I set a goal for my security team this year - Simplify, and then add lightness - just like Colin Chapman said.  With this in mind, we are changing our firewall at the office, as we now run almost all our services in AWS.  Would someone here have a sample or template for a firewall configuration specification that I could use as a starting point please?

2.2k views5 Upvotes4 Comments

Director of IT in Software, 201 - 500 employees
You can try the following links for the template.


CIO in Healthcare and Biotech, Self-employed
The answer, as usual, is: it depends. If you have a site-to-site VPN to their AWS environment, Amazon provides very clear templates for a variety of firewall platforms. If you are using Direct Connect, then it's just a matter of setting up the right routes. I think much more detail is needed before a question like this can be answered. Hope this helps.
Director in Manufacturing, 1,001 - 5,000 employees
This is out of my wheel house by a decade or more.  However in my experience you can get a very good starting point from the hardware vendor.  We were using CISCO a lot and I always started with their examples as a starting point and turned it from there to open or close off more services.
Worldwide Strategy & Portfolio, Cross Industry (Supply Chain, ESG, Engineering, Customer Experience, Intelligence Automation, ERP) in Manufacturing, 1,001 - 5,000 employees
Hi! Without too much information, I would advise to review the AWS Security best practices https://docs.aws.amazon.com/vpc/latest/userguide/security.html and apply the principles based on the company’s needs. One recommendation for replacement or SaaS, FortiGate has a great service and value currently.

Content you might like

We already use a Time-as-a-Service model21%

We would consider a Time-as-a-Service model60%

We would not consider a Time-as-a-Service model19%



Supply chain disruption24%

Sales growth slowdown36%

Decline in employee productivity15%

Stalled or suspended production/operations7%

Large redeployment or change in staff responsibilities4%

Disruption in new projects/ventures7%

Employee layoffs, furloughs or reduction in hours2%

Change in customer needs4%

No impact1%



CTO in Software, 201 - 500 employees
Without a doubt - Technical Debt! It's a ball and chain that creates an ever increasing drag on any organization, stifles innovation, and prevents transformation.
Read More Comments
41k views131 Upvotes319 Comments