AlgoSec Reviews

The AlgoSec Firewall Analyzer was greatly used for firewall analysis, policy tuning, and optimization. The automated change management feature was very useful and integrates seamlessly into the change management process.

This solution helps in maintaining and providing regulatory compliance metrics and to optimize the overall security of the organization. It provides great visibility into your firewall rules, thereby allowing you to eliminate redundant or overlapping rules. It saves time by allowing administrators to test network traffic and pinpoint which rules are being triggered for a particular traffic flow.

The most valuable features to me were the following:

1. Testing network flows and optimizing firewall policies.
2. Obtaining regulatory and compliance metrics for audits.
3. Visualize complex networks using the topology maps.
4. Simple interface and ease of navigation.

The product has a lot of great features already. However, I would like the reporting to be more customizable, as per user and auditing needs.

It is a highly scalable solution as per my experience.

I haven't used any other solutions.

I do not have much information on the pricing, as I wasn't part of the actual procurement process. I was told that the pricing and licensing was comparatively fair.

I did a basic evaluation of FireMon, which had identical features to the AlgoSec Firewall Analyzer.

• To manage the various network security equipment deployed
• Be able to detect unauthorized changes in those equipment.

It is still being deployed, but it shall enable reliance on more third parties out of the IT security team without losing the assurance that the configurations are under control. 

• Ability to manage all the network security equipment centrally
• Ability to delegate to local ITs the network security equipment change requests
• Ability to decrease the necessary workload to enable network connections, troubleshoot
• Ability to detect unauthorized or non-compliant changes in the network security equipment configuration.

Ability to manage more diversity of equipment, as well as simplify the management of the various workflows.

No previous solution.

Yes: Tufin.

I use AlgoSec for my firewall rule optimisation, compliance baseline auditing, firewall change reviews, etc.

AlgoSec has helped tighten the rules on my firewalls, reduce the risks or exposure, and also meet regulatory compliance.

I have found the firewall optimisation feature to be very valuable because most developers don't know the ports or services their applications are running. After running the rules on any services for a short while, AlgoSec helps get the right service ports and IP addresses.

The product or service could be improved by orchestration or automation that will help in changing the rule sets on the firewalls based on the detected used services/ports and IP addresses. 

AlgoSec has been very stable compared with its pairs.

The solution's scalability is impressive.

Service/technical support are good at their job and responsive.

No, I didn't.

It is quite easy to deploy and manage.

Implemented through a vendor and their level of expertise is high.

Worth every penny, and the value realisation is great.

AlgoSec is worth every penny for the value or return of investment. 

No evaluations. AlgoSec was recommended, and we got a trial version for a period.

None.

Since approximately 2005, I have used AlgoSec in almost all of the companies that I have worked at. AlgoSec Firewall Analyzer (AFA) continues to be my favorite product, as well as the core of other AlgoSec products. My teams use AFA to validate firewall (FW) changes, see hidden and complex rules, identify dangerous combinations of rules across many enterprise firewall situations, and enable a risk-based approach to firewall rules and associated risk management.

AlgoSec is able to provide a consistent view into all of an organization's firewalls, regardless if the management is done by different companies, e.g., Check Point's, Cisco's, and Palo Alto's firewall policies are presented to the security team in a consistent format. This enables risk management decisions to be made without detailed understanding or experience in various underlying firewall technologies or management systems.

AFA is the best feature. It shows consistent information regardless of the underlying platform. Unused rules, hidden rules, and dangerous combinations of rules are easily found and tracked by using AlgoSec.

• I would like to see continued expansion to other firewall versions, platforms, and vendors. 
• I would also like to see continued work on the roadmap.

To be able to monitor all firewalls under one umbrella. It makes it easy for customer to get their reports.

• Reports run easily to my management.
• Searching on IP address to find out the firewalls.
• Streamline tickets

Reports and baseline are the most important feature for auditors. Auditors can get PDF or CSV reports without having to give them access to firewalls.

Having the ability to patch an issue as oppose to upgrading the entire suite.

Once you upgrade to latest version, it is stable.

No issues.

Needs better technical support and quicker response times.

Setup is easy. Just run the script and all seems fine.

In-house with some help from Professional Services, who are knowledgeable and helpful.

Pricing is okay and the licensing can be a little tricky with the initial setup.

We evaluated other options. FireMon and Tufin were on the list but AlgoSec won out. It is better.

AlgoSec may be little pricier with its licenses, but it is probably better than any of other competitors.

• Granular visibility
• Risk rules evaluation
• Saves with manual processes and dependencies

• Saves person-hours
• Security tightening and optimization in minutes
• Loophole identification which helps with compliance
• Effective tracking and automation of change management

Automated policy push for the Fortinet product family. The Active Change/Automated Policy push feature is already there for all other leading devices such as Cisco, Check Point, Juniper, and Palo Alto, etc.

I've used it for two years.

It's not hard to deploy, and can be run on a virtual environment.

It is a robust easy to use platform.

It has highly scalable architecture.

The customer service team is reliable.

They have time-zone matched technical/SLA support and local response team available.

It is pretty straightforward and a piece of cake for the network engineers.

Initial implementation is highly recommended to be done through a vendor and/or subject matter expert so you can leverage the best of the features.

AlgoSec is a best of class solution with unique value proposition. Licensing has flexibility perpetual and subscription models, and by identifying your own real needs can achieve savings.

As a fair evaluation, other solutions are available in the security policy cleanup area. However, AlgoSec stands apart with a visionary business centric approach – not limiting itself to a mere firewall security cleanup tool. With AlgoSec, we also get an automated security change management/compliance solution. It has the unique and powerful application connectivity auto-discovery and then translates these to firewall rules. This is useful to achieve automation during datacenter migration, etc.

AlgoSec is a business-driven security management solution, a comprehensive and visionary solution which covers what needs to be covered in firewall security visibility, security change management, and application-security connectivity. AlgoSec as a platform fills the gaps between the otherwise disconnected teams - Security, Network and Applications - within an organization.

We planned to start with AlgoSec Firewall Analyzer and later procured FireFlow as well.

We deployed Fireflow as we have been migrating the Infrastructure to SaaS, increasing in multi-vendor engagements on multiple Network and Security layers and handling requests from roaming users ends.

AlgoBot has been enabled to few users to validate their requirements and requests on their own, which has helped them to understand their current access and to create requests that are very accurate and relevant.

With respect to the environment, it's distributed with various network and security solutions, with multiple zones and a maintenance team.

Over the period of two years, we integrated the AlgoSec Firewall Analyzer and FireFlow on multiple solutions including next-generation firewalls, web security, proxies, and other network devices.

On the improvement part, we enabled the common set of policies across firewalls and proxies. This tool helped us eliminate the requirement to have L3 engineer in our other data centers and our Tier 1 and 2 engineers utilize the solution well from the configuration and maintenance areas.

We simply pass over three to four external agency audits on various particulars which we spent more time on before onboarding the solution.

One of the most valuable parts for us is to achieve the compliance standards without ample strain and burden. Defined templates assisted us to make effective on following the internal processes and the industry standard.

It enhanced the complete workflow system within six months of deployment. We eventually onboarded by integrating with multiple solutions.

We performed regular audits internally to standardize and to pass the external audits effortlessly.

In simple words, this process empowered us to define a metrics among our industry and set the development goals clearly.

Support tickets and engineer assignments are one of the few concerns we are facing these days. Initially, they were hard to co-ordinate with the technical support team and the AlgoSec management team helped us to follow the defined Service Level Agreements.

We needed to directly communicate with the integrated solution TAC Teams, let say of Palo Alto or Checkpoint, and we needed to co-ordinate jointly for addressing an issue.

The AlgoSec support team came on a joint call to address the issue on time without saying "this is not my cup of tea" and by then we were happy about the support. This happened during one of our major migrations.

Our management is expecting us to set up a CXO/CISO dashboard from AlgoSec. It would be great for us if the AlgoSec team could assist in setting up the new benchmark.

We have been using this solution for more than two years.

Over the period of two years, we have seen multiple enhancements being made available inside the product. One of the new requirements is on containers/Docker/Kubernetes where AlgoSec really needs to focus. I am not sure about the availability of the latest support release, however, these are booming technologies and we require solutions like AlgoSec to support them.

Earlier it was good. Possibly due to the pandemic, we faced a couple of challenges in getting the support on time. That said, now it's getting better.

Neutral

Earlier we used to manage everything with our internal and vendor team, where lots of coordination was required. It was a long time-consuming process of gathering requirements and defining the best possible solution.

Since few of the solutions were being managed by outsourced team, it was challenging to make the solutions ready to integrate with AlgoSec during the deployment phase.

Some delays happened due to the lack of support by the external party. There were some delays due to upgrading products to make everything compatible with AlgoSec Analyzer and FireFlow.

Initially, we found this as a complex deployment. Later, it was easier than anticipated. We referred to the technical documents and AlgoPedia portal to understand more and deployed successfully within the proposed timelines.

Our in-house team took care of almost everything and the AlgoSec team did the governance.

We'd like the solution to share the complete Infrastructure details along with the business use cases with AlgoSec SE to evaluate and propose the best fit deployments and licensing.

Pricing-wise, AlgoSec still needs to support the customers.

We evaluated Skybox and Tuffin as well. Our internal team showed interest in AlgoSec right away, however, Skybox was a real challenge to differentiate.

Technical documentation and readily available solution blogs helped us to deploy the solution in a better way

AlgoPedia helped us in many ways - including sharing information on the new vulnerabilities, management of appliances, and maintaining the workflows (by providing enough insights to explore and understand).