Most organisations are receiving a poor return on their firewall investments, according to a McAfee-sponsored IDC white paper entitled ‘The state of today’s firewall management challenges’.
The findings of the study indicate that an increasing number of network attacks, combined with an increasing amount of firewall rule sets, contribute to high costs of operating firewall architecture, as well as the lack of effectiveness against vulnerabilities.
"What's apparent from the survey is that firewall management is a key challenge facing organisations today," says Charles Kolodgy, research director at IDC. "The more rules included in the firewall, the harder it is to manage and less effective it can become. Firewall rules don't make an organisation more secure, but better rule management and improved firewall technology does."
IDC surveyed 260 firewall managers and IT executives in US and Europe, finding that the average enterprise faces about 300 network attacks every year while 10% of the organisations experienced more than 1 200 attacks per year. Respondents indicated that losses from data breaches were equivalent to more than 75% of their costs for operating firewall architecture.
According to the survey, many legacy firewalls depend on cumbersome technical rules that complicate an organisation's ability to audit and control compliance requirements. As a result, organisations drive up manual labour costs by dedicating employees to updating firewall rules, or chasing access or availability issues. Additionally, many network attacks result in data breaches, placing extreme costs on the organisation.
"There's a huge disconnect between the traditional firewall and the level of protection required for most enterprise environments," says Greg Brown, senior director of network security product marketing at McAfee.
"Firewalls must offer comprehensive security features without increasing complexity. Additionally, rules management must be simplified and should enforce the actual business security policy in order for organisations to receive the maximum benefit," he adds.
Related stories:
Moving into an information world
New defences against insider threat
McAfee boosts firewall
Share