Assess your Firewall Configuration against security issues that could affect your organisation negatively, leading to information exposure or breach of data.

Get In Touch

We will not share your details with third parties.

Shall we keep you informed on the threat reports & useful guidance? No salesy newsletters. View our privacy policy.

What is Firewall security assessment?

A firewall security review, also known as firewall ruleset review or risk assessment, is aimed at finding weaknesses in a device’s configuration, rulesets, management and compliance. 

 In this cloud era, firewalls are very much a vital component of network security architecture. Our firewall security review helps you to understand the weak areas that must be reviewed to limit the exposure to your systems. Assessing the firewall configuration for security configuration issues, vulnerabilities, management or user oversights that when exploited could lead to a breach of network.

Multiple different types of firewalls are used by companies to protect their data and systems. We have WAF (Web Application Firewalls), Application level gateways, Network firewall with stateful inspections, ‘virtual’ firewalls and cloud firewalls.

Firewall security assessment

Benefits of a secure Firewall configuration

Schedule your Firwall Security Review today

Common Security Vulnerabilities

Firmware versions, management protocols configuration, file tranfers/remote administration protocols

Logging and monitoring controls are reviewed to identify flaws in event collection, storage, analysis and threat identification.

Either service provider or customer’s IT team have temporary changes, large/excessive attack surfaces been allowed.

Auditing of firewall rule bases often shows the presence of noise (unnecessary broadcast protocols), duplicate rules, temporary rules, comments, use of ANY/large rules 

Configuration and use of encryption methods for HTTPS, SSH, VPN transformations (in case of a VPN),  data at rest and in transit.

Restrictions on administrative and management interfaces internally (internal network/DMZ) and externally (over the internet)

Authentication and authorization mechanisms responsible for user authentication, internal integrations (RADIUS/AD/etc), interface restrictions and authorizations

Frequently Asked Questions about Firewall Security Assessments

We welcome all major Firewalls and have vast experience of reviewing WAFs (Imperva, IBM, Mod sec), Cloud firewalls, CheckPoints to traditional Cisco devices, VPN concentrators and Small business ranges such as Watchguard, Sonicwall.

Firewall reviews can be conducted as an ad-hoc exercise or as part of cyber health checks. Should you wish to read further about pen testing , our in-depth blog article on penetration testing is an excellent source. 

Configuration and network traffic allowed through the firewall should be in line with functional requirements of the business. 

Whether it’s business as usual review or after changes, it’s important to find out weaknesses in your firewall configuration and rulebase to identify gaps. These gaps could aid an attacker to initiate unauthorised connections to outside systems in order to exfiltrate data, set up command and control channels or other malicious actions.

It is common setup to use external partners for IT needs of a business. We work with you and your third-party vendors to ensure they provide a secure service and are aware of risks to the firewall or managed devices.

No. There is no active attack activity carried out against the device, therefore, it is a completely manual and often passive task (where configuration is provided in a file).

A firewall security assessment does not take more than couple of days, based on the firewall functionality and ruleset size. Costs are generally calculated based on the day rate based activity needed to perform this review.

Firewall risk remediation is sometimes a complex process due to the specialist security skill-set needed for IT teams. 
Optionally, we provide remediation consultancy to ensure all agreed findings are mitigated in line with best security practices.

Firewall Penetration Testing Methodology

Step 1
Step 1
Customer Business Insight
The very first step remains our quest to gain insight into drivers, business, pain points and relevant nuances. As part of this process, we understand the assets that are part of the scope.
Step 2
Step 2
Services Proposal
It is important to gain grips with the reality, therefore, we always stress on walkthroughs or technical documentation of the assets. After asset walkthroughs, a tailored proposal is designed to meet your business’ specific requirements.
Step 3
Step 3
Execution and Delivery
Cyphere’s approach to all work involves excellent communication with technical skill-set.
Step 4
Step 4
Data Analysis & Reporting
Execution phase is followed by data analysis and reporting phase. Cyphere performs analysis on the testing output, evaluates the risk impact and likelihood of exploitation in realistic scenarios before providing action plans to remediate the identified risks. All our reports address business as well as the technical audience with supporting raw data, including mitigation measures at strategic and tactical levels
Step 5
Step 5
Debrief & Support
As part of our engagement process, customers schedule a free of charge debrief with management and technical teams. This session involves remediation plan, assessment QA to ensure that customer contacts are up to date in the language they understand.

Our Assessment Services

Network & Infrastructure Penetration Testing

  • Protect your business against evolving network & infrastructure threats
  • Check services, patching, passwords, configurations & hardening issues
  • Internal, external, network segregation & device reviews
  • PCI DSS, ISO 27001, GDPR Compliance support
  • Helps shape IT strategy & investments

Web Application & API Pen Testing

  • Assess real-world threats to web applications
  • Validate secure design best practices against OWASP Top 10
  • Timely check to avoid common pitfalls during development
  • Ensure strong authentication, authorisation, encryption mechanisms
  • Find loopholes to avoid data leakage or theft

Mobile Penetration Testing

  • Assess real-world mobile app security vulnerabilities
  • Validate secure design & configuration best practices
  • Increased flexibility and productivity of users through secure mobile offerings
  • Ensure strong mobile app authentication, authorisation, encryption mechanisms
  • Find mobile app or device loopholes to avoid data leakage or theft
  • PCI DSS, ISO 27001, Compliance Support

Cloud Penetration Testing

  • Better visibility on cloud process aligning
  • Secure validation of internal and third party integrations
  • Support ever changing regulatory/compliance requirements
  • Ensure strong authentication, authorisation, encryption mechanisms
  • Demonstrate data security commitment
  • Less is more – reduced costs, servers and staff

Digital Attack Surface Analysis

  • Attack surface analysis to identify high risk areas and blind spots
  • Improve your security team’s efficiency
  • Streamline your IT spends
  • Lower Risks and Likelihood of Data Breaches

Recent Blog Entries