AWS Firewall Manager vs Tufin Orchestration Suite comparison

Amazon Web Services (AWS) and Tufin are both solutions in the Firewall Security Management category. Amazon Web Services (AWS) is ranked #6 with an average rating of 8.3, while Tufin is ranked #2 with an average rating of 8.0. Amazon Web Services (AWS) holds a 3.4% mindshare in Firewall Security Management, compared to Tufin’s 18.2% mindshare. Additionally, 100% of Amazon Web Services (AWS) users are willing to recommend the solution, compared to 91% of Tufin users who would recommend it.

AWS Firewall Manager

Read 12 AWS Firewall Manager reviews

1,160 Views
1,160 Comparison Views

100% willing to recommend

Tufin Orchestration Suite

Read 182 Tufin Orchestration Suite reviews

9,600 Views
8,064 Comparison Views

91% willing to recommend

AWS Firewall Manager

Tufin Orchestration Suite

Comparison Buyer's Guide

Download the report

Executive SummaryUpdated on Nov 4, 2024

Tufin Orchestration Suite and AWS Firewall Manager compete in the network security management category. Tufin Orchestration Suite seems to have the upper hand with its ability to manage multi-vendor environments and provide detailed policy analysis.

Features: Tufin Orchestration Suite includes SecureTrack for rule implementation and audit compliance, SecureChange for automated workflow management, and multi-vendor support for unified security management. It allows detailed network analysis supporting various firewall configurations. AWS Firewall Manager offers robust automation for policy management, easy integration within the AWS ecosystem, and cloud-native security features that simplify AWS resource protection.

Room for Improvement: Tufin Orchestration Suite could improve its topology visualization, expand support for additional security devices, and enhance third-party tool integration. Users express a need for a more user-friendly interface and flexible reporting options. AWS Firewall Manager would benefit from better documentation, expanded logging capabilities, and greater feature customization to enhance its functionality outside AWS environments.

Ease of Deployment and Customer Service: Tufin Orchestration Suite primarily deploys on-premises, supporting hybrid and private cloud setups, offering significant control but with complex deployment. Customer service is mostly praised, although experiences vary. AWS Firewall Manager is straightforward to deploy in public and hybrid cloud environments, ideal for AWS users, with generally well-regarded customer service, though improved non-AWS integration support is desired.

Pricing and ROI: Tufin Orchestration Suite is priced higher due to its extensive features, but it promises strong ROI through process simplification. Its complex licensing is based on device support. AWS Firewall Manager offers flexible cost governance but might be considered costly by some due to its pay-as-you-go model, yet it provides agility in cloud settings. Both tools enhance ROI by streamlining security operations, catering to different needs and scales.

To learn more, read our detailed AWS Firewall Manager vs. Tufin Orchestration Suite Report (Updated: April 2026).

Buyer's Guide

AWS Firewall Manager vs. Tufin Orchestration Suite

April 2026

Download the complete report

Helped 896,467 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Categories and Ranking

AWS Firewall Manager

Ranking in Firewall Security Management

6th

Average Rating

8.0

Reviews Sentiment

7.1

Number of Reviews

Ranking in other categories

No ranking in other categories

Tufin Orchestration Suite

Ranking in Firewall Security Management

2nd

Average Rating

8.0

Reviews Sentiment

7.2

Number of Reviews

182

Ranking in other categories

No ranking in other categories

Mindshare comparison

As of May 2026, in the Firewall Security Management category, the mindshare of AWS Firewall Manager is 3.4%, down from 4.3% compared to the previous year. The mindshare of Tufin Orchestration Suite is 18.2%, down from 22.2% compared to the previous year. It is calculated based on PeerSpot user engagement data.

Firewall Security Management Mindshare Distribution
Product	Mindshare (%)
Tufin Orchestration Suite	18.2%
AWS Firewall Manager	3.4%
Other	78.4%

Firewall Security Management

Featured Reviews

Venda E

Cloud Option Engineer at a tech vendor with 10,001+ employees

Centralized security policies have streamlined audits and ensure consistent protection by default

One area for improvement is the reporting and customization option. The compliance reports are helpful, but having more granular insights or export options would make it even easier to use during audits. Also, support for more third-party integration could improve flexibility. Another improvement I need to see is a smoother setup experience. Some of the initial configuration steps, especially around the organization and permissions, can feel complex. A more guided setup or clear UI explanation would make it easier for teams to adopt quickly. One more improvement would be better alerting options. Right now, we mostly rely on AWS Security Hub or CloudWatch for detailed alerts. Having more built-in, real-time notification directly from AWS Firewall Manager would make it easier to monitor policy violations without extra setup.

Read full review

reviewer2688339

Works

Vulnerability control saves audit costs and reduces expenses for organizations

Tufin Orchestration Suite is not commonly used in Thailand due to a lack of local support, and many customers are switching to AlgoSec or other vendors. The analytics features of Tufin Orchestration Suite are challenging to use and require technical expertise, which is a concern as there is not much knowledge in this field in Thailand. The issue of technical knowledge, especially regarding English language proficiency, is significant for government and some companies, making Tufin Orchestration Suite harder to use.

Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Pros

"The interface is intuitive and it is easy for the users."

"The most valuable feature is scaling, which allows you to deploy one configuration and scan and deploy it across the network. The automated policy application feature also streamlines security operations."

"Also, the strength of the community is invaluable."

"The product is highly reliable."

"AWS Firewall Manager isn't a separate solution when you create the virtual private cloud (VPC), so you can control the traffic through that security group."

"The most valuable feature is the centrally managed rule. I also like the central orchestration."

"After implementing AWS Firewall Manager, we reduced our manual security configuration effort by around sixty to seventy percent as the policies are now centralized, managed, and automatically enforced."

"It is helpful for our compliance, as the compliance manager manages compliance with leading industry standards such as FedRAMP, which my company complies with, GDPR laws, and ISO 27001."

More AWS Firewall Manager pros

"It provides a comprehensive overview of what our network looks like in terms of what is allowed and what is not, then how the traffic' is flowing with the Network Topology Map."

"The features I have found most valuable are its capability to check on the firewall and the routers. Afterwards it checks out all the configs, checks the vulnerabilities, checks the risks - it checks everything that may end up causing our router to be compromised. At the end it recommendations what we should do."

"SecureChange Workflow: It is Firewall Admin Robot, which handles the ticket right from receiving until the implementing process with documenting all the approvals."

"Using this solution has drastically cut down on our implementation time."

"With Tufin, I think it's very, very easy to get big easy wins up front with all the documentation and all the tracking, just to get started and move forward from there."

"The automated reporting on a regular basis is helping us to be compliant with legal requirements."

"This is a great product and we are doing very well with it."

"The number one benefit this solution provides is time savings, as both I and another engineer save hours upon hours of work spent creating reports, which Tufin now does for us, turning that reclaimed time into effort well spent on other things."

More Tufin Orchestration Suite pros

Cons

"For AWS WAF, we have seen cases where it allowed suspicious HTTPS headers even if they carried malicious payloads."

"AWS Firewall Manager should be open to manage other third-party appliances as well."

"One area for improvement is the reporting and customization option."

"The areas of improvement are definitely platform resiliency, as we have seen outages on the AWS backbone, and whenever there is an outage on the AWS backbone, it impacts all the services hosted on that region, so we expect regional resiliency."

"This solution is suitable for a small-scale enterprise and may not scale up to a very high volume of traffic or a large number of servers."

"I would like to see AWS add some UTM features to the firewall. It would also be great if AWS Firewall had native IPS/IDS. They have the separate IPS/IDS, GuardDuty."

"Enabling and configuring the logging is not that straightforward."

"In AWS, there are so many features that many users get confused about what to use and what not to use."

More AWS Firewall Manager cons

"I would like see the workflow process expand out to give us the ability to tie it to other APIs."

"I wish there was a read-only admin option. I don't like that you have to be a full admin just to see the Network Topology Map. That option is great out there if you are a user, multi-domain user, etc. However, that piece is very helpful for us, but I also don't want to be handing out admin access to every single person so they can see that network tab."

"We had a discussion in the Customer Advisory Board yesterday around use of SecureChange. We would like to have an opportunity for an engineer to choose if you want to make or take the policy which has been suggested by the designer functionality, making it more human readable or less human readable (more or less granular). This would be huge for the customers who are using SecureChange. They said this was one of their issues with it, especially for anything that was going into a regulator's or auditor's hands. The more human readable, the better that it would be, and this would definitely be applicable to our industry. It sounds like they are working on this issue, or they took the feedback, but that would be a big one for us in being able to make the jump to SecureChange."

"I feel that the user interface is a bit dated."

"There are some missing features we'd like to see them add in the future."

"I'd like to see automation of a number of steps."

"This solution would benefit from better reporting functionality with graphing so that reports can be presented to management."

"I work on the network and security sides. The network visibility side needs improvement."

More Tufin Orchestration Suite cons

Pricing and Cost Advice

"The AWS Firewall Manager is a little on the costly side."

"From what I've heard from my colleagues, it appears that the pricing is competitive, which influenced our decision to choose this option."

"It is a cost-efficient product."

"The licensing is on a pay-as-you-go basis and we are billed monthly."

"The solution has helped us to reduce the time it takes to make changes. With Tufin, it takes ten to 15 minutes. Before, it was 30 minutes or more."

"While licensing varies greatly, it is about $50,000 a year."

"It is expensive, but as compared to other players, it's more or less okay. Their pricing is not very transparent. This is my biggest point regarding Tufin. I've never seen a price list or something like that. It's always individual, and in many cases, it's very confusing to know what is the base and what is the price."

"The solution has helped reduce the time it takes us to make changes. It helps make overall integrated changes immediately. It allows us to cut down at least a few hours in the week in regards to changes and monitoring."

"Our engineers are spending less time on manual processes: 20 to 30 hour plus."

"We have seen ROI in operational aspects, in terms of how long it takes to resolve incidences which arise."

"The licensing costs are a significant amount of money."

"Price could always be better, but there are always consequences."

More Tufin Orchestration Suite pricing and cost advice

See which vendors are best for you

Use our free recommendation engine to learn which Firewall Security Management solutions are best for your needs.

See recommendations

896,467 professionals have used our research since 2012.

Top Industries

By visitors reading reviews

Comms Service Provider

11%

University

Construction Company

Manufacturing Company

Financial Services Firm

16%

Manufacturing Company

11%

Computer Software Company

Construction Company

Company Size

By reviewers

Large Enterprise

Midsize Enterprise

Small Business

By reviewers
Company Size	Count
Small Business	5
Midsize Enterprise	1
Large Enterprise	8

By reviewers
Company Size	Count
Small Business	29
Midsize Enterprise	13
Large Enterprise	153

Questions from the Community

What is your experience regarding pricing and costs for AWS Firewall Manager?

The pricing is reasonable and follows a pay-as-you-go model, which makes it cost-effective for scaling the environment. There is no significant setup cost since the native AWS services and licensin...

See all answers

What needs improvement with AWS Firewall Manager?

AWS Firewall Manager could be improved with more granular policy customization for better visibility through enhanced dashboards and reporting. Simplifying the initial setup and providing clearer d...

See all answers

What is your primary use case for AWS Firewall Manager?

My primary use case for AWS Firewall Manager is to centrally manage and enforce security policies across the multiple AWS accounts and resources within our organization. It helps to streamline the ...

See all answers

What needs improvement with Tufin SecureCloud?

Tufin Orchestration Suite ( /products/tufin-orchestration-suite-reviews ) is not commonly used in Thailand due to a lack of local support, and many customers are switching to AlgoSec or other vendo...

See all answers

What is your primary use case for Tufin SecureCloud?

I have primarily used Skybox and AlgoSec ( /products/algosec-reviews ). I have also interacted with FireMon for compiling. However, I am not currently working with ACA, and I don't have any project...

See all answers

What advice do you have for others considering Tufin SecureCloud?

There is potential for improvement in explaining the analytics in the dashboard for Tufin Orchestration Suite. Tufin Orchestration Suite does provide good monitoring; however, interpreting the grap...

See all answers

Comparisons

Fortinet FortiGate Cloud vs AWS Firewall Manager

Compared 23% of the time

Palo Alto Networks Panorama vs AWS Firewall Manager

Compared 14% of the time

Cisco Secure Firewall Management Center vs AWS Firewall Manager

Compared 12% of the time

AlgoSec vs AWS Firewall Manager

Compared 11% of the time

FireMon Security Manager vs AWS Firewall Manager

Compared 8% of the time

More AWS Firewall Manager Competitors

AlgoSec vs Tufin Orchestration Suite

Compared 29% of the time

FireMon Security Manager vs Tufin Orchestration Suite

Compared 26% of the time

Skybox Security Suite vs Tufin Orchestration Suite

Compared 10% of the time

Palo Alto Networks Panorama vs Tufin Orchestration Suite

Compared 5% of the time

FortiGate Cloud-Native Firewall (FortiGate CNF) vs Tufin Orchestration Suite

Compared 1% of the time

More Tufin Orchestration Suite Competitors

Product Reports

Buyer's Guide

AWS Firewall Manager

May 2026

Download AWS Firewall Manager product report

Buyer's Guide

Tufin Orchestration Suite

May 2026

Download Tufin Orchestration Suite product report

Also Known As

No data available

Tufin SecureCloud

Overview

AWS Firewall Manager provides centralized security policy management across multiple AWS accounts, automating rule enforcement and enhancing compliance efforts seamlessly integrated with AWS services like WAF and Shield.

AWS Firewall Manager is designed for efficient security policy management, offering features like automatic rule enforcement and real-time compliance monitoring. The platform integrates with AWS services, assisting organizations in streamlining audits through centralized management and accurate analytics. Its built-in compliance dashboard and scalability features help reduce manual workloads and potential security misconfigurations, while community support aids in addressing challenges swiftly.

What are AWS Firewall Manager's standout features?

Centralized Policy Management: Streamlines rule enforcement across accounts.
Real-Time Compliance Monitoring: Tracks policy adherence seamlessly.
Auto-Remediation: Automatically addresses security issues.
Seamless Integration: Works well with AWS services like WAF and Shield.
Compliance Dashboard: Offers clarity and insights for audits.

What benefits and ROI should organizations evaluate?

Enhanced Security Posture: Reduces manual efforts and misconfigurations.
Streamlined Audits: Simplifies compliance checks and reporting.
Efficiency Across Accounts: Brings consistency to security rules.
Community Support: Provides quick solutions to challenges.

Industries with regulatory requirements often implement AWS Firewall Manager to manage security policies, ensuring consistent enforcement of WAF rules and protecting web applications from threats like SQL injection. It's crucial for environments needing compliance monitoring and regular updates, especially in sectors dealing with cloud infrastructure and file transfers.

Amazon Web Services (AWS)

Tufin Orchestration Suite offers change tracking, policy management, automation, and comprehensive visibility, aiding in secure and efficient network control. Its customization capabilities enable efficient rule analysis and optimization for multiple vendors.

With its robust capabilities, Tufin Orchestration Suite facilitates firewall policy management, automation, and compliance. Organizations benefit from its role in auditing, rule cleanup, policy standardization, and change tracking. While it provides efficient network orchestration, challenges such as dated interface design, incomplete cloud platform integration, and slow report generation demand attention. Security policy automation and vendor integration improvements are essential. Despite these issues, Tufin is crucial for managing multi-vendor environments and coordinating change management. Centralized management offers benefits in monitoring, reporting, risk assessment, role recertification, and network orchestration.

What are the key features of Tufin Orchestration Suite?

Change Tracking: Monitors network modifications to enhance security management.
Policy Management: Helps standardize and enforce security regulations effectively.
Comprehensive Visibility: Provides detailed insights into network activities.
Automation: Streamlines tasks, reducing manual effort and potential errors.
Firewall Cleanup: Assists in identifying and removing redundant rules for optimal performance.
Compliance Auditing: Ensures adherence to regulatory requirements.
Report Generation: Offers insights and data for informed decision-making.
Customization: Supports user-specific needs for rule analysis and optimization.

What benefits can users expect from Tufin Orchestration Suite?

Enhanced Security: Improved control reduces vulnerabilities.
Operational Efficiency: Automation streamlines workflows and minimizes mistakes.
Multivendor Support: Facilitates integration across different firewall environments.
Cost Savings: Optimized processes and reduced manual labor lower operational costs.
User-Friendly Deployment: Simplifies integration and start-up processes.

In finance, Tufin integrates with existing systems to automate security policy management and ensure compliance, optimizing efficiency and risk management. In healthcare, it aids regulatory adherence and patient data protection, while in retail, it enhances security protocols amid a diverse vendor landscape.

Tufin

Sample Customers

Expedia, Intuit, Royal Dutch Shell, Brooks Brothers

3M, AT&T, Blue Cross Blue Shield, BNP Parabas, ConocoPhillips, Deutsche Bank, GE, IBM, Pfizer, United States Postal Service

Buyer's Guide

AWS Firewall Manager vs. Tufin Orchestration Suite

April 2026

Free Report: AWS Firewall Manager vs. Tufin Orchestration Suite

Find out what your peers are saying about AWS Firewall Manager vs. Tufin Orchestration Suite and other solutions. Updated: April 2026.

DOWNLOAD NOW

896,467 professionals have used our research since 2012.

See our AWS Firewall Manager vs. Tufin Orchestration Suite report.

See our list of best Firewall Security Management vendors.

We monitor all Firewall Security Management reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.