Security Profiles
Where Can I Use This? | What Do I Need? |
- NGFW (Cloud Managed)
- NGFW (PAN-OS & Panorama Managed)
- Prisma Access (Cloud Managed)
- Prisma Access (Panorama Managed)
|
Check for any license or role requirements for the products you're
using.
- Certain features may require Advanced WildFire, Advanced URL
Filtering, Advanced Threat Prevention, or DNS Security
license
|
Security profiles are a fundamental component of the security infrastructure, playing a
vital role in strengthening your network against a wide array of cyberthreats . These
profiles are collections of security settings and parameters that include, but are not
limited to antivirus, antispyware, vulnerability protection, URL filtering, file
blocking, and data filtering.
Antivirus and
Anti-Spyware profiles are designed to detect and
prevent malicious software and spyware from infiltrating the network. They scan traffic
for known and unknown threats, employing signature-based and behavior-based detection
mechanisms to swiftly respond and mitigate potential security breaches.
Vulnerability Protection profiles focus on identifying and
blocking exploits and vulnerabilities that bad actors might attempt to leverage. These
profiles proactively safeguard systems and applications from potential weaknesses that
cybercriminals exploit to compromise networks.
URL Filtering profiles let you manage and control user access
to websites and web applications. They classify URLs based on predefined categories,
allowing you to enforce Security policies and reduce exposure to risky sites.
File Blocking profiles monitor and regulate the types of files
transferred through the network, helping prevent the dissemination of malicious or
unwanted file types. By restricting or blocking certain file extensions or content
types, you can minimize the risk of malware propagation.
Data Filtering profiles, also known as data loss prevention
(DLP) profiles, focus on protecting sensitive data by identifying and controlling its
transmission. These profiles ensure that confidential information, such as credit card
numbers or social security numbers, isn't inadvertently leaked or accessed by
unauthorized parties.
Customizing and fine-tuning security profiles to align with your specific security
requirements is essential. You can tailor these profiles to suit your needs by adjusting
settings, adding exceptions, or incorporating custom rules.
In additional to individual profiles, you can combine profiles that are often applied
together, and create
Security Profile Groups.
You must create a security profile group to add security profiles to policy rule in
Strata Cloud Manager, but PAN-OS and Panorama do not have this requirement.