Cisco Security Cloud Control vs FireMon Security Manager comparison

Cisco Security Cloud Control vs. FireMon Security Manager

Download the complete report

Helped 882,479 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Categories and Ranking

Cisco Security Cloud Control

Ranking in Firewall Security Management

13th

Average Rating

8.2

Number of Reviews

Ranking in other categories

No ranking in other categories

FireMon Security Manager

Ranking in Firewall Security Management

4th

Average Rating

8.2

Reviews Sentiment

7.7

Number of Reviews

Ranking in other categories

No ranking in other categories

Mindshare comparison

As of February 2026, in the Firewall Security Management category, the mindshare of Cisco Security Cloud Control is 2.7%, up from 1.1% compared to the previous year. The mindshare of FireMon Security Manager is 17.9%, up from 16.4% compared to the previous year. It is calculated based on PeerSpot user engagement data.

Firewall Security Management Market Share Distribution
Product	Market Share (%)
FireMon Security Manager	17.9%
Cisco Security Cloud Control	2.7%
Other	79.4%

Firewall Security Management

Featured Reviews

Francisco Delos Santos

Security Engineer at Metrobank

Automation reduces intervention and speeds up threat prevention

Our primary use case for Cisco Defense Orchestrator is the automation of playbooks. We primarily use it for this purpose to streamline processes The most valuable feature is the automation, as it reduces user intervention and allows us to focus on other tasks. Since the system is automated,…

Read full review

SurajYadav

Network Security Consultant at NTT DATA

Centralized policy governance has reduced audit effort and continuously improves risk visibility

I wish to see deeper and more customizable reporting and dashboards, as while the standard reports are useful for audits, operational teams sometimes need real-time, flexible views without exporting data. Tighter integrations with ticketing and change management tools would also enhance the workflow from request to implementation. FireMon Security Manager is excellent for policy governance and risk reduction, but better real-time dashboards and stronger workflow integrations would make it even more powerful for daily operations. There are one or two areas where FireMon Security Manager could be improved to make it even stronger. While FireMon Security Manager overall delivers solid governance and risk insight, it would benefit from more flexible dashboards and deeper integrations to reduce manual steps and improve visibility without relying on external tools. I rate FireMon Security Manager an 8 out of 10. It is a strong tool for firewall policy management, risk analysis, and compliance, clearly improving our audit process and policy governance. The reason I do not give it a 9 out of 10 is mainly because the dashboard could be more flexible and integration with the firewalls could be smoother. FireMon Security Manager is a reliable and high-value platform for managing and governing firewall policies, especially in a multi-vendor environment, though a few areas can still be improved.

Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Pros

"The most valuable feature is the Intrusion prevention."

"When we're looking to the policies, it identifies the shadow rules. It notifies us about anything that will supersede other rules."

"The most valuable feature is the automation, as it reduces user intervention and allows us to focus on other tasks."

"If we have a firewall go down, I can hop into CDO, pull the latest configuration off and apply it. That's really good. It helps save time."

"The most valuable feature is the automation, as it reduces user intervention and allows us to focus on other tasks."

"The initial setup was straightforward. We spun up the VM onsite. We generated the key that it needed to talk to the Cloud Orchestrator. After that, as I started adding devices, it was relatively quick and easy."

"The most valuable feature is being able to do centralized upgrades on the ASAs. We can select all of those ASAs, and say, "Upgrade these ASAs at this scheduled time." It will copy down the ASA image, ASDM image, and then do the upgrade and failovers, and then put it all back into service as required at a scheduled time. It automates that process for us."

"There are a lot of templates that are already built-in. They give you quick-to-create and quick-to-apply policies that are typically a little more complicated for people."

More Cisco Security Cloud Control pros

"Compared to other applications, it is user-friendly. The appearance of the menus and titles is clear and they are easy to follow. Of course, it requires some experience through using it, to go through everything, but it is not very difficult. It is an easy application to use."

"The most valuable features are Policy Optimizer and Firewall Manager for different brands of firewall."

"Firewall auditing is very important. We also use the solution for rule traffic analysis, traffic flow discovery and hidden/shadow rules within over 100 firewalls spanning five different brands."

"It gives us the ability to go to one place to look for potential firewall rules that are inappropriate, or which don't meet compliance. Instead of manually searching hundreds of firewalls for a policy, we can go to this one location and find the rules which are now out of compliance."

"FireMon Security Manager is a fast and intelligent device that delivers results in under ten seconds, even with thousands of policies."

"The most valuable feature is the Firewall reviews for our company compliance."

"The SQL language is convenient to use. It allows us to process a bunch of criteria very quickly and narrows things down if there is an issue with the firewall. It's easy to do that with SQL queries."

"FireMon is nice and provides 360-degree user views."

More FireMon Security Manager pros

Cons

"Cisco Defense Orchestrator can improve by providing more support for third-party security components."

"When logging into the device, we sort of had problems with it staying in sync. If somebody made a change onsite, it wouldn't do an automatic sync. It would have to wait, as you would have to do a manual sync up."

"The dashboard needs to be more customizable to provide better reporting for our network."

"Cisco Defense Orchestrator should be made more user-friendly overall."

"We had some MX devices that were blocking Windows Update from happening. We found out it was a Meraki issue, but it would have been nice if it had been flagged for us: "Hey, these updates are failing because the MX is blocking it." It wasn't a huge problem, but there was a loss of our time as well as the fact that the updates didn't get pushed out... It would have been nice if CDO had let us know that that was an issue."

"CDO doesn't have a report, an official report that I can check daily. It has another module called FTD, but it doesn't have that specifically for ASA. In the reporting, there are a lot of things that aren't there. There is also room for improvement in the daily monitoring."

"The main thing that would useful for us would the logging and monitoring. I have to check it out, to get the beta, because I don't have access to them... I wanted CDO to be a central place so where I could do everything but right now I don't think that's possible. I really don't want to go back and forth between this and FMC. Maybe the logging portion, when I look at it, will give me some similarities."

"It would be a better product if it incorporated device control for third-party products easily."

More Cisco Security Cloud Control cons

"The training for configuring new users or operators is confusing because the UI is not user-friendly and has room for improvement."

"A feature that could be improved is support for more devices, not just the firewall."

"When it comes to identifying risk in our environment and prioritizing fixes, it is really about the different priorities within the organization. FireMon is not so smart that it can tell what's important to us. It's up to us to figure that out."

"The AWS integration is still not mature for us to use. It is just not ready for our use case for AWS connectivity. Therefore, it does not provide us with a single pane of glass for our cloud environments, because we can't manage our cloud environment with the tool."

"FireMon could improve its end-user practices. As an end user, I am just trying to catch up on all the alerts. There are so many, and you still have to go through them and document what was found."

"We're working on implementing FireMon with our ticketing system service now. Having that would be an improvement."

"I ran a report and FireMon suggested that certain tools were not used. When I removed them, while it didn't bring our environment down completely, a lot of our environment started malfunctioning. Our backup system did not work, nor did other things that involve internal and external communication. We are not comfortable with what it did."

"When it comes to documentation, they need to start putting together a basic command manual. With Cisco, you can look up a command and it gives you examples of three or four different ways that command can be used. It tells you how to put it into the GUI and the CLI. FireMon does need to start doing that."

More FireMon Security Manager cons

Pricing and Cost Advice

"It is about a $100 per year for an ASA 5506 firewall, and from there it keeps going up if you have a bigger box. For example, the 5516 is $200 to $300 per year."

"I work with a lot of clients, and the price or value of the Cisco Defense Orchestrator can vary from one client to another. If you have a lot of Cisco solutions, the price of the Cisco Defense Orchestrator is justified. Whereas if you have some security components from other vendors, such as Check Point or Palo Alto. This solution would be a pretty expensive proposition considering that they don't integrate with them well."

"If you compare to what is available on the market, they are in the same range with respect to pricing."

"It is covered under the CIsco Enterprise License Agreement (ELA). So, it is licensed and ours."

"It's around £500 per unit for a three-year license."

"After our free trial was done we got a subscription for three years and it was under $3,000 or so. It's part of the EA we already paid for, so I don't know what it would be if it was a la carte."

"We pay for it yearly."

"We don't license all of the devices in our network, so it does not provide us with a comprehensive visibility of all devices in a hybrid network at this time."

"Pricing is reasonable."

"Its pricing is good. Compared to others, it is not so expensive."

"This is an expensive solution. The cost of three modules for three years was approximately one million."

"Regarding additional costs, if you want things like Policy Optimizer, extra features, that's extra."

"The pricing is very good, very straightforward. It also came in cheaper than AlgoSec and Tufin."

"The pricing was very good during our initial year, but they increased it this year a little bit. The price is okay. It is not cheap, but it is still average."

More FireMon Security Manager pricing and cost advice

See which vendors are best for you

Use our free recommendation engine to learn which Firewall Security Management solutions are best for your needs.

See recommendations

882,479 professionals have used our research since 2012.

Top Industries

By visitors reading reviews

Computer Software Company

21%

Manufacturing Company

13%

Financial Services Firm

Performing Arts

Manufacturing Company

12%

Financial Services Firm

12%

Computer Software Company

10%

Comms Service Provider

Company Size

By reviewers

Large Enterprise

Midsize Enterprise

Small Business

By reviewers
Company Size	Count
Small Business	6
Midsize Enterprise	3
Large Enterprise	5

By reviewers
Company Size	Count
Small Business	9
Midsize Enterprise	9
Large Enterprise	46

Questions from the Community

What needs improvement with Cisco Defense Orchestrator?

Cisco Defense Orchestrator should be made more user-friendly overall. Currently, to use it effectively, one must be specific with the rule set that needs to be set up. Additionally, I suggest impro...

What is your primary use case for Cisco Defense Orchestrator?

Our primary use case for Cisco Defense Orchestrator is the automation of playbooks. We primarily use it for this purpose to streamline processes.

What advice do you have for others considering Cisco Defense Orchestrator?

Those who want to use Cisco Defense Orchestrator should build their own use case and see if it fits their environment. The most significant benefit for us is the response time because it automates ...

What do you like most about FireMon?

I like the Security Manager console where we can see any changes that have been made or pull the results of an assessment and control the policies that we implement.

What is your experience regarding pricing and costs for FireMon?

Our experience with FireMon Security Manager's pricing and licensing is that it is on the higher side, but justified for a large, regulated environment. The setup cost and licensing made sense give...

What needs improvement with FireMon?

FireMon Security Manager is a strong platform. However, it could be improved with a more intuitive user interface and faster initial onboarding for new users. Simplifying some workflows and dashboa...

Tufin Orchestration Suite vs Cisco Security Cloud Control

Comparisons

Compared 20% of the time

Skybox Security Suite vs Cisco Security Cloud Control

Compared 12% of the time

Palo Alto Networks Panorama vs Cisco Security Cloud Control

Compared 12% of the time

AlgoSec vs Cisco Security Cloud Control

Compared 12% of the time

Fortinet FortiPortal vs Cisco Security Cloud Control

Compared 6% of the time

More Cisco Security Cloud Control Competitors

Tufin Orchestration Suite vs FireMon Security Manager

Compared 37% of the time

AlgoSec vs FireMon Security Manager

Compared 35% of the time

Skybox Security Suite vs FireMon Security Manager

Compared 8% of the time

Palo Alto Networks Panorama vs FireMon Security Manager

Compared 5% of the time

AWS Firewall Manager vs FireMon Security Manager

Compared 1% of the time

More FireMon Security Manager Competitors

Product Reports

Cisco Security Cloud Control

Download Cisco Security Cloud Control product report

FireMon Security Manager

Download FireMon Security Manager product report

Also Known As

Cisco Defense Orchestrator, CDO

No data available

Interactive Demo

Cisco

Demo not available

FireMon

Overview

Cisco Security Cloud Control offers centralized management, real-time visibility, and AI-driven automation for on-premises and cloud environments, simplifying scalability and deployment.

With a unified approach, Cisco Security Cloud Control enhances security posture by providing cross-platform insights across Cisco's ecosystem. It accelerates threat detection and optimizes policy enforcement through a blend of AI automation and natural language querying capabilities. The intuitive platform serves multiple devices, enabling comprehensive management of Secure Firewall, Secure Access, and other services with guidance from the Cisco AI Assistant. It also includes an AI Operations feature that identifies critical issues and provides real-time insights, enhancing response times while a policy analyzer improves security hygiene by detecting and closing security gaps. Its automation minimizes manual tasks, secures cloud-stored configurations, and supports two-factor authentication. However, it could benefit from improvements in navigation clarity, bulk change handling, and expanded third-party integrations.

What are the key features of Cisco Security Cloud Control?

Centralized Device Control: Streamlines management with bulk policy upgrades and automation.
AI-Driven Automation: Reduces manual tasks and enhances threat detection.
Network Visibility: Provides insights with valuable reporting and intrusion prevention.
Intuitive Configuration: Enables easy policy adjustments and restoration of secure connections.

What benefits can users anticipate?

Increased Efficiency: Reduces operational overhead with centralized management.
Improved Security: Enhances protection through automated policy enforcement and AI insights.
Time Savings: Simplifies management of multiple devices in cloud and on-premises environments.
Scalability: Supports growth with ease of deployment and policy consistency.

Industries implementing Cisco Security Cloud Control leverage its capabilities for tasks ranging from firewall management to intrusion prevention. Enterprises use it to streamline policy management, automate configurations, and integrate Cisco devices with cloud strategies, benefiting from simplified security orchestration and network segmentation.

Cisco

The increasing complexity of networks, driven by the constant influx of new devices, applications, and cloud services, presents a daunting challenge for managing firewall policies and rules. A typical enterprise environment has millions of rules, and just one simple misconfiguration can lead to devastating consequences like compliance violations, outages, and data breaches.

FireMon’s Security Manager is a purpose-built network security policy management (NSPM) platform that automates the management of firewall and cloud security policies to eliminate policy-related risk, accurately and quickly change rules, and meet internal and external compliance requirements.

Reduce Risk Manage risk with real-time visibility and control
Manage Change Avoid misconfigurations, accelerate business, and improve security
Enforce and Maintain Compliance Avoid violations, avoid risk, and avoid fines

FireMon

Sample Customers

Insurance Company of British Columbia, Shawmut

Convey, MGM Resorts International, Southwest Airlines, Alkami, Costco, Aetna, IBM, Verizon, Wells Fargo

Cisco Security Cloud Control vs. FireMon Security Manager