https://live.paloaltonetworks.com/t5/next-generation-firewall/palo-alto-firewall-risk-assessment/m-p/589668#M3308 <P>Hello&nbsp;<a href="https://live.paloaltonetworks.com/t5/user/viewprofilepage/user-id/596147711">@gajji229</a></P> <P>&nbsp;</P> <P>I would start with reviewing&nbsp;<A href="https://docs.paloaltonetworks.com/best-practices" target="_self">Best Practices</A>&nbsp;articles. Also CIS has published a collection of audit items:&nbsp;<A href="https://www.tenable.com/audits/CIS_Palo_Alto_Firewall_11_Benchmark_v1.0.0_L1" target="_self">CIS_Palo_Alto_Firewall_11_Benchmark_v1.0.0_L1</A>. Refer to right side for "RISK ASSESSMENT" categories.</P> <P>&nbsp;</P> <P>Lastly, I would recommend to enable AIOps:&nbsp;<A href="https://docs.paloaltonetworks.com/ngfw/aiops/best-practices-in-ngfw" target="_self">best-practices-in-ngfw</A>. With AIOps you can&nbsp;tighten security posture by aligning with best practices.</P> <P>&nbsp;</P> <P>Kind Regards</P> <P>Pavel</P> Mon, 17 Jun 2024 00:29:30 GMT PavelK 2024-06-17T00:29:30Z https://live.paloaltonetworks.com/t5/next-generation-firewall/palo-alto-firewall-risk-assessment/m-p/589665#M3307 <DIV id="bodyDisplay" class="lia-message-body lia-component-message-view-widget-body lia-component-body-signature-highlight-escalation lia-component-message-view-widget-body-signature-highlight-escalation"> <DIV class="lia-message-body-content">I got request to do PA risk assessment for my environment, do you have any suggestions how should i,&nbsp; do Any documents/steps/url that i can follow to do the same.</DIV> </DIV> <DIV class="lia-rating-metoo lia-component-me-too lia-component-message-view-widget-me-too"> <DIV class="RatingDisplay lia-component-ratings-widget-rating-display">&nbsp;</DIV> </DIV> Sun, 16 Jun 2024 15:17:39 GMT https://live.paloaltonetworks.com/t5/next-generation-firewall/palo-alto-firewall-risk-assessment/m-p/589665#M3307 gajji229 2024-06-16T15:17:39Z https://live.paloaltonetworks.com/t5/next-generation-firewall/palo-alto-firewall-risk-assessment/m-p/589668#M3308 <P>Hello&nbsp;<a href="https://live.paloaltonetworks.com/t5/user/viewprofilepage/user-id/596147711">@gajji229</a></P> <P>&nbsp;</P> <P>I would start with reviewing&nbsp;<A href="https://docs.paloaltonetworks.com/best-practices" target="_self">Best Practices</A>&nbsp;articles. Also CIS has published a collection of audit items:&nbsp;<A href="https://www.tenable.com/audits/CIS_Palo_Alto_Firewall_11_Benchmark_v1.0.0_L1" target="_self">CIS_Palo_Alto_Firewall_11_Benchmark_v1.0.0_L1</A>. Refer to right side for "RISK ASSESSMENT" categories.</P> <P>&nbsp;</P> <P>Lastly, I would recommend to enable AIOps:&nbsp;<A href="https://docs.paloaltonetworks.com/ngfw/aiops/best-practices-in-ngfw" target="_self">best-practices-in-ngfw</A>. With AIOps you can&nbsp;tighten security posture by aligning with best practices.</P> <P>&nbsp;</P> <P>Kind Regards</P> <P>Pavel</P> Mon, 17 Jun 2024 00:29:30 GMT https://live.paloaltonetworks.com/t5/next-generation-firewall/palo-alto-firewall-risk-assessment/m-p/589668#M3308 PavelK 2024-06-17T00:29:30Z