I mainly use this application to check the flows. I work for a big company in the network team which needs to check the flows every day.
Works at a tech services company with 10,001+ employees
Detects in a few seconds which flows are right or wrong which saves a lot of troubleshooting time
What is our primary use case?
How has it helped my organization?
This application is very nice. We save a lot of time with troubleshooting the flows and we can detect in a few seconds what flows are right or wrong.
What is most valuable?
The AlgoSec Firewall Analyzer is for me the most valuable thing in this application. I don't know how much time we saved with this application, but I now know that without it, we would lose several hours every day solving networks incidents.
We also use the AlgoSec FireFlow to generate and manage the tickets concerning the flows.
What needs improvement?
I think that AlgoSec could improve the application by improving the treatment speed.
If AlgoSec could make few seconds less to analyze research, theses few seconds will be used by my team to be more efficient.
I mean, in the Traffic Simulation Query, it will be wonderful if Algosec could find a way to make the research faster than now. In fact, we are often waiting arround 1,30 min to see the results.
Maybe something can be done to make this reasearch faster?
Buyer's Guide
AlgoSec
November 2024
Learn what your peers think about AlgoSec. Get advice and tips from experienced pros sharing their opinions. Updated: November 2024.
814,763 professionals have used our research since 2012.
For how long have I used the solution?
One to three years.
Which solution did I use previously and why did I switch?
No, it is my first application for this kind of work.
Which other solutions did I evaluate?
It was not my work to choose this solution; a project team did it.
Disclosure: I am a real user, and this review is based on my own experience and opinions.
Head of IT at a manufacturing company with 10,001+ employees
Tremendously improved our organization's security with much better and efficient firewall rules
What is our primary use case?
Our primary use case is to clean up firewall rules of migration from Cisco ASA to another firewall vendor. We try to get rid of old rules and get these converted into new rules which apply better to our environment.
How has it helped my organization?
It tremendously improved the security of our organization with much better and efficient firewall rules. We saved a lot of time using this tool to get the rules clean. Also, the overview of the network topology map is a very good thing to get a clear view of every single region in your network.
What is most valuable?
The best feature is, in my opinion, the firewall analyzer. Just let the tool analyze the traffic for a few days or weeks, and you will get perfect ideas on how to improve your rules and which rules are just unnecessary or too spacious. So getting a better security level by better firewall rules is just what you want to have if you're using a firewall. Otherwise, it would not make sense to have a firewall, right?
A nice feature as well is that it gives a compliance report on each of your security devices. This helps a lot to get an overview of every single security device in your network and its status.
What needs improvement?
The versioning is a bit weird. We used to use version 2017 which is quite current, but it looks like it is a 2017 version. As far as I know, they want to have this changed soon. Nevertheless, this is something which definitely needs to be improved.
For how long have I used the solution?
One to three years.
Disclosure: I am a real user, and this review is based on my own experience and opinions.
Buyer's Guide
AlgoSec
November 2024
Learn what your peers think about AlgoSec. Get advice and tips from experienced pros sharing their opinions. Updated: November 2024.
814,763 professionals have used our research since 2012.
Senior Network Security Engineer at Prudential Corporation Asia
Helps with application connectivity and our users are able to documents their rules
Pros and Cons
- "ABF is application-centric. which helps to track changes in the application from day one."
- "We needs object level permissions and application level recertifications."
What is our primary use case?
- ABF application centric
- Risk and compliance
- Zone matrix
- Conditional workflow
- IPT
- Active change
How has it helped my organization?
It improved a lot in our flow database. In the past, application owners did not know their application connectivity. AlgoSec helps with this and our users are able to documents their rules.
What is most valuable?
ABF: It is application-centric. which helps to track changes in the application from day one.
Compliance: It helps to have a zone matrix and capture risks.
What needs improvement?
ABF needs to be more integration with AFF/AFA. We needs object level permissions and application level recertifications.
For how long have I used the solution?
Less than one year.
What do I think about the stability of the solution?
No stability issues.
What do I think about the scalability of the solution?
No scalability issues.
Which solution did I use previously and why did I switch?
We used a different network security policy management tool, but we felt it would not be able to fulfill our requirements and address our previous gap. We were looking for a place where we could keep our rules and also track ownership of each rule in the application.
How was the initial setup?
The initial setup was straightforward.
What about the implementation team?
We implemented through a vendor team, whose expertise level was high.
What was our ROI?
We are satisfied with our ROI.
Which other solutions did I evaluate?
We evaluated all of AlgoSec's competitors and chose AlgoSec as it was the best.
Disclosure: I am a real user, and this review is based on my own experience and opinions.
Senior Security Analyst at Compugraf
Helps to manage large and complex environments, promoting efficiency and facilitating compliance
Pros and Cons
- "In my opinion, the most valuable features are the network map, unused rules reports (IPT), and active change."
- "Environments with many devices need a lot of hardware resources to avoid slowdowns."
What is our primary use case?
We use this solution for device changes auditing, device compliance, network mapping, active change, clean-up of the rule base, and a ticket system.
The device changes audit is a quick identification when changing the configuration on devices. Device compliance gives us the ability to generate device compliance reports. The network map is the method for locating the devices that are related to the communication of origin and destination.
Active change is used to centralize the creation of rules in AlgoSec without the need to access other devices. Cleaning up the rule base means that AlgoSec reports and helps remove unused rules and even unused objects within a rule.
In terms of the ticket system, FireFlow helps to record user requests.
How has it helped my organization?
AlgoSec products help to manage complex environments with many devices, so we can deliver requests more quickly.
Environments with many devices are difficult to identify problems, especially when there are new analysts on the team. AlgoSec helps in troubleshooting and streamlines the analysis.
AlgoSec helps in the agility of the analysis, speed in the delivery of compliance reports, automation in the request to create rules in firewalls, removal of unused rules, and optimization of the rule base.
What is most valuable?
In my opinion, the most valuable features are the network map, unused rules reports (IPT), and active change. They are features that help with automation and reduce the analyst's time spent troubleshooting.
The unused rules reports (IPT) help remove unused rules and even unused objects within a rule.
What needs improvement?
I would like an analysis to be created for user group rules (Check Point - identity awareness).
Current versions of AlgoSec do not perform analysis of Identity awareness (Check Point). It would be important for the user to be able to request a rule by an access role group and then AlgoSec would create this rule automatically in the firewall.
An improvement in tool performance would be important. Environments with many devices need a lot of hardware resources to avoid slowdowns. Memory consumption of the server is very high.
For how long have I used the solution?
I have been working with AlgoSec for five years.
What do I think about the stability of the solution?
The tool is very stable and does not present many problems.
What do I think about the scalability of the solution?
Currently, the tool works well with large environments.
It may be necessary to create a distributed solution of the product on different servers (WEB / DB).
Which solution did I use previously and why did I switch?
We did use another solution prior to AlgoSec and the change was due to the reports having more information and easy customization.
How was the initial setup?
The initial setup is simple.
After that, it is possible to make customizations to adapt the tool as desired.
What's my experience with pricing, setup cost, and licensing?
The cost of the tool can be recovered with AlgoSec automations.
Which other solutions did I evaluate?
We evaluated Tufin and FireMon before choosing AlgoSec.
What other advice do I have?
AlgoSec is the best tool on the market.
Which deployment model are you using for this solution?
Hybrid Cloud
If public cloud, private cloud, or hybrid cloud, which cloud provider do you use?
Microsoft Azure
Disclosure: I am a real user, and this review is based on my own experience and opinions.
Senior Information Technology Security Analyst at a integrator with 1,001-5,000 employees
Speeds time required for compliance audits and provides a safer environment
Pros and Cons
- "Optimizing the operation making it possible to focus on other improvements."
- "In an environment that is very large, with many firewalls and routers, it is sometimes impossible to buy all of the licenses."
What is our primary use case?
Increase the visibility of CyberSec and the area of compliance (audit) of the environment, with the AFA increasing the visibility of vulnerabilities in the environment caused by extensive configurations, and with the AFF optimizing the operation, allowing to focus on improvements.
We implemented in an environment with more than 280 Firewalls from different manufacturers and the AlgoSec solution enabled a more detailed analysis of the environment, ensuring greater security.
It made it possible to reduce the performance of the operating team in the reactive combat of threats, making the operation more active and focused on quality.
How has it helped my organization?
Reducing operational costs and decreasing the cat's time with rework and unproductive audits.
We find that the traffic simulation query, active change, policy optimization, FireFlow, and map features are especially useful. All other features of the app are also valuable.
The time spent on auditing before AlgoSec was very heavy, at least one analyst dedicated for a week for small audits, and for most, we lost an analyst for weeks.
After implementing AlgoSec, we reduced the audit time to three days.
The environment is much safer with more active configurations.
What is most valuable?
Analysis of the environment to optimize the use of the solution (firewall) and obtain a greater view of compliance.
Optimizing the operation making it possible to focus on other improvements.
The possibility for the end-user to request their rule and ensure that policies are complied with using AlgoSec adds greater security, and it also speeds up the request process. It also makes it possible to automate the implementation of rules.
The user receives the information if his request is within the policies and can continue the request, or if it is denied, the applicant must adjust their request to stay within the policies. The time spent for this without AlgoSec is up to one week, whereas with AlgoSec, in a maximum of 15 minutes we have the request analyzed.
What needs improvement?
I would like to see support more technologies, but I know that AlgoSec is always in the process of evolution.
Perhaps a better financial option would allow customers to choose the complete solution. In an environment that is very large, with many firewalls and routers, it is sometimes impossible to buy all of the licenses. This makes the AFF solution impossible.
What do I think about the stability of the solution?
This product is stable. There have been a few problems, but when there is some instability the support is always available.
What do I think about the scalability of the solution?
Scalability-wise, this product is good. You can increase capacity simply by buying more licenses.
How are customer service and technical support?
We had a few cases where we needed support, but whenever we did, it was available, and with the information needed to solve the problems.
How was the initial setup?
The initial setup is easy and simple.
What about the implementation team?
Always by supplier, highly qualified work with positive results.
What was our ROI?
The solution has a high cost, but the reduction in operation pays the investment.
What's my experience with pricing, setup cost, and licensing?
For the AFF solution, it is necessary to purchase a license for each network asset so that the solution is complete, depending on the size of the environment.
Which other solutions did I evaluate?
Before choosing this product, we evaluated SolarWinds and FireMon.
What other advice do I have?
Overall, this is a good product and it meets the needs of customers.
Which deployment model are you using for this solution?
On-premises
Disclosure: I am a real user, and this review is based on my own experience and opinions.
Network & Collaboration Engineer at a financial services firm with 1,001-5,000 employees
More visibility into our firewall and security environment using a single pane of glass
Pros and Cons
- "The product gave us more agility on the process to analyze and resolve tickets by requesting permissions to access services not enabled by default."
- "The product should support more vendors with the same in-depth analysis that it already is providing. This would give more reasons to for other companies to adopt it."
What is our primary use case?
We use it daily to check existing rules created on all our firewalls and existing flows that are allowed, and if we can improve the performance of our firewalls by just doing the rearrangement of rules, etc.
We got more productive and agile using the product since the most time consuming job of our team is the creation of firewall rules, analyzing what is already created based on the requests of our users and internal costumers. The solution provides us an in-depth detail of what we have already in production and what we can do to resolve tickets/requests in the most effective way.
How has it helped my organization?
We now have more visibility into our firewall and security environment using a single pane of glass. We have a better audit of what our network and security engineers are doing on each device and are now able to see how much we are complaint with our baseline.
The product gave us more agility in the process to analyze and resolve tickets by requesting permissions to access services not enabled by default. At the same time, providing visibility of what we can improve on the scenario that we are already running on it.
What is most valuable?
The quick wins that the product can help us to achieve. With a few rule arrangements, we can improve the rule processing of the firewalls, increasing their performance and reducing possible bottlenecks, but keep us under the defined baseline of the company.
Also, the gain on the agility of checking what we already have created. The rules that can accommodate new requests instead of creating new rules have definitely helped us to resolve tickets in a faster way, achieving the expected SLA from users and internal customers of the company.
What needs improvement?
The product should support more vendors with the same in-depth analysis that it already is providing. This would give more reasons to for other companies to adopt it and make us preserve the investment in case we change the running environment.
For how long have I used the solution?
Five months.
What do I think about the stability of the solution?
It is very stable without any major issues.
What do I think about the scalability of the solution?
We don't see scalability on this product as a showstopper. We are confident that we can grow without any impact.
How are customer service and technical support?
Very good. They helped us on everything that we needed.
Which solution did I use previously and why did I switch?
We stopped using FireMon due to the price and lack of features.
How was the initial setup?
No.
What about the implementation team?
Through a vendor who fulfilled all our expectations.
What's my experience with pricing, setup cost, and licensing?
It is fair.
For cloud environments, it can be expensive. The model adopted to use as licensing for the cloud environment should be reviewed since it sometimes can increase the value of the service/product in an unexpected way. For example, they should instead use the amount of instances, which should just take into consideration the number of Security Groups and ACLs.
Which other solutions did I evaluate?
No.
Which deployment model are you using for this solution?
On-premises
Disclosure: I am a real user, and this review is based on my own experience and opinions.
Network Administrator at Türkiye İş Bankası
FireFlow enables us to search equipment between the source and destination and saves us time
Pros and Cons
- "We are in the process of implementing FireFlow in our daily operation, which will make our lives even easier. The idea is to search the Firewall Analyzer for the equipment between the source and destination, and then automatically jump off to FireFlow and open a ticket. This will then automatically implement what is needed without the need to go into the Firewall itself. This will save us a lot of time and will help us to onboard junior engineers very quickly, getting them up to speed on our network and daily operation in record time."
- "One important thing they should improve is their support level. We have a lot of trouble with the basic enterprise support level. They are very slow to respond and solve problems."
We have been working with the AlgoSec firewall analyzer for almost six years in the product environment. It is well suited for firewall security optimization, tuning, change management, and application discovery. The most important feature is the Intelligence Policy Tuner (IPT) skills. This helps us know which devices are between the source and destination on the flows.
Since we increased our support level to preferred support, the support level has been very good for two months. They solved all the problems and the response time is very fast. Therefore, if you are working with AlgoSec, you should choose the preferred support license. If you have the chance, you must try this with this type of support that they are well equipped of people.
We are in the process of implementing FireFlow in our daily operation, which will make our lives even easier. The idea is to search the Firewall Analyzer for the equipment between the source and destination, and then automatically jump off to FireFlow and open a ticket. This will then automatically implement what is needed without the need to go into the Firewall itself. This will save us a lot of time and will help us to onboard junior engineers very quickly, getting them up to speed on our network and daily operation in record time
In the end, we tried other vendors for POC and all of them have problems. When we compared with AlgoSec, they were much worse and AlgoSec leads this sector. That’s why we are using Algosec in our environment. Also, it is the most growing vendor in their specific area, and it has much more skills that have been very helpful to analyze firewalls.
Disclosure: I am a real user, and this review is based on my own experience and opinions.
Works at a maritime company with 10,001+ employees
Change automation has made our IPS team more efficient and effective
Pros and Cons
- "We have been able to increase the effectiveness of the team, allowing them to prioritize more complex and business-critical tasks in a faster manner."
- "In terms of integrations, we would like to see a greater number with the upcoming and next-generation tools (i.e. SOAR and a selection of other SIEMs)."
What is our primary use case?
The automation and orchestration of security-related change requests on our selected firewall (in our case Checkpoint) to decrease the time it takes to raise, manipulate, and execute change requests. This is all done with minimal interaction from our Firewall and IPS team, allowing them to more effectively use their time.
How has it helped my organization?
It has eased the process of streamlining our firewall configuration management considerably. Our firewall and IPS team now has the ability to budget their time and focus on other tasks, rather than dealing with repetitive change request functions. This has enabled the team to work much more efficiently and effectively.
What is most valuable?
The feature we found most useful is the automation of the change process within our organization for firewalls. This feature has reduced the number of mundane tasks the firewall and IPS team undertake on a regular basis. We have been able to increase the effectiveness of the team, allowing them to prioritize more complex and business-critical tasks in a faster manner.
What needs improvement?
In terms of integrations, we would like to see a greater number with the upcoming and next-generation tools (i.e. SOAR and a selection of other SIEMs). This has been a problem for us, as we are going through the process of enhancing our security and some of the products we are looking at are lacking built-in support (integration).
Disclosure: I am a real user, and this review is based on my own experience and opinions.
Buyer's Guide
Download our free AlgoSec Report and get advice and tips from experienced pros
sharing their opinions.
Updated: November 2024
Product Categories
Firewall Security ManagementPopular Comparisons
VMware NSX
Tufin Orchestration Suite
Fortinet FortiManager
Fortinet FortiGate Cloud
FireMon Security Manager
Skybox Security Suite
Palo Alto Networks Panorama
AWS Firewall Manager
Azure Firewall Manager
RedSeal
ManageEngine Firewall Analyzer
Fortinet FortiPortal
Cisco Defense Orchestrator
Opinnate
Buyer's Guide
Download our free AlgoSec Report and get advice and tips from experienced pros
sharing their opinions.
Quick Links
Learn More: Questions:
- From your experience, what are the technical differences between AlgoSec and FireMon?
- What Is The Biggest Difference Between AlgoSec and FireMon?
- What is the biggest difference between AlgoSec and Tufin?
- What is your opinion on Fortinet FortiManager vs AlgoSec? Are they complementary?
- What are the differences between Palo Alto Networks Panorama and AlgoSec?
- Comparing network security vendors and devices
- When should companies use SSL Inspection?
- When evaluating Firewall Security Management, what aspect do you think is the most important to look for?
- What are the most important features you would be looking for in a firewall?
- How do I estimate the required firewall throughput for my organization?