AlgoSec provides a secure connection between applications and helps customers maintain regulatory compliance.
R. Engineer at a tech services company with 11-50 employees
It helps us audit complex environments to ensure firewalls are in compliance
Pros and Cons
- "The most valuable feature of AlgoSec is integration because it needs the be integrated with vendors' firewalls and other security products. AlgoSec has intelligent policy tuners."
- "The documentation could be better."
What is our primary use case?
How has it helped my organization?
The benefit depends on the type of client. Our banking customers are impressed with the compliance features, automatic policy installation, and FireFlow. They also realize performance improvements of approximately 20 percent.
AlgoSec has simplified the work of security engineers. If I had to give that a grade, I would give it a nine out of ten. We used the solution to implement and manage micro-segmentation initiatives. Still, it has been limited since this is a private cloud version, and many of our customers use regular firewalls.
We deal with customers with a mixture of environments, including private cloud, public cloud, and on-premises. Many of them have on-premises and private cloud environments. AlgoSec provides a single pane of glass for managing these mixed environments, making management more effortless.
What is most valuable?
The most valuable feature of AlgoSec is integration because it needs the be integrated with vendors' firewalls and other security products. AlgoSec has intelligent policy tuners.
It's easy to integrate AlgoSec with solutions from other vendors. It's currently integrated with the products of three or four vendors. We integrate AlgoSec with AppViz and other products to get complete visibility into our network policies, and FireFlow helps us manage risks from firewall change requests. It has reduced the time it takes to implement firewall rules by about 20%, according to the ROI calculator on the AlgoSec website. It varies, depending on the structure of the customer's environment.
AlgoSec also helps us audit complex environments to ensure firewalls are in compliance. The benefit is marginal if there is only one firewall and a few policies, but it's significant when you have three firewall clusters and 60 devices.
What needs improvement?
The documentation could be better.
Buyer's Guide
AlgoSec
December 2024
Learn what your peers think about AlgoSec. Get advice and tips from experienced pros sharing their opinions. Updated: December 2024.
824,067 professionals have used our research since 2012.
For how long have I used the solution?
I've been using AlgoSec for six years.
What do I think about the stability of the solution?
AlgoSec is stable.
What do I think about the scalability of the solution?
It's a scalable solution but there is room for improvement in that area. It has a high-availability structure, but some features need to be distributed using a collector, for example.
How are customer service and support?
I rate AlgoSec's support eight out of ten. I don't use it much, but it has improved greatly in the last two years.
How would you rate customer service and support?
Positive
How was the initial setup?
Setting up AlgoSec isn't complicated. You can install it in half an hour, but the configuration time depends on the environment. Sometimes, it takes a day, but it could take up to a week to analyze the files, etc. We have a two-person team responsible for deployment and maintenance, but we also have partners. In all, we have about 10 technicians supporting our customers.
What's my experience with pricing, setup cost, and licensing?
I don't know about pricing because I'm a technical guy. I can say the licensing model is straightforward and should be in the future. It isn't an issue for our customers.
What other advice do I have?
I rate AlgoSec an eight out of ten. I would recommend AlgoSec, depending on the client's structure and requirements. It's a good solution for regulatory compliance and analytics.
Disclosure: My company has a business relationship with this vendor other than being a customer: Distributor
Lead - Security Infrastructure Consultant at TSYS
Greatly improved the time and resources spent on creating and deploying our firewall rules
What is our primary use case?
We use AlgoSec to manage our firewalls and to manage our firewall ACL change workflow. We also use AlgoSec to get better visibility into our traffic flows, to optimize our firewalls rules, and to analyze risks.
How has it helped my organization?
AlgoSec has greatly improved the time and resources spent on creating and deploying our firewall rules. Our network and security teams can now smartly research our ACLs and implement them with confidence.
What is most valuable?
We found the traffic simulation query, active change, policy optimization, FireFlow, and map features to be especially helpful. All the other application features are valuable as well. We have yet to fully unleash its full potential.
What needs improvement?
The tech support and ticketing system could use some improvement and need more of a personal touch.
For how long have I used the solution?
Less than one year.
Disclosure: I am a real user, and this review is based on my own experience and opinions.
Buyer's Guide
AlgoSec
December 2024
Learn what your peers think about AlgoSec. Get advice and tips from experienced pros sharing their opinions. Updated: December 2024.
824,067 professionals have used our research since 2012.
Currently, the primary use is log analysis as we are migrating from Check Point to Palo Alto and need to purge the unused rules during migration.
What is our primary use case?
I have a North American wide multi-site network with a large amount, 100+ primary firewalls and hundreds of remote firewalls. We have loaded into AlgoSec most of these via CheckPoint CMA and Palo Alto Panorama. Currently, the primary use is log analysis as we are migrating from CP to PA and need to purge the unused rules during migration.
How has it helped my organization?
It is helping with the migration as we don’t carry over empty rules and allows consolidation of rules.
What is most valuable?
AFA analyze reports are the biggest use case to review the rules before migration and removing the unused rules for cleanup.
What needs improvement?
The Network Map is a feature that could use work, it is a big piece but is always a moving target with large routing tables in use and speed of use becomes an issue doing queries.
For how long have I used the solution?
Three to five years.
What do I think about the scalability of the solution?
In 2018.1 release the VIP always up is a great feature and a 3-way cluster is a good idea.
Which solution did I use previously and why did I switch?
We were a Tufin user but moved due to a POC with another asset we acquired which had AlgoSec and at the end we preferred AlgoSec.
Disclosure: I am a real user, and this review is based on my own experience and opinions.
Digital Security Specialist at Derivco
Improves firewall performance, saves engineers time in optimization, and the technical support is responsive
Pros and Cons
- "The most valuable feature is the Firewall Analyser, which has a number of fantastic features."
- "I would like to see enhanced dashboards or build meaningful reports for executive consumption."
What is our primary use case?
The purpose of using the product was to attack and Analyse rule bases from a holistic perspective. The Firewall Analyzer has a rule base consolidator as well as a feature to make the rule base more permissive. It also helps to reduce rule base clutter, as well as legacy rules.
Traffic query helps us to quickly find rules that allow outbound access.
FireFlow is a useful ticketing system that integrates with many products.
We would like to use FireFlow's API to automate certain tickets that come through to leverage automation in our environment.
How has it helped my organization?
An example is that we have a policy with 900 rules, which we were able to reduce to 500 rules. That's close to a 50 percent savings on the rule base.
We used the Unused rules function in Firewall Analyser to examine our rule base. This has drastic performance increases in our production firewalls.
Objects not used within rules can save even more when it comes to cleaning up rule bases. Where this is a very manual process without AlgoSec, engineers can have a level of automation by building useful reports to assist with clean up.
What is most valuable?
The most valuable feature is the Firewall Analyser, which has a number of fantastic features.
From a risk perspective, you can apply compliance Frameworks like ISO 27001 and PCI DSS against firewall rule bases to see if your rule base is compliant. If you are not then AlgoSec provides descriptive ways on how to adjust rules to make your rule base more compliant.
Definitely, the policy-cleanup features are the main draw. Shadowed rules, rule duplication, rule consolidation, rules permitting too much access, and rule usage are very useful and help to clean up rule bases.
What needs improvement?
There are areas where auditing rule changes are not accurate. It is important to be accurate when using rule changes, as users need to be accountable for their changes; however, I cannot trust AlgoSec when rule changes come through on reports as they reflect incorrectly. I have taken this up with support and have never really had a resolution for this.
I would like to see enhanced dashboards or build meaningful reports for executive consumption.
AlgoSec is a fantastic product, and I would like to see more "granular" breakdowns of traffic on IPT traffic analysis for source and destination, as the way it does it currently does not allow me to self problems for rules with ANY in the destination.
For how long have I used the solution?
We have been using AlgoSec for one and a half years.
What do I think about the stability of the solution?
The stability is good.
What do I think about the scalability of the solution?
Scalability-wise, this product is good.
How are customer service and technical support?
The technical support is always responsive and always willing to understand the issues.
Which solution did I use previously and why did I switch?
Our previous solution was not useful and did not have an intuitive interface. Support was also terrible.
How was the initial setup?
The initial setup is straightforward. If you understand your infrastructure, it will be easy to deploy in a central location.
What about the implementation team?
Our deployment was done through a vendor team and it took one week.
What was our ROI?
We haven't saved any money yet but we have improved the performance of certain devices.
What's my experience with pricing, setup cost, and licensing?
I would suggest that you start with a VM, get a PoC with a temp license, and try it out. You will love it.
Which other solutions did I evaluate?
I would not like to disclose which other products, but I have used two other products that didn't even come close to AlgoSec's power.
What other advice do I have?
Its a good production and good support, definitely worth it.
Which deployment model are you using for this solution?
On-premises
Disclosure: I am a real user, and this review is based on my own experience and opinions.
Network and Security Engineer at Inmarsat
End-to-end visibility and analysis of the rule base facilitates securing and streamlining of our environment
Pros and Cons
- "The complete and end-to-end visibility and analysis it provides of the policy rule base is invaluable and saves countless time and effort."
- "In terms of additional features in the next release, more integration with SD-WAN would be valuable."
What is our primary use case?
We primarily use AlgoSec for Firewall Security Management, Firewall Policy Automation, and Auditing. Our firewall estate environment is complex, multi-vendor, and across many sites, so we needed a product that would integrate seamlessly, encompassing all sites and platforms.
It's an ongoing process and we are constantly learning about new features of the product that would be beneficial in terms of helping secure, consolidate, and streamline our environment.
We are well on the road to achieving this with the help of their Professional Services team.
How has it helped my organization?
It has saved us much time, helping us work smarter and more efficiently with regards to policy/ruleset management, automation, and consolidation. This product has saved us numerous person-hours in terms of automation and consolidation.
The various elements of the product have allowed us to cover all aspects of Firewall Security Management, Firewall Policy Automation, and Auditing, which all help to leverage the product's full potential.
Having learned more about the product, going forward we believe it will allow us to benefit in additional areas of Firewall security management.
What is most valuable?
We have found the Firewall analyzer to be most valuable in terms of policy ruleset management. However, policy ruleset management, automation, and auditing are all good features.
The complete and end-to-end visibility and analysis it provides of the policy rule base is invaluable and saves countless time and effort.
The automation possibilities the FireFlow product provides will also be very useful going forward in terms of time and effort saved, as well as reliability and efficiency.
Overall, the Firewall Analyzer is hugely beneficial in terms of policy ruleset management.
What needs improvement?
Nothing comes to mind in terms of things that need to be improved.
In terms of additional features in the next release, more integration with SD-WAN would be valuable.
I would also like to see more integration with Cloud security products and services but overall, the product compatibility and integration with multi-vendor and differing platforms/environments is pretty comprehensive. That said, with the fast-moving nature of SD-wan and Cloud Security, product features and enhancements will need to keep pace because clearly, Cloud Security is where the industry will be focusing.
For how long have I used the solution?
We have been using AlgoSec for nearly a year.
What do I think about the stability of the solution?
AlgoSec is as stable as can be expected.
What do I think about the scalability of the solution?
It is highly scalable and more than meets the requirements for our environment.
How are customer service and technical support?
They were very good, responsive, knowledgeable, and usually resolved issues quickly.
Which solution did I use previously and why did I switch?
We did not use another product prior to AlgoSec for the same purpose.
How was the initial setup?
The initial setup was fairly straightforward; however, with the usual initial setup niggles and teething issues.
What about the implementation team?
The Professional Services team assisted us and had a very good level of expertise.
What was our ROI?
ROI is very well leveraged.
What's my experience with pricing, setup cost, and licensing?
Setup cost and pricing were reasonable and the licensing was straightforward.
Which other solutions did I evaluate?
We didn't evaluate other products as we had a previous, much smaller deployment of AlgoSec that we were happy with.
What other advice do I have?
Overall, I am happy with the product; it meets and even exceeds our expectations and ticks all the boxes in terms of reasons for purchasing it.
Which deployment model are you using for this solution?
On-premises
Disclosure: I am a real user, and this review is based on my own experience and opinions.
Senior Consultant at Deloitte Portugal
Simplifies configuration and rule management
Pros and Cons
- "The most valuable feature is that the tool is capable of simplifying firewall management and configuration in an automated fashion."
- "In a complex landscape, with several nodes/equipment, it can be somewhat more difficult to properly visualize the network map."
What is our primary use case?
We use this solution for the management of firewalls on a client with a multi-vendor landscape and a low maturity level in terms of security operations and mechanisms. The AlgoSec tool supported the necessary transformation we were helping the client with, centralizing and simplifying the management of all firewalls in several sites across the globe.
How has it helped my organization?
AlgoSec is a powerful firewall management tool. I have supported a client implementing the firewall analyzer in an environment with several firewall vendors and poor management. The implementation went smoothly, with good support from the AlgoSec team. However, the configuration was tricky due to the maturity of the client and the ‘messy’ situation, and the internal know-how available regarding what was implemented on the multiple sites.
What is most valuable?
The most valuable feature is that the tool is capable of simplifying firewall management and configuration in an automated fashion. Additionally, the fact that it is also possible to implement a FW management workflow clearly supports the improvement of the 'way of working' and operation of the FW environment.
What needs improvement?
The network mapping interface could be improved in the next version. In a complex landscape, with several nodes/equipment, it can be somewhat more difficult to properly visualize the network map. It requires several zoom-in and zoom-out operations, and it is not so visually appealing. Nevertheless, it is still a valuable feature and was highly used by my team.
For how long have I used the solution?
We have been using this solution for four months.
Which other solutions did I evaluate?
We evaluated other options before choosing this solution including Skybox and Palo Alto Panorama.
What other advice do I have?
Do not underestimate the configuration effort, especially on a more complex landscape.
Disclosure: I am a real user, and this review is based on my own experience and opinions.
Director of Information Security Operations at a manufacturing company with 1,001-5,000 employees
Easy to use with good FW optimization and logging capabilities
Pros and Cons
- "It helps to perform FW cleanup, regulations requirement, FW migration projects, etc."
- "I would like to see Bi-Directional API support in order to integrate with SOAR platforms that provide SOC automation and IRR."
What is our primary use case?
AlgoSec is used on a daily basis by both our IT and IS groups to manage BAU and FW change requests. It integrates with ServiceNow, PaloAlto, and our SIEM tool. It helps to perform FW cleanup, regulations requirement, FW migration projects, etc.
How has it helped my organization?
AlgoSec has helped me in the last three companies that I have worked for. I was working to do Firewall migration projects, FW cleanups of risky rules (FW policy optimization), process def between IT and IS, audit, SOC reports, GRC support, and Cloud support in both native and Hybrid environments that we use.
What is most valuable?
The features that I have found most valuable are:
- Great visibility for High-risk firewall rules
- Mapping business risks
- Mapping risky applications
- Informative regulation reports for PCI-DSS, ISO 27001 and many more
- FW cleanup recommendation
- Easy logging capabilities with leading SIEM products in both LEEF and Syslog formats
What needs improvement?
I would like to see Bi-Directional API support in order to integrate with SOAR platforms that provide SOC automation and IRR.
Integration with CISO dashboards would be an improvement.
It would be nice to have support for IaaS, CASB, and DLP tools, which will allow full life cycle management of security incidents.
It would be nice to have an out of the box "best practices recommendation" with the relevant "what-ifs".
For how long have I used the solution?
Ten years.
What do I think about the scalability of the solution?
This solution scaled to our entire enterprise in a seamless way.
Which solution did I use previously and why did I switch?
We also used Tufin, but AlgoSec provided us better visibility and ease of use.
What's my experience with pricing, setup cost, and licensing?
My advice is that you must do a POC and show value.
Which other solutions did I evaluate?
We did not evaluate options other than AlgoSec and Tufin.
Disclosure: I am a real user, and this review is based on my own experience and opinions.
Works at a manufacturing company with 10,001+ employees
Helped optimize our environment during transition to newer Firewall technology
Pros and Cons
- "It helps in regulatory compliance metrics and overall firewall security optimization."
- "The user interface could be a little more user-friendly."
What is our primary use case?
It is currently used by the network security, audit, and internal control departments of organizations where I have deployed the application. It gives overall insight/visibility and enhances security across the enterprise.
How has it helped my organization?
Our company environment used old fashioned firewall devices for a long time and we hardly touched on old firewall rules. With this product, we were able to clean up our firewall rules and organize them neatly. It actually gave us a very straightforward report of what is being used, and not used, for firewall rules.
AlgSec is used for in-depth firewall analysis and intelligent policy tuning and optimization. It helps in regulatory compliance metrics and overall firewall security optimization.
What is most valuable?
I like the auto-mapping features and configuration overview. We use this for many things, but primarily for quick reactions to security events, audit, project management, and quick operational efficiencies.
- Firewall rule optimization
- Regulatory and baseline compliance analysis/mapping
- Policy tuning
- Application discovery
- Automated Change management
What needs improvement?
The reporting portion is weaker than other competitors, although this is good enough to utilize in our environments.
Enhanced integration via API (typically, this is only known by few AlgoSec users).
The user interface could be a little more user-friendly. Other competitors have more of a dashboard look and feel. With AlgoSec, you have to launch new windows to see rule usage reports. It can be a little bit difficult when trying to find more information.
For how long have I used the solution?
Two years.
Which solution did I use previously and why did I switch?
Our company was using old fashioned firewall devices.
Which other solutions did I evaluate?
We did POC on FireMon and AlgoSec. We chose AlgoSec for our company environment.
Disclosure: I am a real user, and this review is based on my own experience and opinions.
Buyer's Guide
Download our free AlgoSec Report and get advice and tips from experienced pros
sharing their opinions.
Updated: December 2024
Product Categories
Firewall Security ManagementPopular Comparisons
Tufin Orchestration Suite
Fortinet FortiGate Cloud
FireMon Security Manager
Skybox Security Suite
Palo Alto Networks Panorama
AWS Firewall Manager
Azure Firewall Manager
ManageEngine Firewall Analyzer
Fortinet FortiPortal
Cisco Defense Orchestrator
Opinnate
Buyer's Guide
Download our free AlgoSec Report and get advice and tips from experienced pros
sharing their opinions.
Quick Links
Learn More: Questions:
- From your experience, what are the technical differences between AlgoSec and FireMon?
- What Is The Biggest Difference Between AlgoSec and FireMon?
- What is the biggest difference between AlgoSec and Tufin?
- What is your opinion on Fortinet FortiManager vs AlgoSec? Are they complementary?
- What are the differences between Palo Alto Networks Panorama and AlgoSec?
- Comparing network security vendors and devices
- When should companies use SSL Inspection?
- When evaluating Firewall Security Management, what aspect do you think is the most important to look for?
- What are the most important features you would be looking for in a firewall?
- How do I estimate the required firewall throughput for my organization?