AlgoSec's Six Levels of Change Management

Efficient change management is key to maintaining an organizations robust security posture. AlgoSec has embraced an innovative approach to change management proficiency characterized by six distinct levels of automation. In this Automation maturity model, each level is defined by how much customer interaction is required as automation progresses. It takes time to build up experience and confidence with AlgoSec products and this tiered structure mirrors the journey from manual change management to fully automated solutions. Each level of automation moves towards gradually reducing manual interactions as the user get more comfortable and the system becomes more automated.

The Six-levels approach

For details, click the thumbnail to enlarge:

Level 1 Manual control

At this initial stage, security operators are primarily responsible for the planning and execution of network-related tasks. AlgoSec provides essential visibility tools, such as the Firewall Analyzer and ACE, offering insights into network structures, security policies, and potential risks. At this level, the offering includes enhanced visibility and a better understanding of the network posture.

Level 2 Assisted control

As security operators progress to Level 2, a comprehensive change management solution is introduced. This includes a structured workflow that facilitates efficient task execution. While the workflow can be audited, operators continue to manually carry out various activities within the provided framework.

Level 3 Partial automation

Level 3 marks the transition towards more intelligent automation. Security operators receive assistance from AlgoSec’s policy management solution, including planning recommendations for the change management workflow. Security operators still own responsibility for the validation of firewalls in the path. Risk is automatically identified and the operator’s focus shifts towards approving the changes. The introduction of intelligent recommendations paves the way for reducing manual efforts and enhancing the change management process's efficiency.

Level 4 Conditional automation

Level 4 is the chosen level of most AlgoSec customers. The security operator’s workload decreases as rule changes are implemented automatically on the different devices. Security operators are still validating the firewalls in the path. Risk is automatically identified, and the operator’s focus shifts toward approving the changes and automatic implementation.

Level 5 High automation

Moving toward Level 5, more customization is required for automatic change implementation. The policy management solution automatically handles low-risk changes, while additional configuration may be necessary. Integration with external solutions like ServiceNow is recommended for a more tailored and sophisticated approach to automation.

Level 6 Full automation

At the highest level of automation maturity, AlgoSec’s policy management solution efficiently processes the majority of change requests submitted by application owners. This autonomous processing of changes in low-risk scenarios requires zero intervention from users. While operators still play a role in specialized cases and ongoing monitoring, Level 6 represents the pinnacle of automation, where the solution operates seamlessly, ensuring a highly efficient and reliable network environment.