Fortinet Firewall Automated Best Practice Compliance Testing

📝 Overview

Cyfora is a cybersecurity platform company specializing in security compliance testing and automated vulnerability assessment. During my internship from February 23 to May 29, 2025, I worked on a critical project to develop an automated framework for Fortinet firewall configuration compliance testing. My role involved designing and implementing a comprehensive solution that validates firewall configurations against industry best practices.

In the initial phase of my internship, I contributed to Cyfora's existing Palo Alto firewall analyzer, where I implemented various security compliance checks. This foundational work was invaluable as it provided deep insight into Cyfora's analysis platform architecture, data flow mechanisms, and proven architectural patterns. This knowledge significantly accelerated my efficiency when transitioning to the Fortinet project.

The primary focus of my internship was designing and implementing the Fortinet Firewall framework, which addresses a critical need: Fortinet firewalls contain hundreds of configuration parameters that are impractical to manually verify for compliance. I engineered an end-to-end solution that reads Fortinet YAML configurations, validates them against 24 security best practices (including administrative policies, network zones, IPS/AV profiles, access control policies, and more), and generates an interactive compliance report. The framework architecture follows Cyfora's proven patterns while being specifically optimized for Fortinet's configuration schema.

The framework has been successfully implemented as part of Cyfora's platform and now enables their clients to automatically validate firewall configurations for security compliance. This solution directly reduces the time and error rate associated with manual compliance verification, providing immediate business value to Cyfora's customer base.

🎓 Key Learnings

[Add your specific learnings from the internship here. Focus on 2-3 key insights that shaped your professional development.]

📚 Evidence & Deliverables

The following documents and files have been reviewed and verified by my internship supervisor:

ℹ️ Note: All evidence documents have been verified by my internship supervisor. Some files may contain proprietary information and have been appropriately redacted.

🚀 Skills Developed

During my internship, I developed or strengthened the following professional and technical skills:

🏢 About the Company

[Provide background about the company so readers understand the context of your internship. Include industry, company size, main products/services, and any relevant market position.]