Cisco Defense Orchestrator has useful guides for the steps that need to follow by users.
Technical Director - Cyber Security at a comms service provider with 1-10 employees
Useful guides, excellent support, integration could improve
Pros and Cons
- "Cisco Defense Orchestrator has useful guides for the steps that need to follow by users."
- "Cisco Defense Orchestrator can improve by providing more support for third-party security components."
What is most valuable?
What needs improvement?
Cisco Defense Orchestrator can improve by providing more support for third-party security components.
For how long have I used the solution?
I have been using Cisco Defense Orchestrator for approximately eight months.
How are customer service and support?
The Cisco Defense Orchestrator technical support is excellent.
Buyer's Guide
Cisco Defense Orchestrator
November 2024
Learn what your peers think about Cisco Defense Orchestrator. Get advice and tips from experienced pros sharing their opinions. Updated: November 2024.
814,649 professionals have used our research since 2012.
What's my experience with pricing, setup cost, and licensing?
I work with a lot of clients, and the price or value of the Cisco Defense Orchestrator can vary from one client to another. If you have a lot of Cisco solutions, the price of the Cisco Defense Orchestrator is justified. Whereas if you have some security components from other vendors, such as Check Point or Palo Alto. This solution would be a pretty expensive proposition considering that they don't integrate with them well.
What other advice do I have?
Cisco Defense Orchestrator is a solution that does not have a lot of competition, it is unique. However, the next similar solution would be Palo Alto Demisto.
I rate Cisco Defense Orchestrator a seven out of ten
Disclosure: My company has a business relationship with this vendor other than being a customer: Partner
Network Administrator at Texas Hydraulics
Enables me to create a standard for access rules across all my devices
Pros and Cons
- "The bulk changes feature is definitely the most valuable."
- "It should have more features to manage FirePOWER appliances."
What is our primary use case?
I use it to manage my group of firewalls, and I make some configuration changes with it. If I have to update multiple devices at one time I will use it as well.
How has it helped my organization?
Its ability to make bulk changes makes it much easier, that's for sure, when I have to upgrade multiple clients. Although I don't update too often, maybe every six months, it saves me 20 minutes per device for the four devices we have.
It also helps that I'm able to look at synchronizing my configuration across all of the devices. When it comes to configuration of my access rules, it allows me to create a standard across all of them.
Our security team is just me, one guy. We're a pretty small organization. But in a way, it has made me more productive.
In addition, its support for ASA, FTD, and Meraki MX helps maintain consistent security.
What is most valuable?
- The bulk changes feature is definitely the most valuable.
- Being able to look at the configuration before and after the change is made, is helpful.
What needs improvement?
They should make it more of a one-stop shop for everything. It should have more features to manage FirePOWER appliances.
For how long have I used the solution?
We've been using CDO ( /products/cisco-defense-orchestrator-reviews ) for about two years.
What do I think about the stability of the solution?
I'm pretty impressed with the stability. It hasn't broken on me. I'm pretty satisfied.
What do I think about the scalability of the solution?
Since I only have the four devices I really haven't done anything on a mass scale. I can see us possibly increasing usage in the future.
How are customer service and technical support?
I haven't used tech support.
Which solution did I use previously and why did I switch?
We didn't have a previous solution.
How was the initial setup?
The initial setup was pretty straightforward. I had one of the guys from Cisco show me how to onboard one device, and I was able to get the others onboard within about five minutes. There wasn't really an implementation strategy. He just showed me how to do one device at a time.
What other advice do I have?
It's just a good product to have.
In terms of CDO's security features around storing firewall configurations in the cloud, I haven't delved into that yet. I plan to get into it this month, but I haven't logged into it yet. I still use the ASDM a lot of times. I also have a FirePOWER which most of the firewalls are in and I will the FirePOWER Management Center for that because Orchestrator doesn't manage it quite as well. For firewall builds and daily management of existing firewalls, I normally use FirePOWER, as far as monitoring goes.
Disclosure: PeerSpot contacted the reviewer to collect the review and to validate authenticity. The reviewer was referred by the vendor, but the review is not subject to editing or approval by the vendor.
Buyer's Guide
Cisco Defense Orchestrator
November 2024
Learn what your peers think about Cisco Defense Orchestrator. Get advice and tips from experienced pros sharing their opinions. Updated: November 2024.
814,649 professionals have used our research since 2012.
I.T. Manager at Egypt Foods group
This efficient, time-saving, centralized device manager is easy to deploy and requires minimal administrative IT resources
Pros and Cons
- "This product provides excellent centralized device controls and reporting."
- "It would be a better product if it incorporated device control for third-party products easily."
What is our primary use case?
As an IT person for Egypt Foods Group company, we primarily rely on Cisco Defense Orchestrator as centralized management for our Cisco devices (e.g., firewalls and other security devices).
How has it helped my organization?
Implementing the solution improves our company's performance. It does this by providing timely reporting, saving money, advising our IT personnel and improving the defense of our servers and internal network. It helps us to make sure our customers' information and practices are secure when using our company.
What is most valuable?
The most valuable feature of this solution is the centralization of device control. This helps to ensure that transactions between us and other companies are all secure. After we installed the firewalls we get reports for a safety check on a daily basis. Executive reports, custom reports, and penetration testing reports are all very valuable.
What needs improvement?
While I think it's a good product right now and does everything we need it to, everything has some room for improvement. I'm sure Cisco would definitely be looking for ways that they can make its product better. My suggestion would be for Cisco to add third-party devices to the management family. Third-party integration would allow more flexibility and I think that would be a feature that would satisfy the business needs of other potential clients today. Some companies may want flexibility in the products they choose and others may already have legacy equipment that they are not ready to get rid of.
For how long have I used the solution?
We have been using the solution for about a year
What do I think about the stability of the solution?
So far we find the solution to be quite stable. We do not experience interruptions and down-time.
What do I think about the scalability of the solution?
Scalability is pretty good for a company. We do not have immediate plans to scale much, though we probably will in the future. We work with three firewalls currently. One external firewall and two for the circuits. We have about 800 employees using the system across our organization and scaling from here will be incremental. When we need to we are confident we can scale easily. For example, firewall configuration in the cloud seems like a good idea, so we may take advantage of that — though that may be flexibility rather than scalability.
How are customer service and technical support?
The customer service is helping us out and giving us great support when we need it. The Cisco team is helpful and knowledgeable when we put in queries or tickets. They consistently respond very fast to our issues and that helps us maintain productivity.
Which solution did I use previously and why did I switch?
This product was the first firewall security manager that we installed at our organization, and we didn't really consider anything else because we were already very dedicated to Cisco products.
How was the initial setup?
The product was easy to implement. We are using the Cisco Defense Orchestrator on-prem solution. It only took about two weeks to have it on board. I'm not the one in charge of security as we have a team for security. The team is happy with the solution and doing well with it.
What about the implementation team?
To implement the product originally we used a consultant from outside our company. It was
SIGMA IT. They had a small team of two come to do the deployment. We keep a security team of three to monitor and maintain the system.
What was our ROI?
We do experience a return on investment in time savings, security and device management. It would be hard to quantify.
What's my experience with pricing, setup cost, and licensing?
As I'm in higher management, I was involved in the product selection but not the pricing negotiations. Security and finance officers would know more about the pricing.
Which other solutions did I evaluate?
Because of our environment, Cisco was the only vendor that we looked into. The product did what we needed it to, so we went with it.
What other advice do I have?
Cisco Defense Orchestrator is a very great solution to centralizing device management and security. I would want to give it a nine out of ten. It is not a ten because everything can be improved — such as the integration of third-party options, as I mentioned.
As far as advice for those considering this solution, it will save a lot of time. It actually saves our organization about 40% or 60% of the time we used to take to do things manually. That is about three days of labor a week. Now those resources can be used in different and better ways to benefit productivity and the organization.
We have obviously also realized security improvements.
Disclosure: I am a real user, and this review is based on my own experience and opinions.
Presales Engineer at DataProtect
Good network visibility and assists with re-routing blocked traffic
Pros and Cons
- "If our server is blocked, this solution shows us why it is blocked and allows us to update the network routing."
- "The dashboard needs to be more customizable to provide better reporting for our network."
What is our primary use case?
This is part of our network orchestration solution. It allows us to optimize our network. For example, if I want to communicate with a laptop, this solution gives us a way to route the communication.
We have a public cloud deployment using Microsoft Azure.
How has it helped my organization?
If our server is blocked, this solution shows us why it is blocked and allows us to update the network routing. It gives us recommendations of what to do, and it can be done automatically.
What is most valuable?
The most valuable feature of this solution is the visibility that it provides into our network. It shows a graphical topography of the network.
What needs improvement?
The dashboard needs to be more customizable to provide better reporting for our network.
For how long have I used the solution?
I have been using this solution for about two weeks.
What do I think about the stability of the solution?
This solution appears to be stable for the moment.
What do I think about the scalability of the solution?
The scalability of this solution is good.
There are three people who use this solution. We have an administrator, and engineering architect, and a software engineer.
How are customer service and technical support?
I would rate technical support a seven out of ten.
Which solution did I use previously and why did I switch?
Prior to this solution, I was working on Skybox. It is primarily used for firewalls.
How was the initial setup?
The initial setup of this solution is of medium difficulty. The deployment took one day, although for a larger infrastructure I think it will take more than one day.
One person is suitable for deployment. In terms of maintenance, two people including the administrator are sufficient.
What about the implementation team?
We deployed this solution with assistance from Cisco.
What other advice do I have?
My advice for anybody who is researching this solution is to consider the advantages that it provides in terms of infrastructure.
It is easy to configure administrators and other users who can generate reports and check the dashboard. For the moment, this solution meets our needs and I cannot think of any additional features that should be added.
I would rate this solution an eight out of ten.
Disclosure: My company has a business relationship with this vendor other than being a customer: Partner.
Product Consultant at a tech services company with 501-1,000 employees
A simple and centralized way to manage all products
Pros and Cons
- "With Cisco Defense Orchestrator, we can manage the complete Cisco Security solution. It provides a simple and centralized way to manage all products."
- "They can centralize all products and provide a correlation about an incident and the response. They can also provide an on-premises solution. Currently, Cisco Defense Orchestrator is just for cloud deployments, not for on-premises deployments. Customers have to manage it on the cloud. We are based in Vietnam, and most of the customers here prefer to have on-premises deployments. Customers, especially from banking and government sectors, do not prefer to do anything on the cloud. Some of the small enterprises use the cloud."
What is our primary use case?
We provide consultation for all Cisco solutions. We give consultations to customers for buying a preventive solution like Cisco Email Security, Cisco IronPort, Cisco Security, Cisco Web Security.
What is most valuable?
With Cisco Defense Orchestrator, we can manage the complete Cisco Security solution. It provides a simple and centralized way to manage all products.
What needs improvement?
They can centralize all products and provide a correlation about an incident and the response.
They can also provide an on-premises solution. Currently, Cisco Defense Orchestrator is just for cloud deployments, not for on-premises deployments. Customers have to manage it on the cloud. We are based in Vietnam, and most of the customers here prefer to have on-premises deployments. Customers, especially from banking and government sectors, do not prefer to do anything on the cloud. Some of the small enterprises use the cloud.
For how long have I used the solution?
I have been working with this solution for around four years.
What do I think about the stability of the solution?
The stability depends upon the Cisco cloud.
What do I think about the scalability of the solution?
Because it's on the cloud, Cisco Defense Orchestrator can scale up very well.
How are customer service and technical support?
They have good technical support. They're very good, and they can very well help a customer with implementation.
How was the initial setup?
Cisco Defense Orchestrator is on the cloud. It's really fast to deploy.
What other advice do I have?
I would recommend Cisco Defense Orchestrator. Cisco is a very good company and has a reputation. They can provide a comprehensive solution to customers. They have a lot of defense solutions for the network and endpoint security.
Cisco buys a lot of solutions and has a lot of acquisitions. When they combine them into one central management, the setup can be quite complex.
I would rate Cisco Defense Orchestrator an eight out of ten.
Which deployment model are you using for this solution?
Private Cloud
Disclosure: My company has a business relationship with this vendor other than being a customer: Distributor
Cyber Security Pre-Sales Consultant at a tech services company with 51-200 employees
Comparably priced with good support and the intrusion prevention works well
Pros and Cons
- "The most valuable feature is the Intrusion prevention."
- "They need to work on the user interface. It needs to be improved to make it more user-friendly."
What is our primary use case?
We are using this solution for filtering and blocking some websites. It's a firewall.
This is the main tool for network segmentation and intrusion prevention. It blocks malware and malicious activity.
What is most valuable?
The most valuable feature is the Intrusion prevention.
What needs improvement?
It's a stable solution, but it could always be improved.
They need to work on the user interface. It needs to be improved to make it more user-friendly.
For how long have I used the solution?
I have been working with Cisco Defense Orchestrator for five years.
What do I think about the stability of the solution?
It's a stable solution.
What do I think about the scalability of the solution?
Cisco Defense Orchestrator is scalable.
We have 1,000 users but we don't plan to increase our usage.
How are customer service and technical support?
Technical support is good.
Which solution did I use previously and why did I switch?
Previously, we were not using another solution. We have been using Cisco Defense Orchestrator from the beginning.
How was the initial setup?
The initial setup is straightforward.
It can take up to five hours to deploy.
We have a team of five who are mainly engineers to maintain this solution.
What's my experience with pricing, setup cost, and licensing?
If you compare to what is available on the market, they are in the same range with respect to pricing.
What other advice do I have?
I would recommend this product to anyone who is interested in using it.
I would rate this solution an eight out of ten.
Which deployment model are you using for this solution?
On-premises
Disclosure: I am a real user, and this review is based on my own experience and opinions.
Buyer's Guide
Download our free Cisco Defense Orchestrator Report and get advice and tips from experienced pros
sharing their opinions.
Updated: November 2024
Product Categories
Firewall Security ManagementPopular Comparisons
Tufin Orchestration Suite
Fortinet FortiGate Cloud
FireMon Security Manager
Palo Alto Networks Panorama
AWS Firewall Manager
Azure Firewall Manager
Cisco Secure Firewall Management Center
Buyer's Guide
Download our free Cisco Defense Orchestrator Report and get advice and tips from experienced pros
sharing their opinions.
Quick Links
Learn More: Questions:
- Comparing network security vendors and devices
- When should companies use SSL Inspection?
- When evaluating Firewall Security Management, what aspect do you think is the most important to look for?
- What are the most important features you would be looking for in a firewall?
- How do I estimate the required firewall throughput for my organization?
- What are the pros and cons of Tufin, AlgoSec and RedSeal?
- Tasks to Perform on Preventive Maintenance.
- Why is network segmentation important?
- Can a router with automatically-created firewall access lists be considered a scrubbing center?
- FortiGate 200E or Cyberoam 300iNG-XP?