ConfigSentry Executive Security Report

Leadership Security Overview

Account Report Banner
Your report banner here
Overall Security Posture
Critical

Critical issues were found and should be prioritised for remediation.

Highest Severity Critical
Critical Findings 5
Critical + High 26
Executive Summary

Executive Security Overview

This assessment identified critical security weaknesses. 5 critical findings and 21 high-risk findings indicate that the firewall control environment requires urgent leadership attention and prioritised remediation.

The most prominent risk themes in this audit relate to Compliance & Policy, Network Exposure, and Logging & Visibility. There are also signs of governance and control-process weakness affecting logging & visibility, compliance & policy, configuration management, and management plane.

Report Information

Assessment Context

Audit Name
Outer-90E Audit
Vendor / Type
Fortinet/FortiGate
Audit Template
Default (System) - Firewall Baseline
Key Risk Areas

Most Material Areas of Concern

Compliance & Policy
Critical

Urgent weaknesses were identified in this area. 9 findings contribute to audit failures and regulatory sanctions.

Network Exposure
High

Significant weakness was identified in this area. 14 findings contribute to external threats gaining foothold in internal networks.

Logging & Visibility
High

Significant weakness was identified in this area. 7 findings contribute to delayed incident detection and response.

Other Security Controls
High

Significant weakness was identified in this area. 2 findings contribute to various operational and security risks.

Severity Overview

Finding Severity Distribution

Critical
5
High
21
Medium
3
Low
3
Informational
5
Outcome Snapshot

Audit Result Overview

Fail Results
32
Informational
5
Pass Results
298
Total Results
335
Business Impact

Why Leadership Should Care

Compliance and Governance Exposure

Control gaps in these areas can increase audit-readiness concerns, evidence gaps, and regulatory or contractual exposure.

Increased Attack Surface

Current findings suggest unnecessary exposure or overly broad access paths that may increase the likelihood of external compromise or lateral movement.

Reduced Security Visibility

Gaps in monitoring or audit evidence can slow incident detection, weaken investigations, and reduce management confidence in control effectiveness.

Security Control Exposure

The current findings indicate weaknesses that may reduce the effectiveness of the firewall as a business control.

Priority Recommendations

Immediate Leadership Priorities

1

Address policy and standards alignment gaps to improve audit readiness and governance confidence.

2

Reduce internet-facing and cross-zone exposure where access is broader than business requirements demand.

3

Improve security logging and monitoring coverage so material events can be detected, investigated, and evidenced more effectively.

4

Review remaining security control gaps and incorporate them into a tracked remediation plan.

5

Review remote access pathways and ensure VPN controls align with current access and authentication expectations.

Compliance / Governance Snapshot

Governance View

Audit Readiness: Concerning

Critical findings suggest that control assurance and audit readiness should be treated as a management priority.

CIS FortiGate Benchmark Fortinet Best Practices NIST_800_53 PCI_DSS
Governance Theme

Policy and standards alignment should be reviewed.

Governance Theme

Audit evidence and monitoring coverage should be strengthened.

Governance Theme

Administrative and access governance controls require management oversight.

This report was generated by ConfigSentry by secdit.

Product Website Main Website Contact Us