Audit & harden your
Firewall Rules
FortiGate and security architecture reviews by a practitioner who holds CCNP, Fortinet, and OSCP together. We find the 30 – 200 stale or over-permissive rules hiding in your network and the segmentation gaps an attacker would exploit in minutes.
CCNP + Fortinet + OSCP combined lead Read-only review — zero downtime Free 30-day retest of high-severity fixes
Pricing — Four tiers
Pick your scope, lock the fee
From single-firewall audits for SMEs to multi-site DC + branch architecture reviews.
Starter
AED 12,000
Ideal for: Small UAE companies running a single small FortiGate (or equivalent).
Includes
- Single small FortiGate review
- Basic ruleset audit
- High-priority misconfiguration findings
- Remediation walkthrough call
Not included
- Full configuration audit
- Multi-firewall correlation
Designed for UAE SMEs under 30 employees. One-time engagement, no retest included.
Get a quoteEssentials
AED 18,000
Ideal for: Single-site companies that need a thorough firewall audit.
Includes
- Single FortiGate review — full configuration audit
- Ruleset hygiene + shadow rule analysis
- Threat-feed and IPS profile review
- VPN and remote-access posture
- Prioritised remediation report
Not included
- Network segmentation review
- Multi-site / DC-to-branch design
Professional
AED 35,000–55,000
Ideal for: Mid-market companies with multiple firewalls and VLAN-based segmentation.
Includes
- Multi-firewall correlation (up to 4 devices)
- Network segmentation review (VLAN, zones, micro-seg)
- East-west traffic analysis
- SD-WAN posture (if deployed)
- Architecture diagram + recommendation pack
Not included
- Multi-site / DC + branch architecture review
- OT/ICS network segmentation
Enterprise
AED 55,000–80,000
Ideal for: Multi-site organisations with DC, branch, and cloud edge.
Includes
- Multi-site architecture review (DC + cloud + branch)
- Hybrid edge + SD-WAN + cloud security gateway
- Zero-trust segmentation roadmap
- Disaster-recovery and failover validation
- Quarterly architecture re-review for 12 months
Not included
- OT/ICS environments (separate quote)
- Hardware procurement & installation
Not sure which tier fits?
Book a 20-min scoping callFlagship services — available now
Led by Vinoth Samiyappa — CCNP + Fortinet + Azure + Six Sigma. Hands-on network engineering meets security assessment.
Firewall & Network Security Review
FortiGate configs, firewall rules, network segmentation, routing security — reviewed by the rare CCNP + Fortinet + OSCP combination.
Security Architecture Review
Network zones, VPN, DMZ, access control, segmentation. Risk-rated findings and a target-state architecture you can actually implement.
Year 2 — 2027 roadmap
Implementation services that build on Year-1 assessment work.
Zero Trust Architecture Design
End-to-end ZTNA design — identity-driven, least-privilege, segmentation-first. For clients ready to replace VPN and flat networks.
Network Segmentation Implementation
Hands-on segmentation delivery — VLAN redesign, microsegmentation, PCI zone carve-out. Built with your network team, documented for your auditor.
Why this matters for UAE
Flat networks. Stale rule sets. Perimeter trust.
Most UAE mid-market networks are flat, perimeter-trusting, and running firewall rule sets that haven't been reviewed in years. FortiGate is the dominant platform in the region — and most organisations we've seen have 30 – 200 stale or overly permissive rules that an attacker would exploit in minutes.
Paired with our penetration testing work, a firewall and architecture review gives you the full picture: how the network is designed vs. how an attacker would actually move through it. Two perspectives, one team, one coordinated program.
Common questions
Will the review cause downtime or affect production traffic?
Do you only review FortiGate, or other firewall vendors too?
What's the difference between a Firewall Review and an Architecture Review?
Will you implement the recommended changes, or just hand over a report?
How does this work pair with penetration testing?
Will this support our ISO 27001, NESA, or PCI DSS compliance work?
When did someone last review your firewall rules?
Book a free 30-minute scoping call. We'll scope the review, deliver a risk-rated findings report, and walk your network team through every change we recommend.