AlgoSec Reviews

• Centrally manage firewall flow requests
• Approval/implementation and validation
• We can easily make our firewall flow change requests using the web interface.

It would be great if the product could be more simplified when defining the rules.

Documentation could be added to the tools, then generate documentation and send it to the relevant people.

We were immediately able to leverage the workflow tools in FireFlow with ActiveChange to speed up our deployment of firewall policies.

By leveraging BusinessFlow/FireFlow/ActiveChange we have been able to reduce the time from initial requirements gathering to implementation of complex firewall designs by approximately 80% without compromising our security posture. 

Additional understanding of complex routing in multiple systems.

We have had this working in our production environment for about 6 months.

The initial deployment was unsuccessful as the product had not initially support our use of virtual routing instances on Juniper SRX devices however AlgoSec engineering was quick to deploy fixes to allow us to reach our desired outcome. 

None.

None.

Top notch.

The reporting feature.

The product has helped us improve our firewall policies. It's also helped me to make decisions on best practices.

The product needs improvement in all areas, but I don't use the product deep enough to say anything more specific.

I've used it for one year and six months.

No issues encountered.

No issues encountered.

We've not needed to scale it.

8/10.

10/10.

There was no previous solution in place.

It was straightforward on a virtual machine.

I helped to implement it as part of a vendor team.

No other options were evaluated.

There are no implementation issues; just take a look into the device's compatibility with your systems. It's a a really simple tool with strong results.

We use:

• FireFlow 
• AFA, AlgoSec Firewall Analyzer
• BusinessFlow

I use AlgoSec to optimize the firewall rules and to analyze the logs of a lot of firewalls, like Palo Alto, Check Point, and Fortinet. 

When a user creates a ticket in AlgoSec, I validate the ticket or don't. It's opened flow in the firewalls also. 

I also use it to implement and push the rules in the equipment. 

I have used it for compliance and analytics. I audit Cisco ASA equipment. I do a compliance report for every piece of equipment. I do some reports and also weigh any risk on each piece of equipment. Some rules use, for example, a critical port. If it shows to be a risk, we'll take action. For example, we can optimize a permissive rule and create new rules to have a more secure flow.

I use FireFlow to help users when they create a ticket in AlgoSec. I help them with information like the IP source, IP destination, and endpoint. 

AlgoSec also helps users choose the right equipment. There are a lot of stages and at every stage, I can choose the equipment. We have a lot of equipment and a lot of firewalls so that we can identify equipment. I also use the map to see the flow from the source IP to the destination IP so we can discover the network. It's essential to have a picture of the flow in terms of the equipment, services, and protocol.

We have critical security policies. With AlgoSec, we can create a security policy to manage critical applications. I have worked in the bank and they have critical applications. We created some security policies for those applications. Controlling the flow is critical for our customers. 

In the beginning, we compared tools like AlgoSec, Tufin, and Skybox. We did some research. There was budget to purchase the resource. We did comparisons and found AlgoSec to be the best solution.  

It's easy to use. It's not very complex. You can do a lot of things with AlgoSec.

AlgoSec should be optimized. There is a lot of RPA and we have scripts in AlgoSec that need recertification. With AlgoSec Firewall Analyzer, we can see lots of objects and lots of rules that tell us we need to clean the equipment. It will give us a solution but it doesn't always work. The solution that it gives us is not always accurate from the scripts.

For example, because we have a workflow, when the user creates his ticket, the ticket was automatically dispatched to different teams. We have a security team and another team to implement and push the rules. The ticket automatically will get sent to the wrong team and then we need to send it back to the user for them to update. 

I have used AlgoSec for two years. I use AlgoSec in French.

I find AlgoSec to be stable. Sometimes there are days that it doesn't work. We connect to AlgoSec via the web. Some days we don't have access to it and we get in touch with the support team to help us. This happens around once a month. 

It is scalable. 

I reach out to support when I have questions. I send emails with my questions. 

The initial setup was not complex. It was easy.

In terms of pricing, it is more expensive than other solutions. It's expensive because we also have the AFA module. 

AlgoSec is better than Skybox and Tufin. We have a lot of AlgoSec licenses. It offers the ability to do optimization and varied tasks.

AlgoSec offers diagrams about different pieces of equipment but Tufin and Skybox don't offer these features. I can also control external IPs. We can see the configuration. All equipment has configuration and AlgoSec enables us to log that traffic. We have control over the flow.

I would rate it an eight out of ten. It's practical and easy to use. Many enterprises use it in France. Anytime we have questions, the support team is responsive.

I use this solution to have full visibility of the network, to simulate traffic queries, and to generate security reports according to the security policies of my company. We also use AlgoSec to perform audits concerning Firewalls and Network compliance.

AlgoSec AFA and AFF automate lots of things for my organization. The products are really useful for both security and network teams. It had also provided more control over the network. After Firewalls are boarded into AlgoSec, the first results appear quickly.

AlgoSec is not completely deployed inside my organization, so for the moment the most valuable features are the network map, which provides the full visibility of the network, and the security reports. The AFF module is really valuable for different teams.

The risk matrix implementation is not easy from an Excel file, so it would be nice to have a solution for creating it directly within the web interface. This would be an improvement.

This was the first solution I chose.

The price is adapted to the product's utilization for each company.

We also did a PoC with Tufin and FireMon.

The product is a very good tool to manage network traffic and devices.

• A systems integrator to implement for clients
• To help them manage their firewalls that were bought from us as well.

It provides the organization by giving us visibility in the process of our clients and automates policy implementations and checks. It gives value to our managed services that we provide.

• Algosec Firewall Analyzer and Algosec FireFlow: They basically give us a full picture of how traffic flows and how we can secure it.
• The product, directly implementing the policies to be enforced by the gateways, makes life easier to the IT.

Based on the conference I just attended, it is improving by Algosec opening their API more. This allows us as a systems integrator to give more value to our clients. We will be able to integrate more things that do not come out of the box.

Stability is fine as it's been in the market for a long time.

Scalability is fine especially as they just released their CloudFlow as well.

No.

AlgoSec helps us be ramped up on our technical expertise on the product.

N/A.

Licensing is simple, and the setup is straightforward.

Yes, Tufin.

FireFlow, because you cannot override policies.

We have been able to add more vendors to support.

Validation: Many times I have to generate a report to validate tickets. When I try to verify an AlgoSec ticket that has been implemented, I have an option to validate the work I did. Many times, it has not worked immediately. I have to generate a report based on which I can check my work.

After implementation new rules on firewall algosec is not immediately aware about it. I have to make synchronization between algosec and firewall. In algosec is called analyze firewall. It is possible schedule this analyze more often but it consuming a lot of device resources like CPU, memory etc so I have this analyses one per day. After this analyze I am able make validation of implementation which I did because algosec can see rule which I added.

I have been using it for five years.

Technical support is quite OK.

AlgoSec provides different types and levels of support. I recommend asking about 24/7 support and being careful when deciding which support to buy.

Initial setup was straightforward because we got support from vendor.

If you are implementing it for the first time, it is good to ask vendor for help.

It is a good product to use.

AlgoSec AFA provides visibility and enhancement opportunities on the firewalls. You can observe risk trends, regulatory and baseline compliance, as well as live changes and change history.

AlgoSec improved our firewall visibility and related control points.

Needs continuous improvements in all areas since firewall vendors are improving their products and the IT security industry is definitely improving itself.

3 years

Deployment is easy, no issues at all.

No issues so far.

8/10

8/10

No previous solution

Initial setup and deployment was straightforward.

We got help from a partner, 8/10

We evaluated two other vendors in addition to AlgoSec.