Looking for some advice regarding Palo Alto hardening configurations.
My company has adopted Palo Alto as our perimeter firewall and has tasked me to decide on the specific hardening standards we should be adopting. I am looking at the Best Practice Assessment feature and also CIS benchmark for comparison.
It seems to me that CIS benchmark is a subset of the best practice assessment after doing checking the results. As we are using CIS benchmark for servers, i would to prefer to use CIS benchmark as well. And given that CIS benchmark seems to be a subset of BPA, using it as the first step in setting up the internal benchmark seems to be a better idea.
What do you guys think?
P.S. I came from an IT audit background and tbh i don't have a strong knowledge over networking but might be planning to get one in the near future. Need some profession advice from pros over here.
No comments:
Post a Comment