FireFlow, because you cannot override policies.
Network Security Engineer at a financial services firm with 5,001-10,000 employees
The FireFlow feature stops users from overriding policies.
What is most valuable?
How has it helped my organization?
We have been able to add more vendors to support.
What needs improvement?
Validation: Many times I have to generate a report to validate tickets. When I try to verify an AlgoSec ticket that has been implemented, I have an option to validate the work I did. Many times, it has not worked immediately. I have to generate a report based on which I can check my work.
After implementation new rules on firewall algosec is not immediately aware about it. I have to make synchronization between algosec and firewall. In algosec is called analyze firewall. It is possible schedule this analyze more often but it consuming a lot of device resources like CPU, memory etc so I have this analyses one per day. After this analyze I am able make validation of implementation which I did because algosec can see rule which I added.
For how long have I used the solution?
I have been using it for five years.
Buyer's Guide
AlgoSec
November 2024
Learn what your peers think about AlgoSec. Get advice and tips from experienced pros sharing their opinions. Updated: November 2024.
814,763 professionals have used our research since 2012.
How are customer service and support?
Technical support is quite OK.
AlgoSec provides different types and levels of support. I recommend asking about 24/7 support and being careful when deciding which support to buy.
How was the initial setup?
Initial setup was straightforward because we got support from vendor.
What about the implementation team?
If you are implementing it for the first time, it is good to ask vendor for help.
What other advice do I have?
It is a good product to use.
Disclosure: I am a real user, and this review is based on my own experience and opinions.
Software Developer at Vivo (Telefônica Brasil)
Network map and risk analysis helps us to manage complex environments with many devices
Pros and Cons
- "The most valuable features are the network map, risk analysis, and tickets for firewall changes."
- "I would like to seem improvements in performance and software stability."
What is our primary use case?
We use this solution for managing risks, device compliance, a ticket system, and active change.
How has it helped my organization?
It definitely helps a lot to manage the complexity of environments with many devices and many vendors.
What is most valuable?
The most valuable features are the network map, risk analysis, and tickets for firewall changes.
Very helpful automatic implementation of requested changes.
What needs improvement?
I would like to seem improvements in performance and software stability.
For how long have I used the solution?
I have been using this solution for six years.
Disclosure: I am a real user, and this review is based on my own experience and opinions.
Buyer's Guide
AlgoSec
November 2024
Learn what your peers think about AlgoSec. Get advice and tips from experienced pros sharing their opinions. Updated: November 2024.
814,763 professionals have used our research since 2012.
Works with 10,001+ employees
Provides full visibility of the network and generates helpful security & audit reports
Pros and Cons
- "AlgoSec AFA and AFF automate lots of things for my organization."
- "The risk matrix implementation is not easy from an Excel file, so it would be nice to have a solution for creating it directly within the web interface."
What is our primary use case?
I use this solution to have full visibility of the network, to simulate traffic queries, and to generate security reports according to the security policies of my company. We also use AlgoSec to perform audits concerning Firewalls and Network compliance.
How has it helped my organization?
AlgoSec AFA and AFF automate lots of things for my organization. The products are really useful for both security and network teams. It had also provided more control over the network. After Firewalls are boarded into AlgoSec, the first results appear quickly.
What is most valuable?
AlgoSec is not completely deployed inside my organization, so for the moment the most valuable features are the network map, which provides the full visibility of the network, and the security reports. The AFF module is really valuable for different teams.
What needs improvement?
The risk matrix implementation is not easy from an Excel file, so it would be nice to have a solution for creating it directly within the web interface. This would be an improvement.
For how long have I used the solution?
Four months.
Which solution did I use previously and why did I switch?
This was the first solution I chose.
What's my experience with pricing, setup cost, and licensing?
The price is adapted to the product's utilization for each company.
Which other solutions did I evaluate?
We also did a PoC with Tufin and FireMon.
What other advice do I have?
The product is a very good tool to manage network traffic and devices.
Disclosure: I am a real user, and this review is based on my own experience and opinions.
Account Director
FireFlow continues to drive customer efficiencies, allowing an organisation to keep up with the pace of change
Pros and Cons
- "We see the value of BusinessFlow for organisations involved in digital transformation projects migrating to public/private/hybrid cloud models."
- "FireFlow continues to drive customer efficiencies, allowing an organisation to keep up with the pace of change."
- "Further integration with ACI and NSX will be key to our customers' requirements moving forward, as customers adopt new, innovative environments."
What is our primary use case?
The majority of customer use cases are around rule optimisation, workflow management, and risk/compliance.
How has it helped my organization?
Our customers are able to optimise and clean the rule sets on our FW estate and streamline the change management process whilst adhering to compliance, governance, and risk requirements.
What is most valuable?
- Firewall Analyser due to its initial ability to cleanse and provide efficiencies to legacy estates.
- FireFlow continues to drive customer efficiencies, allowing an organisation to keep up with the pace of change.
- We see the value of BusinessFlow for organisations involved in digital transformation projects migrating to public/private/hybrid cloud models.
What needs improvement?
Further integration with ACI and NSX will be key to our customers' requirements moving forward, as customers adopt new, innovative environments.
For how long have I used the solution?
Three to five years.
Which solution did I use previously and why did I switch?
Not applicable.
What was our ROI?
Our customers are receiving quick ROI using the AlgoSec platform when compared to the FTE costs for using legacy manual processes.
What's my experience with pricing, setup cost, and licensing?
Licensing is offered as a subscription and as a perpetual model.
Pricing is easy to grasp.
Which other solutions did I evaluate?
We looked at Tufin and Skybox. AlgoSec was the only vendor who had the full suite of products which met the customer and business demands. BusinessFlow was (still is) the game changer.
Disclosure: My company has a business relationship with this vendor other than being a customer: Accredited AlgoSec Partner.
Information Security Professional at NTT Security
AFA has helped us to spot risky rules, overlapping rules and helps prioritize remediation efforts.
What is our primary use case?
Firewall Analyzer (AFA) to analyze configs from production firewalls of various types.
How has it helped my organization?
AFA has helped us to spot risky rules, overlapping rules and helps prioritize remediation efforts. We have a variety of firewalls and look forward to expanding services such as FireFlow.
What is most valuable?
In AFA, the ability to trend rule usage and drill into traffic seen hitting that rule is powerful for cleanup of overly permissive rules.
For how long have I used the solution?
One to three years.
What do I think about the stability of the solution?
No issues with stability.
What do I think about the scalability of the solution?
No issues with scalability.
How are customer service and technical support?
Customer service has been helpful and responsive.
Which solution did I use previously and why did I switch?
Skybox Security. However, Skybox is has less actionable output than Algosec.
How was the initial setup?
Setup does take some time to customize to your environment.
Disclosure: I am a real user, and this review is based on my own experience and opinions.
Network Support
The technical services personnel are very confident and provide good assistance
Pros and Cons
- "The initial setup process is excellent."
- "The technical services personnel are very confident and provide good assistance."
- "It would be interesting if the product could automate the switch configuration and create a dynamic map of the entire network."
- "The product could be improved by adding additional tools for troubleshooting, not only for the firewall, but for other devices like switch and dynamic routing display. Also, it would be good if it could retrieve all information regarding Cisco Nexus switches and devices."
- "In the VMware platform, sometimes the application is frozen and we have to reload the machine."
What needs improvement?
The product could be improved by adding additional tools for troubleshooting, not only for the firewall, but for other devices like switch and dynamic routing display. Also, it would be good if it could retrieve all information regarding Cisco Nexus switches and devices.
It would be interesting if the product could automate the switch configuration and create a dynamic map of the entire network.
For how long have I used the solution?
Three to five years.
What do I think about the stability of the solution?
In the VMware platform, sometimes the application is frozen and we have to reload the machine.
What do I think about the scalability of the solution?
Not at all.
How are customer service and technical support?
The technical services personnel are very confident and provide good assistance.
Which solution did I use previously and why did I switch?
No previous solution was used.
How was the initial setup?
The initial setup process is excellent.
What about the implementation team?
The in-house implementation was good for FireFlow.
Disclosure: I am a real user, and this review is based on my own experience and opinions.
Sênior Network Security Administrator at a government with 1,001-5,000 employees
The product has helped us improve our firewall policies. It's also helped me to make decisions on best practices.
What is most valuable?
The reporting feature.
How has it helped my organization?
The product has helped us improve our firewall policies. It's also helped me to make decisions on best practices.
What needs improvement?
The product needs improvement in all areas, but I don't use the product deep enough to say anything more specific.
For how long have I used the solution?
I've used it for one year and six months.
What was my experience with deployment of the solution?
No issues encountered.
What do I think about the stability of the solution?
No issues encountered.
What do I think about the scalability of the solution?
We've not needed to scale it.
How are customer service and technical support?
Customer Service:
8/10.
Technical Support:10/10.
Which solution did I use previously and why did I switch?
There was no previous solution in place.
How was the initial setup?
It was straightforward on a virtual machine.
What about the implementation team?
I helped to implement it as part of a vendor team.
Which other solutions did I evaluate?
No other options were evaluated.
What other advice do I have?
There are no implementation issues; just take a look into the device's compatibility with your systems. It's a a really simple tool with strong results.
Disclosure: I am a real user, and this review is based on my own experience and opinions.
Network Security Engineer/Architect at a tech services company with 1,001-5,000 employees
Excellent for firewall policy auditing and firewall policy automation
Pros and Cons
- "It now takes less than half of the time it took before we had this tool to deploy the flows requested by the business."
- "We would like to see more features in the GUI so that we don't have to work with the API as extensively."
What is our primary use case?
We've been using Algosec as our reference tool to clean our policies from old unused rules and objects and to assess rules that are categorized as risky so that we can fix those risks.
Firewall Analyzer from Algosec is our main tool for Firewall auditing and it makes our external auditors very confident on the way our policies are managed.
Fireflow from Algosec also helps us identifying which firewalls are on the way from source to destination when we need to open flows and it saves us a lot of time. We are still on our path to implement full automation of firewall policy creation with Algosec's Fireflow but the goal is to achieve it soon.
How has it helped my organization?
Since we deployed Algosec our Firewall policies which didn't have much maintenance over more than 15 years had their policies reduced to less than half the rules by using Algosec's Firewall Analyzer to remove unused rules, unused objects withing rules, compacting several firewall rules in one rule, etc.
We were also able with Firewall Analyzer to get risk reports of our firewall policies and start tackling them to close them or at least to be aware of its existance.
Firewall Analyzer is amazon in Policy Optimization and we feel we are much more secure since we have this product. If we add a rule that poses a risk we get an alert from Firewall Analyzer which is very important to us.
We are also starting to use Fireflow and our goal is to have the policy creation automated soon. For now we are already able to identify which firewalls are on the path between point A and point B and we are on the path to full automation which will reduce a lot the workload of our team.
What is most valuable?
The feature we find the most valuable is the Firewall Analyzer for the firewall policy audits and to show external auditors we have a process to identify risks and to tackle them. It's also very important for policy clean maintenance.
This helps us know which devices are between the source and destination on the flows that we need to open for the business. The audit tools are also very important to us because we can easily have everything that needs to be presented to the security auditors.
We are in the process of implementing FireFlow for full automation which will save us time for more important things we need to to on daily basis that are not creating firewall rules. We aim to achieve the full automation soon.
What needs improvement?
In our case it would be very important to improve support to Dell switches and also some Juniper switches, which we have a lot of in our company network. This has been our difficulty for the full automation on the Fireflow. If all our network devices were Cisco I'm sure we would have the network map complete very easily and the full automation working with much less effort.
We already asked Algosec for the support of the switches we have that are not natively supported for the future versions and we expect that we are lucky enough for them to be supported on the next releases, although there are some ways of working around non-natively supported switches to complete the network map.
For how long have I used the solution?
We have been using Algosec solution for more than 5 years now.
What do I think about the stability of the solution?
We never had issues so far in terms of stability.
What do I think about the scalability of the solution?
The solution is very scalable and allows you to add all the firewalls and devices you need.
It is also scalable on the licensing as you can start by buying only the Firewall Analyzer license with which you can start onboarding all the devices and completing the network diagram so that Algosec's has the whole picture and know all the paths from network A to B.
After that you are ready to start using FireFlow and you can buy the license only when you are ready to start deploying it.
How are customer service and support?
Sometimes it takes more time than expected to have answers for support tickets, but in general the customer service is good.
How would you rate customer service and support?
Positive
Which solution did I use previously and why did I switch?
Not in our case.
How was the initial setup?
The initial setup has been easy. The only difficult thing was the part in which we needed to onboard non natively supported switches. That part is a bit more complex.
What about the implementation team?
We implemented with a mix of external company and in-house. The external team was helpful and had a good expertise level.
What was our ROI?
The time we save on our daily operations is very important. We could reduce the team size with this tool as we had a trainee almost fully working on opening flows.
It also allows us to detect risks on firewall rules and fix them, keeping the company network safe.
What's my experience with pricing, setup cost, and licensing?
The price for the solution is not cheap but if you use it fully it will compensate in terms of securitization and in terms of time gained on the daily operations. It is also very helpful if your company is audited on the security part.
Which other solutions did I evaluate?
We heard about Tufin and Algosec, and after going through the specs we decided to go on a POC with Algosec and ended up buying it as it fitted our needs. We followed our Firewall integrator advice, who also recommended Algosec for our Firewall's park which is basically Fortinet and Check Point.
What other advice do I have?
We recommend trying fully automation in a controlled environment before widely deploying it to the production firewalls. It's important to gain confidence on the product.
Which deployment model are you using for this solution?
On-premises
Disclosure: I am a real user, and this review is based on my own experience and opinions.
Buyer's Guide
Download our free AlgoSec Report and get advice and tips from experienced pros
sharing their opinions.
Updated: November 2024
Product Categories
Firewall Security ManagementPopular Comparisons
VMware NSX
Tufin Orchestration Suite
Fortinet FortiManager
Fortinet FortiGate Cloud
FireMon Security Manager
Skybox Security Suite
Palo Alto Networks Panorama
AWS Firewall Manager
Azure Firewall Manager
RedSeal
ManageEngine Firewall Analyzer
Fortinet FortiPortal
Cisco Defense Orchestrator
Opinnate
Buyer's Guide
Download our free AlgoSec Report and get advice and tips from experienced pros
sharing their opinions.
Quick Links
Learn More: Questions:
- From your experience, what are the technical differences between AlgoSec and FireMon?
- What Is The Biggest Difference Between AlgoSec and FireMon?
- What is the biggest difference between AlgoSec and Tufin?
- What is your opinion on Fortinet FortiManager vs AlgoSec? Are they complementary?
- What are the differences between Palo Alto Networks Panorama and AlgoSec?
- Comparing network security vendors and devices
- When should companies use SSL Inspection?
- When evaluating Firewall Security Management, what aspect do you think is the most important to look for?
- What are the most important features you would be looking for in a firewall?
- How do I estimate the required firewall throughput for my organization?