{"id":57058,"date":"2018-01-16T05:00:07","date_gmt":"2018-01-16T13:00:07","guid":{"rendered":"https:\/\/www.paloaltonetworks.com\/blog\/?p=57058"},"modified":"2020-03-16T16:54:58","modified_gmt":"2020-03-16T23:54:58","slug":"5-critical-mistakes-avoid-choosing-ngfw-silo","status":"publish","type":"post","link":"https:\/\/www2.paloaltonetworks.com\/blog\/2018\/01\/5-critical-mistakes-avoid-choosing-ngfw-silo\/","title":{"rendered":"5 Critical Mistakes to Avoid: Choosing an NGFW in a Silo"},"content":{"rendered":"<p><em>This post is part of a\u00a0<a href=\"https:\/\/www.paloaltonetworks.com\/blog\/tag\/5-critical-mistakes\/\">blog series where we dive into the five critical mistakes<\/a>\u00a0to avoid when evaluating a next-generation firewall. Avoid these, and you\u2019ll be well on your way to picking the right next-generation firewall.<\/em><\/p>\n<p>How will you know if the NGFW you\u2019re considering is the right one for your organization? The safest bet is to test it. But when evaluating and selecting a new NGFW, there are some common mistakes security professionals often make. One of these critical mistakes is highlighted in detail below, along with insight and recommendations to help you avoid the blunder.<\/p>\n<p><strong>Mistake #2: Choosing an NGFW in a Silo<\/strong><\/p>\n<p>Several teams within IT count on the firewall to effectively and efficiently perform their job functions, all of which have very different needs and priorities:<\/p>\n<ul>\n<li><strong>Networking team<\/strong>: hassle-free integration with current architecture, ease-of-use\/deployment, network uptime.<\/li>\n<li><strong>Security team<\/strong>: seamless integration with existing security controls, better overall security, threat prevention versus detect-and-respond tactics.<\/li>\n<li><strong>Security operations team:<\/strong> single-pane management, automated features and capabilities.<\/li>\n<li><strong>Data center team<\/strong>: automated features and capabilities, scalability to meet evolving needs, single-pane management.<\/li>\n<li><strong>Application team<\/strong>: simple, fast and secure application deployment.<\/li>\n<\/ul>\n<p>In a typical evaluation scenario, the firewall vendor works directly with the networking team to evaluate and implement a firewall. Accounting only for the needs of the networking team is a critical mistake with potentially dire results for other teams that rely on the firewall. For example, the networking team usually isn\u2019t concerned with security and may prefer an option that doesn\u2019t account for the scope of security your business demands. The security and security operations teams should be engaged early to provide input into the level of threat prevention and other security capabilities required. For the sake of overall business efficiency and success, organizations must account for the varying needs of all key stakeholders when choosing a new firewall.<\/p>\n<p>To avoid choosing an NGFW in a silo, while also ensuring maximum performance, security and ROI, run a proof of concept in your organization. A POC allows you to accurately test next-generation firewalls, their affiliated services and subscriptions \u2013 either on their own or against one another \u2013 in your actual, operational IT environment, whether it is physical, virtual or a hybrid.<\/p>\n<p>For more critical mistakes to avoid when evaluating a next-generation firewall, download the white paper: <a href=\"https:\/\/www.paloaltonetworks.com\/resources\/whitepapers\/five-critical-mistakes-to-avoid-when-evaluating-a-ngfw\">5 Critical Mistakes When Evaluating a Next-Generation Firewall<\/a>.<\/p>\n","protected":false},"excerpt":{"rendered":"<p>Stephanie Johnson shares the second of five critical mistakes to avoid when purchasing a new NGFW.  <\/p>\n","protected":false},"author":249,"featured_media":56373,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"_jetpack_memberships_contains_paid_content":false,"footnotes":""},"categories":[5,6717],"tags":[5190,145,111],"coauthors":[2745,1419],"class_list":["post-57058","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-firewall","category-products-and-services","tag-5-critical-mistakes","tag-next-generation-firewall","tag-ngfw"],"jetpack_featured_media_url":"https:\/\/www2.paloaltonetworks.com\/blog\/wp-content\/uploads\/2018\/01\/shark-520x320_LinkedIn.jpg","jetpack_sharing_enabled":true,"_links":{"self":[{"href":"https:\/\/www2.paloaltonetworks.com\/blog\/wp-json\/wp\/v2\/posts\/57058","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www2.paloaltonetworks.com\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www2.paloaltonetworks.com\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www2.paloaltonetworks.com\/blog\/wp-json\/wp\/v2\/users\/249"}],"replies":[{"embeddable":true,"href":"https:\/\/www2.paloaltonetworks.com\/blog\/wp-json\/wp\/v2\/comments?post=57058"}],"version-history":[{"count":6,"href":"https:\/\/www2.paloaltonetworks.com\/blog\/wp-json\/wp\/v2\/posts\/57058\/revisions"}],"predecessor-version":[{"id":107800,"href":"https:\/\/www2.paloaltonetworks.com\/blog\/wp-json\/wp\/v2\/posts\/57058\/revisions\/107800"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/www2.paloaltonetworks.com\/blog\/wp-json\/wp\/v2\/media\/56373"}],"wp:attachment":[{"href":"https:\/\/www2.paloaltonetworks.com\/blog\/wp-json\/wp\/v2\/media?parent=57058"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www2.paloaltonetworks.com\/blog\/wp-json\/wp\/v2\/categories?post=57058"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www2.paloaltonetworks.com\/blog\/wp-json\/wp\/v2\/tags?post=57058"},{"taxonomy":"author","embeddable":true,"href":"https:\/\/www2.paloaltonetworks.com\/blog\/wp-json\/wp\/v2\/coauthors?post=57058"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}