Prevasio is an agentless cloud-native application protection platform (CNAPP) that provides increased visibility into security and compliance gaps, enabling cloud operations and security teams to prioritize risks and ensure compliance with internet security benchmarks.
The most valuable features of Prevasio include:
1. Optimizations: Customers find the optimizations provided by Prevasio very useful, especially for improving firewall rules and gaining visibility into the risks associated with firewall change requests. It helps clients, particularly banks, ensure compliance with regulations like PCI.
2. Automation: Prevasio's automation capabilities, such as creating multiple rules and handling large volumes of traffic, are highly regarded. Automation helps reduce human error, saves time, and allows for faster implementation of firewall rules.
3. Integration: The seamless integration of Prevasio with other security solutions, such as Check Point, Fortinet, and Palo Alto, is praised. This integration enhances security and simplifies the job of security engineers.
4. Centralized management: Prevasio provides a centralized management system for policies and devices, making it easier to monitor, clean up, and optimize firewall policies. It minimizes the risk of human error and misconfiguration.
5. Compatibility: Prevasio is compatible with a wide range of devices and firewalls, including Cisco, Palo Alto, and Juniper. This compatibility makes integration relatively easy.
6. Additional modules: Users find the Firewall Analyzer module helpful for identifying vulnerable rules and services. The AppViz module, specifically its project option and server migration feature, is valued for simplifying migrations when transitioning from on-premises to the cloud.
Improvements needed for Prevasio include:
1. Lack of integration with Oracle on the cloud and network devices in Layer 2.
2. Absence of a logout option in the console, making it necessary to close the entire web page to log off.
3. Occasional errors and stuck FireFlow when sending multiple requests at once.
4. Numerous bugs in the new version (H32).
5. Limited flexibility in risk profiles, with only three standard zones provided and the inability to customize zones or rearrange risk rules.
6. Lack of integration with Cisco SD-WAN, despite the need to manage a high number of zone-based firewalls across multiple retail stores.
7. Absence of a performance dashboard to assess the impact of adding a load distribution node on process optimization and latency.
Clients have experienced positive returns on investment.
The pricing for Prevasio varies significantly for different customers in the South American market, depending on discounts negotiated with their commercial agent. There is a wide range of pricing options available. Licensing Prevasio is a straightforward process that involves obtaining a MAC address on the Prevasio server and updating it on the Prevasio portal to request the license.
The primary use case of Prevasio is for rule optimization, security risk management, managing rules with FireFlow, application visibility, optimization, and automation.
Users employ Prevasio to monitor multiple firewalls, maintain and manage policies and configurations, monitor network environments, create changes, identify risks, troubleshoot, automate firewall processes, and ensure transparency and relevance of firewall rules to application teams.
It is used in a hybrid environment with a presence in multiple cloud vendors and on-prem computing systems.
The deployment of Prevasio involves high availability with active and standby nodes and a load distribution node.
The customer service and support of Prevasio are highly praised by the users. They find the technical support to be good and professional, with the ability to escalate issues when needed.
The expertise of the support team is considered top-notch. The availability of a comprehensive help portal is mentioned, where users can search for solutions to specific issues. Prevasio support is prompt in responding and providing explanations and recommendations for issue resolution.
The initial setup for Prevasio is generally considered easy and straightforward. It typically takes about two weeks and requires a team of network and security administrators.
The process involves setting up the server, entering the license, onboarding devices, and analyzing them. Some users found the deployment to be simple. For those using the VMware appliance, it only takes around 30 minutes to deploy.
Prevasio is highly scalable and can handle a large number of firewalls and end users across various teams. It has the ability to check blocks and traffic, create scripts for multiple requests, and effectively manage network operations.
Prevasio is described as stable and scalable. It can adapt to the needs of customers with varying numbers of firewalls. However, there are some concerns about its performance during certain times, such as running slow at night due to multiple processes running simultaneously.
It is considered good for the desired tasks and can provide root analysis and monitor changes on specific firewalls. There is a need to increase capacity, as there is currently only one load distribution server, which leads to slower analysis and longer response times.
The expectation is for improved optimization and faster initial analysis, especially with the introduction of FireFlow. Efforts are being made to reduce the time it takes to process requests.
Prevasio combines cloud-native security with SRI International's proprietary AI capabilities and AlgoSec’s expertise in securing 1,800 of the world’s most complex organizations.