WIXLIB

SONICWALL CAPTURESECURITY CENTERCloud-delivered single pane of glass unified management,analytics for network, endpoint and cloud securitySonicWall Capture Security Center is anopen, scalable cloud-based securitymanagement software delivered as acost-effective as-a-service offering fororganizations and service providers ofvarious sizes and use cases. It offers theultimate in visibility, agility and capacityto centrally govern the entire SonicWallsecurity ecosystem with greater clarity,precision and speed – all from a singlepane of glass. This cloud- and serviceoriented architecture unifies andconnects SonicWall security services andmanagement tools to help gain betteroperational efficiencies and elasticity,while supporting a broader cyberdefense strategy.Guided by business processes and servicelevel requirements, Capture SecurityCenter helps Security Operation Centers(SOCs) form the foundation for a unifiedsecurity governance, compliance and riskmanagement strategy. By establishing aholistic, connected approach to securityorchestration, Capture Security Centerfederates operational aspects of network,endpoint and cloud security via a simple,common management framework. Itsimplifies and, in many cases, automatesvarious tasks to promote better securitycoordination and decision-making, whilereducing the complexity, time andexpense of performing securityoperations and administration tasks.These tasks include firewall and endpointprovisioning, configuration, monitoring,reporting, patching, auditing, and trafficand data analytics that is invaluable tothe detection and response to securityproblems before they occur.Benefits: Unified security governance,compliance and risk managementsecurity program An integration-friendly managementconsole for all your SonicWall Solutions Automated workflows assure securitycompliance & error-free policymanagement Simple and fast zero-touch remotedeployment and provisioning ofSonicWall firewalls Single-pane visibility and situationalawareness of the network securityenvironment Deep investigative and forensicanalysis of enriched security data Reduced incident response time withreal-time, actionable threat intelligence

Capture Security Center provides SingleSign-On access to license, provision andmanage all your network, endpoint andcloud security services. These servicesinclude Firewall Management, Analytics,Capture Client and Cloud ApplicationSecurity. Our vision of unifying the fullbreadth of SonicWall security portfoliounder one integration-friendlymanagement tool includes web, wireless,email, mobile and IoT security services.1The combination of these cloud servicesdelivers layered mission-critical cyberdefense, threat intelligence, analysis andcollaboration, and common management,reporting and analytics that worksynchronously together. With softwareupdates and support included in an activesubscription service, access to any latestinnovations and enhancements isimmediate. This helps manage securityrisks, help fulfill regulatory obligations,and defend against the newestvulnerabilities and threats in anautomated fashion. With limitlessscalability and flexibility, Capture SecurityCenter readily adapts to capacity andbusiness changes on demand.Capture ClientSentinelOne, Capture Client appliesadvanced threat protection techniques,such as machine learning and systemrollback. This protects against bothfile-based and fileless malware, whiledelivering a 360-degree attack view withactionable intelligence relevant forinvestigations. Combined with SonicWallfirewalls, Capture Client also addsvisibility into encrypted traffic, throughthe management of trusted SSLcertificates used for Deep PacketInspection of SSL/TLS traffic.Assessible within the Capture SecurityCenter is the SonicWall Capture Client, aunified client platform that deliversmultiple endpoint protection capabilities.With a next-generation malwareprotection engine powered byCloud-Based ManagementAnywhereWindows& Mac OSNext-Generation Malware Prevention TechnologySonicWall Capture Client PlatformUnifiedClientEndpointReportingAntivirus Enforcement& ManagementDPI-SSL CertificateManagementCapture nt1 Web, wireless, email, mobile and IoT security services will be fully integrated into this platform in future product announcements.2

Cloud App SecurityThe SonicWall Capture Security CenterAnalytics subscription bundle empowerscustomers with shadow IT visibility andcontrol over the usage of cloudapplications. SonicWall Cloud AppSecurity provides CASB-like functionality.It enables administrators to discoverusage of risky applications, track useractivity, and set allow/block policies forsanctioned and unsanctioned ITapplications on managed firewalls toprotect sensitive data.3Shadow IT discovery, Real-time visibility,and Application classification & controlare the key capabilities of the Cloud AppSecurity service. The service ensures safeadoption of SaaS applications withoutimpacting employee productivity and at alow total cost of ownership.1.Shadow IT discovery: Leverageexisting firewall log files to automatecloud discovery to identifyapplications being used and their riskposture.2.Real-time application visibility:Monitor usage in real-time with anintuitive dashboard view thatprovides details of applications beingused, traffic volume, user activity andlocation of use.3.Application classification andcontrol: Classify unmanaged cloudapplications into Sanctioned Apps (ITapproved) or Un-Sanctioned Apps(Not IT approved), and set allow/block policies based on theapplication risk score.

Workflow AutomationEmploying native workflow automation,Capture Security Center helps SOCsconform to firewall policy changemanagement and auditing requirementsof various regulatory laws such as PCI,HIPPA and GDPR. It enables policychanges by applying a series of rigorousprocedures for configuring, comparing,validating, reviewing and approving1. CONFIGUREAND COMPARECapture SecurityCenter configurespolicy changeorders and colorcodes differencesfor clearcomparisonsfirewall policies prior to deployment.The approval groups are flexible tocomply with varying authorizationand audit procedures from differenttypes of organizations. Workflowautomation programmatically deployssanctioned security policies to improveoperational efficiency, mitigate risks andeliminate errors.2. VALIDATECapture SecurityCenter performsan integrityvalidation of thepolicy’s logic3. REVIEW &APPROVECapture SecurityCenter emailsreviewers andlogs an approval/disapproval audittrail of the policyWorkflow Automation: Four steps to error-free policy management4Capture Security Centerprovides a holisticapproach to securitygovernance, complianceand risk management.4. DEPLOY5. AUDITCapture SecurityCenter deploysthe policy changesimmediately or ona scheduleThe change logsenable accuratepolicy auditingand precisecompliance data

Zero-Touch DeploymentIntegrated into Capture Security Center isthe Zero-Touch Deployment service,which simplifies and speeds theprovisioning process for SonicWallSTEP 1firewalls at remote and branch officelocations. The process requires minimaluser intervention, and is fully automatedto operationalize firewalls at scale in foureasy deployment steps. This significantlyreduces the time, cost and complexityassociated with installation andconfiguration, while security andconnectivity occurs instantly andautomatically.REGISTER THE FIREWALLRegisters the new firewall in MySonicWall using its assigned serial number and authentication code.STEP 2CONNECT THE FIREWALLConnects the firewall to the network using the ethernet cable that came with the unit.STEP 3POWER UP THE FIREWALLPower up the firewall after connecting the power cable and plugging it into a standard wall outlet. Units areautomatically assigned a WAN IP using DHCP server. Once connectivity is established, the unit is automaticallydiscovered, authenticated, and added to Capture Security Center with all licenses and configurations synchronizedwith MySonicWall and License Manager.STEP 4MANAGE THE FIREWALLThe unit is now operational and managed via the Capture Security Center cloud-based central management consolesuch as firmware upgrades, security patching, and group level configuration changes.Zero-Touch Deployment: Operationalize firewall in four easy steps5

ReportingCapture Security Center offers over 140predefined reports, as well as theflexibility to create custom reports usingany combination of auditable data toacquire various use-case outcomes.6These outcomes include big-picture anddetailed awareness of network events,user activities, threats, operational andperformance issues, security efficacy,risks and security gaps, compliancereadiness, and even post-mortemanalysis. Every report is designed withthe collective input from many years ofSonicWall customer and partnercollaborations. This provides the deepgranularity, scope and knowledge ofsyslog and IPFIX/NetFlow data SOCsneed to track, measure and run aneffective network and security operation.

AnalyticsSonicWall Analytics is an intelligencedriven big data analysis engine thatautomates the aggregation,normalization, correlation, andcontextualization of security data flowingthrough all managed firewalls. It givesorganizations real-time insight intoeverything that is happening across theirnetworks. The results, presented in astructured, meaningful, actionable andeasily consumable way, empower securityteam, analysts, auditors, boards, C-Suitesand stakeholders to discover, interpret,prioritize, make decisions and takeappropriate defensive and correctiveactions.Analytics presents real-time visualization,monitoring and alerting of enrichedsecurity data through a single pane ofglass. It comes with powerful tools thatgive customers complete authority, agilityand flexibility to perform extensivedrill-down investigative analysis ofnetwork traffic, user activities, securityevents, threat profile, applicationutilization, and a myriad of othercontextual firewall data. This deepvisibility, knowledge and understandingof the security environment givescustomers valuable insight and thecapacity to not only uncover securityrisks, but also orchestrate remediation,while monitoring and tracking the resultswith greater clarity and speed. Analyticsenables customers to operationalizesecurity analysis and integrate it intobusiness processes to transform data intoinformation, information into knowledge,and knowledge into decisions that enableachieving full security automation.7 Gain eagle-eye viewinto everythingg Calibrate securitypolicies and controls Empowerstakeholderswith single-panevisibility and insightsAGGREGATEDATA Exercise risk-baseddecision-making andremediationCONTEXTUALIZEDATADETECT ANDREMEDIATE Enrich firewallsecurity dataActionable Insightand Knowledge Operationalizeanalytics viareal-time, SUSERANALYTICS Show enriched datain a meaningful,actionable andconsumable manner,and speed Create knowledgerepresentations ofanalytic data Monitor results withgreater clarity, certaintyand speed Perform deepdrill-down investigativeand forensic analysis

8