Tufin Tech Talks

In hybrid environments, understanding who changed a security policy — and whether it was authorized — is increasingly difficult. Limited visibility across on-prem and cloud platforms makes audits and investigations more complex. This workshop demonstrates how to gain clear, consistent visibility into security policy changes across hybrid networks. [more] Participants will learn how to track policy and configuration changes across firewalls and cloud-native controls, investigate unauthorized activity, and maintain accountability across teams. The session shows how consistent change visibility improves operational confidence and simplifies audit and compliance efforts. Attendees will leave with a practical understanding of how to monitor, investigate, and report on security changes across distributed environments.

Troubleshooting connectivity issues across hybrid environments is often slow and manual, especially when routing, NAT, cloud joins, and firewall policy all affect the actual traffic path. This workshop shows how security and network teams can visualize end-to-end traffic flows, validate enforcement paths, and quickly identify where misconfigurations or missing topology data are causing problems;[more] In this technical workshop, attendees will see how to analyze real network paths across on-prem and cloud environments to understand how traffic is routed, translated, and evaluated by security policy along the way. The session focuses on practical troubleshooting techniques that help teams validate expected access, investigate broken or incomplete paths, and improve confidence in policy enforcement. Attendees will walk away with a clearer approach to resolving connectivity issues faster, validating real-world traffic behavior, and improving visibility across distributed hybrid networks.

Implementing security policy changes in cloud and hybrid environments often involves too much manual effort, inconsistent execution, and limited validation after deployment. This workshop demonstrates how teams can automate the design, verification, and provisioning of policy changes to improve speed, accuracy, and control across distributed environments.  [more] Attendees will see how security teams can streamline the full lifecycle of policy changes - from intelligently designing requested access, to validating implementation against the original request, to automatically provisioning approved changes across firewalls and cloud platforms. The session highlights practical automation workflows that help reduce manual handoffs, enforce governance, and improve operational consistency. The workshop emphasizes how change automation can help teams accelerate delivery, reduce implementation errors, and maintain better compliance across complex cloud and hybrid environments.

To keep up with business demands, security policies are often made overly permissive — particularly in cloud and hybrid environments. While this enables agility, it also expands the attack surface. This workshop focuses on how to intelligently optimize firewall and cloud security policies using real usage data.[more] Attendees will see how security teams can analyze real traffic patterns to identify high-risk rules and replace broad access with more precise, usage-based policies. The session demonstrates how optimization can be applied consistently across on-prem and cloud-native environments without impacting application availability. The workshop emphasizes continuous improvement, helping teams move beyond one-time cleanups to an ongoing, data-driven optimization approach.

Security policies tend to grow faster than they get cleaned up — especially in hybrid on-prem and cloud environments. Over time, unused and outdated rules quietly increase risk and operational complexity. This workshop shows how security teams can regain control by identifying and safely removing unnecessary access across hybrid networks.[more] In this technical workshop, attendees will see how to reduce policy sprawl without disrupting business traffic. The session focuses on practical, real-world techniques to identify obsolete rules, validate actual usage, and establish repeatable cleanup practices across both on-prem firewalls and cloud-native controls. Participants will walk away with a clear approach to improving policy hygiene, reducing exposure, and simplifying ongoing security policy management in hybrid environments.