In addition to helping you keep your firewalls functionally
healthy, AIOps for NGFW aids in verifying that they
are providing you with effective protection against security threats.
Security posture assessments currently don't support multiple virtual systems; only
the default virtual system (vsys1) is considered during configuration
processing.
Monitor Security Posture Insights: Get visibility into the security status and trend of your
deployment based on the security postures of the onboarded NGFW devices.
Monitor Security Subscriptions: View the recommended Cloud-Delivered Security Services (CDSS)
subscriptions and their usage in your devices.
Assess Vulnerabilities:
View the vulnerabilities impacting a specific firewall and PAN-OS version, aiding in
your decision-making process regarding whether an upgrade is necessary.
Monitor Compliance Summary: View a history of changes to the security checks made up to 12
months in the past, grouped together by the Center for Internet Security (CIS) and
the National Institute of Standards and Technology (NIST) frameworks.
Proactively Enforce Security Checks: Take proactive measures against suboptimal configurations by
blocking commits that don't pass particular best practice checks.
Policy Analyzer: Get analysis and suggestions for possible consolidation or removal of specific
policy rules to meet your intended Security posture, as well as checks for
anomalies, such as shadows, redundancies, generalizations, correlations, and
consolidations in your rulebase.
