Prevasio Reviews

Name: Prevasio
Brand: AlgoSec
Rating: 4 (10 reviews)

4.4 out of 5

10 reviews
90% willing to recommend

What is Prevasio?

Prevasio is an agentless cloud-native application protection platform (CNAPP) that provides increased visibility into security and compliance gaps, enabling cloud operations and security teams to prioritize risks and ensure compliance with internet security benchmarks.

Get the Prevasio Buyer's Guide and find out what your peers are saying about Prevasio, Prisma Cloud by Palo Alto Networks and more!

Prevasio is the #6 ranked solution in top Container Monitoring solutions, #16 ranked solution in top Cloud-Native Application Protection Platforms (CNAPP) solutions, and #20 ranked solution in top Cloud Security Posture Management (CSPM) solutions. PeerSpot users give Prevasio an average rating of 8.8 out of 10. Prevasio is most commonly compared to Prisma Cloud by Palo Alto Networks: Prevasio vs Prisma Cloud by Palo Alto Networks.

Helped 814,649 peers since 2012

Featured reviews

Juan Tolosa

Production Manager at Assertiva S.A.

The optimizations are the most useful aspect because most customers have a very unmanaged network with a lot of rules. We use a lot of the optimizations in our reports for improving firewall rules. It also provides our clients with full visibility into the risks involved in firewall change requests and that is very important because our clients are often banks that must be in compliance with PCI. And when it comes to preparing for audits and ensuring that firewalls are in compliance, the solution is very useful. We are able to do it very fast. We can do a lot of iterations and get better policy rules all the time. Although not many of our clients are migrating to the cloud, for those that are, AlgoSec is useful. The part of the process that takes a long time is the human part. We must have gap committees and approvals that take a long time. But the integration itself is very easy with AlgoSec. We have all the information in our hands about the traffic we must enable on the cloud and for making new rules. All that is automated.

Read full review

Andrew Kemna

Network Infrastructure Engineer at Cigna/Express Scripts

We can use it to create new rules. It will consider huge lists of lines of traffic in one rule at once, and multiple requests, which is amazing. The most valuable feature is the automation that can be accomplished by using scripts. If we didn't have AlgoSec, I would have to do everything manually. It can create multiple rules for multiple requests at once. It can handle hundreds of them and in fact, it's ridiculous how much it can handle. The fact that it can also check for blocks while you're creating new requests is awesome. Automation has helped to reduce human error and misconfigurations. It is now a lot better than it was before. This solution has absolutely reduced the time that it takes to implement firewall rules. If we didn't have FireFlow, we would have to do a lot of things manually. With as many firewall requests as we have daily, we would lose a lot of time. For example, sometimes we get between 20 and 40 firewall requests a week and I can do all 20 of those in one day if they are okay in terms of the traffic. Trying to do 20 requests manually would take a lot more time. As it is now, I just have to put them in through an Excel sheet and it not only saves me time and stress, it saves the company money. Also, the requester is happy because it is done fast and we can do multiple requests at once. Not only does it make me happy, partly because it frees up my time to do other things, but it makes the requester happy too.

Read full review

reviewer1642593

Sr. Design Architect - Network Security at a retailer with 10,001+ employees

There is a little bit of scope for improvement in the risk profiles that come with the AlgoSec Firewall Analyzer module. Currently, AlgoSec provides only three standard zones within a risk profile. These standard zones are external, internal, and DMZ. Everybody's network is divided into different zones within a data center, but AlgoSec only provides three zones. This is a limitation that I see for the risk profile analysis. If there was an option to customize these zones, it would be great. Risk profiles currently require a lot of understanding. The UI needs a little bit of flexibility in terms of rearranging risk rules within a profile. For example, when I create rules in a risk profile, it numbers them as Rule 1, Rule 2, Rule 3, and so on. If I delete Rule 2, it doesn't reorder them on its own. Rule 2 is deleted, but I just cannot place any other rule as Rule 2. There needs to be more flexibility in building risk profiles. We would like to have AlgoSec integrate with Cisco SD-WAN. We are a retail company, and we have about 2,500 stores. We have the SD-WAN solution across all stores. So, we need to manage a high number of zone-based firewalls. If AlgoSec can add integration with Cisco SD-WAN in the roadmap, it would be awesome. After you add a load distribution node, there is no dashboard to tell us how the performance has improved. I can raise a couple of tickets, or I have to do a lot of permutation and combination in terms of testing to figure out whether it has really optimized the process and latency. If we can have a performance dashboard to give us information about the performance change with the AlgoSec tool, it would be great.

Read full review

Prevasio mindshare

Product category:

As of November 2024, the mindshare of Prevasio in the Cloud-Native Application Protection Platforms (CNAPP) category stands at 0.1%, down from 0.1% compared to the previous year, according to calculations based on PeerSpot user engagement data.

Cloud-Native Application Protection Platforms (CNAPP)

Key learnings from peers

Valuable Features

The most valuable features of Prevasio include:

1. Optimizations: Customers find the optimizations provided by Prevasio very useful, especially for improving firewall rules and gaining visibility into the risks associated with firewall change requests. It helps clients, particularly banks, ensure compliance with regulations like PCI.

2. Automation: Prevasio's automation capabilities, such as creating multiple rules and handling large volumes of traffic, are highly regarded. Automation helps reduce human error, saves time, and allows for faster implementation of firewall rules.

3. Integration: The seamless integration of Prevasio with other security solutions, such as Check Point, Fortinet, and Palo Alto, is praised. This integration enhances security and simplifies the job of security engineers.

4. Centralized management: Prevasio provides a centralized management system for policies and devices, making it easier to monitor, clean up, and optimize firewall policies. It minimizes the risk of human error and misconfiguration.

5. Compatibility: Prevasio is compatible with a wide range of devices and firewalls, including Cisco, Palo Alto, and Juniper. This compatibility makes integration relatively easy.

6. Additional modules: Users find the Firewall Analyzer module helpful for identifying vulnerable rules and services. The AppViz module, specifically its project option and server migration feature, is valued for simplifying migrations when transitioning from on-premises to the cloud.

"The optimizations are the most useful aspect because most customers have a very unmanaged network with a lot of rules. We use a lot of the optimizations in our reports for improving firewall rules."
"The most unique feature is the ability to help fix any gaps or mismatches in the configuration of the firewall."
"The most valuable feature is the automation that can be accomplished by using scripts. If we didn't have AlgoSec, I would have to do everything manually."

Room for Improvement

Improvements needed for Prevasio include:

1. Lack of integration with Oracle on the cloud and network devices in Layer 2.

2. Absence of a logout option in the console, making it necessary to close the entire web page to log off.

3. Occasional errors and stuck FireFlow when sending multiple requests at once.

4. Numerous bugs in the new version (H32).

5. Limited flexibility in risk profiles, with only three standard zones provided and the inability to customize zones or rearrange risk rules.

6. Lack of integration with Cisco SD-WAN, despite the need to manage a high number of zone-based firewalls across multiple retail stores.

7. Absence of a performance dashboard to assess the impact of adding a load distribution node on process optimization and latency.

"Integration with Oracle on the cloud is not supported.I would also like to see integrations with network devices in Layer 2."
"AlgoSec cannot be integrated with solutions that require two-step or multi-factor authentication. Embedding multi-factor authentication capability into the solution would be a valuable feature."
"When we send multiple requests across at once, sometimes it causes errors and FireFlow gets stuck. In cases like this, we have to go back in and fix it."

ROI

Clients have experienced positive returns on investment.

Pricing

The pricing for Prevasio varies significantly for different customers in the South American market, depending on discounts negotiated with their commercial agent. There is a wide range of pricing options available. Licensing Prevasio is a straightforward process that involves obtaining a MAC address on the Prevasio server and updating it on the Prevasio portal to request the license.

"For the South American market, the prices are very high."
"I heard that the licensing was around $100,000 a year."

Popular Use Cases

The primary use case of Prevasio is for rule optimization, security risk management, managing rules with FireFlow, application visibility, optimization, and automation.

Users employ Prevasio to monitor multiple firewalls, maintain and manage policies and configurations, monitor network environments, create changes, identify risks, troubleshoot, automate firewall processes, and ensure transparency and relevance of firewall rules to application teams.

It is used in a hybrid environment with a presence in multiple cloud vendors and on-prem computing systems.

The deployment of Prevasio involves high availability with active and standby nodes and a load distribution node.

Service and Support

The customer service and support of Prevasio are highly praised by the users. They find the technical support to be good and professional, with the ability to escalate issues when needed.

The expertise of the support team is considered top-notch. The availability of a comprehensive help portal is mentioned, where users can search for solutions to specific issues. Prevasio support is prompt in responding and providing explanations and recommendations for issue resolution.

Deployment

The initial setup for Prevasio is generally considered easy and straightforward. It typically takes about two weeks and requires a team of network and security administrators.

The process involves setting up the server, entering the license, onboarding devices, and analyzing them. Some users found the deployment to be simple. For those using the VMware appliance, it only takes around 30 minutes to deploy.

Scalability

Prevasio is highly scalable and can handle a large number of firewalls and end users across various teams. It has the ability to check blocks and traffic, create scripts for multiple requests, and effectively manage network operations.

Stability

Prevasio is described as stable and scalable. It can adapt to the needs of customers with varying numbers of firewalls. However, there are some concerns about its performance during certain times, such as running slow at night due to multiple processes running simultaneously.

It is considered good for the desired tasks and can provide root analysis and monitor changes on specific firewalls. There is a need to increase capacity, as there is currently only one load distribution server, which leads to slower analysis and longer response times.

The expectation is for improved optimization and faster initial analysis, especially with the introduction of FireFlow. Efforts are being made to reduce the time it takes to process requests.

These insights are based on the in-depth reviews provided by peers to help you make a better buying decision.

Download our Prevasio Buyer's Guide for additional reliable information.

Compare Prevasio with alternative products

Learn more about Prevasio

Prevasio combines cloud-native security with SRI International's proprietary AI capabilities and AlgoSec’s expertise in securing 1,800 of the world’s most complex organizations.