AlgoSec Reviews

FireFlow, because you cannot override policies.

We have been able to add more vendors to support.

Validation: Many times I have to generate a report to validate tickets. When I try to verify an AlgoSec ticket that has been implemented, I have an option to validate the work I did. Many times, it has not worked immediately. I have to generate a report based on which I can check my work.

After implementation new rules on firewall algosec is not immediately aware about it. I have to make synchronization between algosec and firewall. In algosec is called analyze firewall. It is possible schedule this analyze more often but it consuming a lot of device resources like CPU, memory etc so I have this analyses one per day. After this analyze I am able make validation of implementation which I did because algosec can see rule which I added.

I have been using it for five years.

Technical support is quite OK.

AlgoSec provides different types and levels of support. I recommend asking about 24/7 support and being careful when deciding which support to buy.

Initial setup was straightforward because we got support from vendor.

If you are implementing it for the first time, it is good to ask vendor for help.

It is a good product to use.

We use this solution for managing risks, device compliance, a ticket system, and active change.

It definitely helps a lot to manage the complexity of environments with many devices and many vendors.

The most valuable features are the network map, risk analysis, and tickets for firewall changes.

Very helpful automatic implementation of requested changes.

I would like to seem improvements in performance and software stability.

I use this solution to have full visibility of the network, to simulate traffic queries, and to generate security reports according to the security policies of my company. We also use AlgoSec to perform audits concerning Firewalls and Network compliance.

AlgoSec AFA and AFF automate lots of things for my organization. The products are really useful for both security and network teams. It had also provided more control over the network. After Firewalls are boarded into AlgoSec, the first results appear quickly.

AlgoSec is not completely deployed inside my organization, so for the moment the most valuable features are the network map, which provides the full visibility of the network, and the security reports. The AFF module is really valuable for different teams.

The risk matrix implementation is not easy from an Excel file, so it would be nice to have a solution for creating it directly within the web interface. This would be an improvement.

This was the first solution I chose.

The price is adapted to the product's utilization for each company.

We also did a PoC with Tufin and FireMon.

The product is a very good tool to manage network traffic and devices.

The majority of customer use cases are around rule optimisation, workflow management, and risk/compliance. 

Our customers are able to optimise and clean the rule sets on our FW estate and streamline the change management process whilst adhering to compliance, governance, and risk requirements.

• Firewall Analyser due to its initial ability to cleanse and provide efficiencies to legacy estates. 
• FireFlow continues to drive customer efficiencies, allowing an organisation to keep up with the pace of change.  
• We see the value of BusinessFlow for organisations involved in digital transformation projects migrating to public/private/hybrid cloud models.

Further integration with ACI and NSX will be key to our customers' requirements moving forward, as customers adopt new, innovative environments.

Not applicable.

Our customers are receiving quick ROI using the AlgoSec platform when compared to the FTE costs for using legacy manual processes.

Licensing is offered as a subscription and as a perpetual model.

Pricing is easy to grasp.

We looked at Tufin and Skybox. AlgoSec was the only vendor who had the full suite of products which met the customer and business demands. BusinessFlow was (still is) the game changer.

Firewall Analyzer (AFA) to analyze configs from production firewalls of various types.

AFA has helped us to spot risky rules, overlapping rules and helps prioritize remediation efforts. We have a variety of firewalls and look forward to expanding services such as FireFlow.

In AFA, the ability to trend rule usage and drill into traffic seen hitting that rule is powerful for cleanup of overly permissive rules.

No issues with stability.

No issues with scalability.

Customer service has been helpful and responsive.

Skybox Security. However, Skybox is has less actionable output than Algosec. 

Setup does take some time to customize to your environment.

The product could be improved by adding additional tools for troubleshooting, not only for the firewall, but for other devices like switch and dynamic routing display. Also, it would be good if it could retrieve all information regarding Cisco Nexus switches and devices.

It would be interesting if the product could automate the switch configuration and create a dynamic map of the entire network.

In the VMware platform, sometimes the application is frozen and we have to reload the machine.

Not at all.

The technical services personnel are very confident and provide good assistance.

No previous solution was used.

The initial setup process is excellent.

The in-house implementation was good for FireFlow.

The reporting feature.

The product has helped us improve our firewall policies. It's also helped me to make decisions on best practices.

The product needs improvement in all areas, but I don't use the product deep enough to say anything more specific.

I've used it for one year and six months.

No issues encountered.

No issues encountered.

We've not needed to scale it.

8/10.

10/10.

There was no previous solution in place.

It was straightforward on a virtual machine.

I helped to implement it as part of a vendor team.

No other options were evaluated.

There are no implementation issues; just take a look into the device's compatibility with your systems. It's a a really simple tool with strong results.

We've been using Algosec as our reference tool to clean our policies from old unused rules and objects and to assess rules that are categorized as risky so that we can fix those risks.

Firewall Analyzer from Algosec is our main tool for Firewall auditing and it makes our external auditors very confident on the way our policies are managed.

Fireflow from Algosec also helps us identifying which firewalls are on the way from source to destination when we need to open flows and it saves us a lot of time. We are still on our path to implement full automation of firewall policy creation with Algosec's Fireflow but the goal is to achieve it soon.

Since we deployed Algosec our Firewall policies which didn't have much maintenance over more than 15 years had their policies reduced to less than half the rules by using Algosec's Firewall Analyzer to remove unused rules, unused objects withing rules, compacting several firewall rules in one rule, etc.

We were also able with Firewall Analyzer to get risk reports of our firewall policies and start tackling them to close them or at least to be aware of its existance.

Firewall Analyzer is amazon in Policy Optimization and we feel we are much more secure since we have this product. If we add a rule that poses a risk we get an alert from Firewall Analyzer which is very important to us.

We are also starting to use Fireflow and our goal is to have the policy creation automated soon. For now we are already able to identify which firewalls are on the path between point A and point B and we are on the path to full automation which will reduce a lot the workload of our team.

The feature we find the most valuable is the Firewall Analyzer for the firewall policy audits and to show external auditors we have a process to identify risks and to tackle them. It's also very important for policy clean maintenance. 

This helps us know which devices are between the source and destination on the flows that we need to open for the business. The audit tools are also very important to us because we can easily have everything that needs to be presented to the security auditors.

We are in the process of implementing FireFlow for full automation which will save us time for more important things we need to to on daily basis that are not creating firewall rules. We aim to achieve the full automation soon.

In our case it would be very important to improve support to Dell switches and also some Juniper switches, which we have a lot of in our company network. This has been our difficulty for the full automation on the Fireflow. If all our network devices were Cisco I'm sure we would have the network map complete very easily and the full automation working with much less effort.

We already asked Algosec for the support of the switches we have that are not natively supported for the future versions and we expect that we are lucky enough for them to be supported on the next releases, although there are some ways of working around non-natively supported switches to complete the network map.

We have been using Algosec solution for more than 5 years now.

We never had issues so far in terms of stability.

The solution is very scalable and allows you to add all the firewalls and devices you need.

It is also scalable on the licensing as you can start by buying only the Firewall Analyzer license with which you can start onboarding all the devices and completing the network diagram so that Algosec's has the whole picture and know all the paths from network A to B.

After that you are ready to start using FireFlow and you can buy the license only when you are ready to start deploying it.

Sometimes it takes more time than expected to have answers for support tickets, but in general the customer service is good.

Positive

Not in our case.

The initial setup has been easy. The only difficult thing was the part in which we needed to onboard non natively supported switches. That part is a bit more complex.

We implemented with a mix of external company and in-house. The external team was helpful and had a good expertise level.

The time we save on our daily operations is very important. We could reduce the team size with this tool as we had a trainee almost fully working on opening flows.

It also allows us to detect risks on firewall rules and fix them, keeping the company network safe.

The price for the solution is not cheap but if you use it fully it will compensate in terms of securitization and in terms of time gained on the daily operations. It is also very helpful if your company is audited on the security part.

We heard about Tufin and Algosec, and after going through the specs we decided to go on a POC with Algosec and ended up buying it as it fitted our needs. We followed our Firewall integrator advice, who also recommended Algosec for our Firewall's park which is basically Fortinet and Check Point.

We recommend trying fully automation in a controlled environment before widely deploying it to the production firewalls. It's important to gain confidence on the product.