AWS Firewall Manager is a security management service that makes it easier to centrally configure and manage AWS WAF rules across your accounts and applications. Using Firewall Manager, you can easily roll out AWS WAF rules for your Application Load Balancers and Amazon CloudFront distributions across accounts in AWS Organizations. As new applications are created, Firewall Manager also makes it easy to bring new applications and resources into compliance with a common set of security rules from day one. Now you have a single service to build firewall rules, create security policies, and enforce them in a consistent, hierarchical manner across your entire Application Load Balancers and Amazon CloudFront infrastructure.
Ensure compliance of existing and new applications
AWS Firewall Manager can ensure existing and newly created resources comply with a mandatory set of security policies automatically. The service can discover new Application Load Balancer or Amazon CloudFront resources as they are created across accounts. For example, if you are required to meet US Department of Treasury’s Office of Foreign Assets Control (OFAC) regulations, you can use Firewall Manager to deploy a rule to block traffic from embargoed countries across your Application Load Balancer and Amazon CloudFront accounts.
Simplify management of rules across your organization
AWS Firewall Manager is integrated with AWS Organizations so you can enable AWS WAF across multiple AWS accounts and resources from a single place. You can group rules, build policies, and consistently apply those policies across your entire Application Load Balancing and Amazon CloudFront infrastructure. For example, you can delegate the creation of application-specific rules within an account while retaining the ability to enforce global security policies across accounts.
Easily deploy Managed Rules for AWS WAF
AWS Firewall Manager also integrates with Managed Rules for AWS WAF, which gives you an easy way to deploy pre-configured WAF rules in front of your applications. This means you can choose a Managed Rule provided and updated by an AWS Marketplace Seller and deploy it consistently across your Application Load Balancer and Amazon CloudFront infrastructure with just a few clicks in the console. For example, you can easily protect your entire organization from zero-day vulnerabilities by subscribing to a Managed Rule for WAF from the AWS Marketplace that provides CVE patch updates.
Enable rapid response to internet attacks
With AWS Firewall Manager, your security team can be notified of threats so they can respond and rapidly mitigate an attack. For example, when Amazon GuardDuty discovers a malicious IP address accessing your application, you can quickly deploy a firewall protection policy to apply a block for the IP address across all your Application Load Balancers and Amazon CloudFront distributions across your entire organization.