and remediate risks more effectively. Its Intelligent automation minimizes misconfigurations and enhances operational resilience to accelerate application delivery from weeks to hours. In one such example, one of the largest financial institutions in the U.S. uncovered 1,800 applications and their connectivity requirements within the first two weeks of using Horizon. Throughout September and October, AlgoSec is running the Horizon Tour, a series of sessions showcasing the platform’s capabilities and expert insights for enterprise security teams across EMEA and the U.S. “Security teams today are being asked to protect applications in a hybrid world, from multi-clouds to datacenters globally,” said Chris Thomas , Chief Revenue Officer at AlgoSec. “We’re excited about our early 2025 successes and our evolving AlgoSec solutions which will help us meet our mission to enable the world’s most complex organizations to gain visibility, reduce risk and process changes. To hear first-hand AlgoSec’s strategic direction and product innovation roadmap, join us for our annual virtual AlgoSummit event on September 30.” To learn why over 2,200 of the world's most complex organizations trust AlgoSec to help secure their most critical workloads, visit www.algosec.com . About AlgoSec AlgoSec, a global cybersecurity leader, empowers organizations to securely accelerate application delivery up to 10 times faster by automating application connectivity and security policy across the hybrid network environment. With two decades of expertise securing hybrid networks, over 2200 of the world's most complex organizations trust AlgoSec to help secure their most critical workloads. AlgoSec Horizon platform utilizes advanced AI capabilities, enabling users to automatically discover and identify their business applications across multi-clouds, and remediate risks more effectively. It serves as a single source for visibility into security and compliance issues across the hybrid network environment, to ensure ongoing adherence to internet security standards, industry, and internal regulations. Additionally, organizations can leverage intelligent change automation to streamline security change processes, thus improving security and agility. Learn how AlgoSec enables application owners, information security experts, SecOps and cloud security teams to deploy business applications faster while maintaining security at www.algosec.com . MEDIA CONTACT: Megan Davis Alloy, on behalf of AlgoSec [email protected]

Explore Algosec's customer success stories to see how organizations worldwide improve security, compliance, and efficiency with our solutions. International Components Company Strengthens Network Security & Reduces Risks Organization Components Company Industry Retail & Manufacturing Headquarters International Download case study Share Customer
success stories "We quickly identified some unused rules, which we were able to safely remove. We're confident in the fact that we’re closing paths and we’ve also quickly managed to get compliance going,” says the company’s Head of Security Architecture." A leading international components company automates security policy change management and eliminates duplicate rules. BACKGROUND The company is a leading company specializing in high–performance components and sub-systems for the aerospace, defense, and energy markets. Backed by over a century of expertise, the company deliver solutions for the most challenging environments, enabling safe, cost-effective flight, power, and defense systems. CHALLENGE The company’s firewalls were growing consistently. There had not been enough insight and analysis into their network over the years, leading to a bloated and redundant network infrastructure. Firewalls and infrastructure did not get the care and attention they needed. Some of their challenges included: Legacy firewalls that had not been adequately maintained. Unused or overly permissive rules, which left open many security holes. Difficulty identifying and quantifying network risk. Change requests for functionality already covered by existing rules. SOLUTION The client searched for a vendor that understood their environment and challenges and could integrate into their existing solutions. They would need to offer: Faster implementation of firewall changes. Comprehensive firewall support. Automation of security policy change management. Visibility into their business applications and traffic flows. They implemented the AlgoSec Security Policy Management Solution, made up of AlgoSec Firewall Analyzer and AlgoSec FireFlow. AlgoSec Firewall Analyzer ensures security and compliance by providing visibility and analysis into complex network security policies. AlgoSec FireFlow improves security and saves security staffs’ time by automating the entire security policy change process, eliminating manual errors, and reducing risk. RESULTS By using the AlgoSec Security Management Solution, the customer gained: Greater insight and oversight into their firewalls and other network devices. Identification of risky rules and other holes in their network security policy. Audits and accountability into their network security policy changes. They were able to ensure ongoing compliance and make sure that rules submitted did not introduce additional risk. Identification and elimination of duplicate rules. The customer is also impressed with the dedicated attention they receive from AlgoSec. AlgoSec’s support team is familiar with their challenges and provides attention tailored to their exact needs. Schedule time with one of our experts

Explore Algosec's customer success stories to see how organizations worldwide improve security, compliance, and efficiency with our solutions. Reece Group Gets Change Requests Flowing Organization Reece Group Industry Retail & Manufacturing Headquarters Victoria, Australia Download case study Share Customer
success stories "The reason we chose AlgoSec is because we saw the benefits of what it would give us for the business. The time it has taken to make a change has dropped significantly..." Leading plumbing and HVAC company empowers business and IT teams with ChatOps, reduce troubleshooting time, so they can focus on building their business. Background The Reece Group is a leading distributor of plumbing, waterworks and HVAC-R products to commercial and residential customers through 800 branches in Australia, New Zealand and the United States.Established in 1920, this includes 10 specialized business units servicing the plumbing, bathroom, building, civil, irrigation, heating, air conditioning and refrigeration industries. The Challenge Some of the Reece Group’s challenges included: Commissioning and decommissioning – As firewall upgrades and migrations were frequently handled by third-party suppliers, there was a lack of business alignment and visibility into their entire multi-vendor hybrid network. Clarity and understanding of security rules – They had difficulty understanding what rules were in place across their entire network and understanding and what services the rules applied to. The Solution The Reece Group searched for a solution that provided: Baseline compliance – To ensure that their rules did not introduce unnecessary risk or compliance violations. Visibility into risk – So they could understand what their rules did in order to not cause an outage. They implemented AlgoSec Firewall Analyzer and AlgoSec FireFlow. They also use AlgoBot, AlgoSec’s ChatOps solutions. AlgoSec Firewall Analyzer provides visibility and analyzes complex network security policies across on-premise, cloud, and hybrid networks. It automates and simplifies security operations including troubleshooting, auditing, and risk analysis. Using Firewall Analyzer, the client can optimize the configuration of firewalls, and network infrastructure to ensure security and compliance. AlgoSec FireFlow enables security staff to automate the entire security policy change process from design and submission to proactive risk analysis, implementation, validation, and auditing. Its intelligent, automated workflows save time and improve security by eliminating manual errors and reducing risk. AlgoBot is an intelligent chatbot that handles network security policy management tasks for you. AlgoBot answers your questions, submitted in plain English, and personally assists with security policy change management processes – without requiring manual inputs or additional research. The Result Reece Group choose AlgoSec because it aligned with their business needs. Some of benefits they got by using AlgoSec include: Empowering application developers – Developers are able to proactively check within Slack if the reason an application isn’t working is because of the firewall is blocking traffic or if the application is misconfigured. Faster request and response time – Application developers are quickly able to identify if a network change request is needed. They spend less time on troubleshooting and can proactively make valid change requests. IT also ceased becoming a bottleneck for application developers and were able to complete firewall changes in less than two hours from the initial change request. Reduced firewall ruleset by 85% –Rules declined from 3,000 rules to 450 rules. More time to work on business-critical projects – Firewall administrators are able to save time with easy-to-understand dashboards and automation, freeing up time to work on other business-critical projects. Clear understanding of risks and compliance – Easy out-of-the box dashboards and flags for risk and compliance issues make it easy for the company to understand and identify risks and compliance violations Schedule time with one of our experts

Explore Algosec's customer success stories to see how organizations worldwide improve security, compliance, and efficiency with our solutions. NCR ACCELERATES TOWARDS ZERO-TRUST Organization NCR Global Industry Financial Services Headquarters Georgia, USA Download case study Share Customer
success stories “AlgoSec helps us be vendor-agnostic and understand our full security posture to lead us down this journey to achieve zero-trust.” Scott Theriault, Global Manager Network Perimeter Security NCR Corporation Background NCR Corporation is a leading global point-of-sale (POS) provider for restaurants, retailers, and banks and a provider of multi-vendor ATM software. Headquartered in Atlanta, Georgia, NCR has over 36,000 employees in 160 countries, and solutions are distributed in 141 countries. As NCR expands into public cloud platforms such as AWS, they require consistent visibility and security policy management across both on-premises and cloud environments. The challenge NCR needed to connect its DevOps pipeline with its network security. With over 4,500 policy changes made annually, it was difficult to securely manage their entire networking and security environment while being responsive to application owners but still achieve zero trust. Strategically, they were aiming to automate and orchestrate security policy changes across their entire hybrid network, so they could securely accelerate application delivery. As applications and services moved into AWS, NCR also needed unified governance across physical firewalls, Cisco ACI, and cloud-native controls such as AWS Security Groups and AWS Network Firewall. The solution They implemented the AlgoSec Security Policy Management Solution, made up of AlgoSec Firewall Analyzer, AlgoSec FireFlow, and AlgoSec AppViz and AppChange. This solution is now part of AlgoSec Horizon, which also includes AlgoSec Cloud Enterprise (ACE) for cloud-native visibility and policy management . AlgoSec Firewall Analyzer enables organizations to discover, identify, and map business applications across their entire hybrid network. It analyzes complex network security policies across the network. It automates and simplifies security operations, including troubleshooting, auditing, and risk analysis. AlgoSec FireFlow enables security staff to automate the entire security policy change process from design and submission to proactive risk analysis, implementation, validation, and auditing. Its intelligent, automated workflows save time and improve security by eliminating manual errors and reducing risk. AlgoSec AppViz, the application visibility add-on for AlgoSec Firewall Analyzer, provides visibility for your network applications, enabling secure application delivery. AlgoSec AppChange, the application automation add-on for AlgoSec FireFlow, allows for changes at the business application level, including during the application migrations, server deployment, and decommissioning projects. With ACE, NCR also gains visibility into AWS environments, including VPCs, Transit Gateways, Security Groups, and AWS Network Firewall, ensuring consistent zero-trust controls across their hybrid network. The results AlgoSec is a strategic component of NCR’s network security, managing its entire network security infrastructure. The AlgoSec platform enables the NCR Corporation to manage application connectivity end-to-end across their network — including public cloud, Cisco ACI, and physical firewalls. With AlgoSec Horizon and ACE, NCR now extends this visibility into AWS cloud environments, unifying security policy management across firewalls, Cisco ACI, and AWS-native controls such as Security Groups and AWS Network Firewall. “Most products don’t understand the end-to-end environment. AlgoSec does,” noted Scott Theriault, Global Manager, Network Perimeter Security. Some of the ways that NCR Corporation benefits from AlgoSec include: Launched migration of their on-premises data centers into the Cisco ACI fabric. Extended micro-segmentation to Cisco ACI environment. Extended segmentation and zero-trust policy enforcement into AWS cloud architectures. Achieved complete visibility of their global security posture from a single dashboard. Automated risk analysis, achieving visibility and insights into the risk that changes introduce. Streamlined auditing process with to automatic logging and audit-ready compliance reports. Cleaned up and reduced firewall policies with rule cleanup, object cleanup, and policy tuning. Unified governance across on-prem, ACI, and AWS environments to support consistent zero-trust policy controls. “As we aspire to achieve zero-trust, when moving into the cloud, micro-segmentation and container security come into play. Therefore, we need tools like AlgoSec to assist us in the journey because most application owners don’t know what access is needed. This tool helps them learn what needs to be implemented to reduce the attack surface,” stated Theriault. Schedule time with one of our experts

Survey finds that 58% of respondents are concerned about security in the cloud, while misconfigurations are one of the leading causes of breaches and outages as public cloud adoption doubles over past two years Cloud Security Alliance Releases Latest Survey Report on State of Cloud Security Concerns, Challenges, and Incidents Survey finds that 58% of respondents are concerned about security in the cloud, while misconfigurations are one of the leading causes of breaches and outages as public cloud adoption doubles over past two years March 30, 2021 Speak to one of our experts SEATTLE – March 30, 2021 – The Cloud Security Alliance (CSA), the world’s leading organization dedicated to defining and raising awareness of best practices to help ensure a secure cloud computing environment, and AlgoSec , a leading provider of business-driven network and cloud security management solutions, today announced the results of a new study titled, “ State of Cloud Security Concerns, Challenges, and Incidents .” The survey, which queried nearly 1,900 IT and security professionals from a variety of organization sizes and locations, sought to gain deeper insight into the complex cloud environment that continues to emerge and that has only grown more complex since the onset of the pandemic. The survey found that over half of organizations are running 41 percent or more of their workloads in public clouds, compared to just one-quarter in 2019. In 2021, 63 percent of respondents expect to be running 41 percent or more of their workloads in public cloud, indicating that adoption of public cloud will only continue. Sixty-two percent of respondents use more than one cloud provider, and the diversity of production workloads (e.g. container platforms, virtual machines) is also expected to increase. Key findings include: Security tops concerns with cloud projects : Respondents’ leading concerns over cloud adoption were network security (58%), a lack of cloud expertise (47%), migrating workloads to the cloud (44%), and insufficient staff to manage cloud environments (32%). It’s notable that a total of 79 percent of respondents reported staff-related issues, highlighting that organizations are struggling with handling cloud deployments and a largely remote workforce. Cloud issues and misconfigurations are leading causes of breaches and outages : Eleven percent of respondents reported a cloud security incident in the past year with the three most common causes being cloud provider issues (26%), security misconfigurations (22%), and attacks such as denial of service exploits (20%). When asked about the impact of their most disruptive cloud outages, 24 percent said it took up to 3 hours to restore operations, and for 26 percent it took more than half a day. Nearly one-third still manage cloud security manually : Fifty-two percent of respondents stated they use cloud-native tools to manage security as part of their application orchestration process, and 50 percent reported using orchestration and configuration management tools such as Ansible, Chef and Puppet. Twenty-nine percent said they use manual processes to manage cloud security. Who controls cloud security is not clear-cut : Thirty-five percent of respondents said their security operations team managed cloud security, followed by the cloud team (18%), and IT operations (16%). Other teams such as network operations, DevOps and application owners all fell below 10 percent, showing confusion over exactly who owns public cloud security. “The use of cloud services has continued to increase over the past decade. Particularly now, in the wake of the COVID-19 public health crisis. With organizations struggling to address a largely remote workforce, many enterprises’ digital transformations have been accelerated to enable employees to work from home,” said Hillary Baron, lead author and research analyst, Cloud Security Alliance. “As an ever-more complex cloud environment continues to evolve, the need for supplementary security tools to improve public cloud security will, as well.” “In the face of complex environments, a dearth of security staff, and an overall lack of cloud knowledge, organizations are turning to security tools that can help supplement their workforce. Three of the top four benefits organizations look for in security management tools involve proactive detection of risks and automation. These types of tools can supplement the challenges many organizations are experiencing with lack of expertise (47%) and staff (32%), as well as improve visibility as they move toward an ever-changing cloud environment,” said Jade Kahn, AlgoSec Chief Marketing Officer.AlgoSec commissioned the survey to add to the industry’s knowledge about hybrid-cloud and multi-cloud security. Sponsors of CSA research are CSA Corporate Members, who support the findings of the research project but have no added influence on content development nor editing rights. The report and its findings are vendor-agnostic and allow for global participation. Download the free eBook now. About Cloud Security Alliance The Cloud Security Alliance (CSA) is the world’s leading organization dedicated to defining and raising awareness of best practices to help ensure a secure cloud computing environment. CSA harnesses the subject matter expertise of industry practitioners, associations, governments, and its corporate and individual members to offer cloud security-specific research, education, training, certification, events, and products. CSA’s activities, knowledge, and extensive network benefit the entire community impacted by cloud — from providers and customers to governments, entrepreneurs, and the assurance industry — and provide a forum through which different parties can work together to create and maintain a trusted cloud ecosystem. For further information, visit us at www.cloudsecurityalliance.org , and follow us on Twitter @cloudsa. About AlgoSec The leading provider of business-driven network security management solutions, AlgoSec helps the world’s largest organizations align security with their mission-critical business processes. With AlgoSec, users can discover, map and migrate business application connectivity, proactively analyze risk from the business perspective, tie cyber-attacks to business processes and intelligently automate network security changes with zero touch – across their cloud, SDN and on-premise networks. Over 1,800 enterprises, including 20 of the Fortune 50, have utilized AlgoSec’s solutions to make their organizations more agile, more secure and more compliant – all the time. Since 2005, AlgoSec has shown its commitment to customer satisfaction with the industry’s only money-back guarantee. www.algosec.com

AlgoSec’s new product manages network objects in firewall, SDN and cloud platforms to securely accelerate connectivity changes Finally, a single source of truth for Network Security Objects with AlgoSec ObjectFlow  AlgoSec’s new product manages network objects in firewall, SDN and cloud platforms to securely accelerate connectivity changes May 18, 2022 Speak to one of our experts RIDGEFIELD PARK, N.J., May 18, 2022 – AlgoSec, a global cybersecurity leader in securing application connectivity, has announced their new product, AlgoSec ObjectFlow, a network security object management solution for hybrid environments spanning cloud networks, SDNs and on-premises. According to Rik Turner, principal analyst at Omdia “in the complex environments that ensue from modern architectures such as SDN, as well as hybrid and multi-cloud environments, there is a very real risk of overlapping objects, making both their management from a security perspective a real headache. There is clearly the potential for automation to be applied to further streamline management.”  AlgoSec ObjectFlow offers the most comprehensive visibility and control of network objects across an entire hybrid environment. As a turnkey SaaS based solution, customers can leverage ObjectFlow’s advantages within minutes upon activation.  Professor Avishai Wool, AlgoSec CTO and co-founder states that ObjectFlow addresses a dire need in the market for optimal network object management as “most enterprise networks rely on a vast number of network objects that often refer to the same addresses in various forms, creating duplications and inconsistencies that can slow down changes to network connectivity and security policies. As a result, this leads to an increased risk of misconfigurations, outages and security breaches.”  Key benefits that ObjectFlow delivers to IT, network and security experts include:   Single source of truth   ObjectFlow is a central repository of all network objects used in security policies, allowing customers to maintain consistency of definitions across the multiple management systems used by various vendors. Object discovery and complete object visibility   ObjectFlow helps enterprises tap into SDNs and firewalls to discover all the objects on a network. Unique naming conventions can be created and organized based on individual needs and from multiple vendors. Automation of object changes   ObjectFlow makes automation of object changes possible from a central location. With official vendor API Integrations, manual labor is avoided, allowing for changes to be made within minutes instead of days.  Risk reduction   ObjectFlow provides full visibility and uniformity over network objects, breaking down organizational silos. With these processes in place, objects can be easily identifiable, allowing networks to be completely secure.  “Network security objects are the bread and butter of your network security posture,” said Eran Shiff, Vice President, Product of AlgoSec. “With ObjectFlow we give organizations a simple, effective way to manage their network security objects in a centralized object management solution. It helps IT teams to secure application connectivity and reduce the time spent by the security team, increasing efficiency across the board.”  To see how AlgoSec can help you better manage your network security objects with ObjectFlow, schedule your personal demo today. About AlgoSec   AlgoSec, a global cybersecurity leader, empowers organizations to secure application connectivity by automating connectivity flows and security policy, anywhere.  The AlgoSec platform enables the world’s most complex organizations to gain visibility, reduce risk and process changes at zero-touch across the hybrid network.   AlgoSec’s patented application-centric view of the hybrid network enables business owners, application owners, and information security professionals to talk the same language, so organizations can deliver business applications faster while achieving a heightened security posture.  Over 1,800 of the world’s leading organizations trust AlgoSec to help secure their most critical workloads across public cloud, private cloud, containers, and on-premises networks, while taking advantage of almost two decades of leadership in Network Security Policy Management.  See what securely accelerating your digital transformation, move-to-cloud, infrastructure modernization, or micro-segmentation initiatives looks like at www.algosec.com     Media Contacts:  Tsippi Dach  AlgoSec  [email protected]      Jenni Livesley  Context Public Relations  [email protected]   +44(0)300 124 6100