Try our new research platform with insights from 80,000+ expert users

Cisco Security Cloud Control vs FireMon Security Manager comparison

Cisco and FireMon are both solutions in the Firewall Security Management category. Cisco is ranked #13 with an average rating of 8.0, while FireMon is ranked #3 with an average rating of 8.2. Cisco holds a 2.9% mindshare in Firewall Security Management, compared to FireMon’s 17.7% mindshare. Additionally, 100% of Cisco users are willing to recommend the solution, compared to 88% of FireMon users who would recommend it.
Cisco Security Cloud Control
Read 14 Cisco Security Cloud Control reviews
  • 1,066 Views
  • 1,066 Comparison Views
100% willing to recommend
FireMon Security Manager
Read 58 FireMon Security Manager reviews
  • 3,712 Views
  • 3,601 Comparison Views
88% willing to recommend
 

Comparison Buyer's Guide

Download the report
Executive SummaryUpdated on Feb 8, 2026

FireMon Security Manager and Cisco Security Cloud Control both compete in the network security management category. FireMon has an advantage in multi-vendor rule management, whereas Cisco stands out for centralized control in the Cisco ecosystem.

Features: FireMon Security Manager provides comprehensive security management features such as ACL management, compliance checks, and rule optimization. It also includes shadow rule detection and proactive security intelligence. Conversely, Cisco Security Cloud Control enables centralized control and automation within Cisco’s ecosystem, offering benefits in bulk changes and centralized updates for Cisco devices.

Room for Improvement: FireMon could improve network map customization and third-party integrations. The upgrade process and reporting consistency are other areas needing enhancement. Challenges with SDN and NGFW handling, as well as SMB firewall integration, offer room for development. Cisco could enhance user interface intuitiveness and expand third-party device support. Improving logging, monitoring, and real-time analytics would increase its value, and feature consolidation could simplify management.

Ease of Deployment and Customer Service: FireMon supports on-premises deployments with hybrid flexibility, praised for responsive but sometimes slow customer service. Cisco offers on-premises and public cloud deployment options, well-regarded for support but suggests improvements in responsiveness and feature integration.

Pricing and ROI: FireMon is perceived as expensive but justified by extensive functionality and support, delivering significant ROI through time savings and error reduction, valued in large environments. Cisco's pricing aligns with its ecosystem integration, with ROI varying by client needs and infrastructure size, appealing for Cisco-invested organizations due to its centralized control.

DOWNLOAD THE COMPLETE REPORT
To learn more, read our detailed Cisco Security Cloud Control vs. FireMon Security Manager Report (Updated: February 2026).
Buyer's Guide
Cisco Security Cloud Control vs. FireMon Security Manager
February 2026
Download the complete report
Helped 883,089 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Categories and Ranking

Cisco Security Cloud Control
Ranking in Firewall Security Management
13th
Average Rating
8.2
Number of Reviews
14
Ranking in other categories
No ranking in other categories
FireMon Security Manager
Ranking in Firewall Security Management
3rd
Average Rating
8.2
Reviews Sentiment
7.7
Number of Reviews
58
Ranking in other categories
No ranking in other categories
 

Mindshare comparison

As of March 2026, in the Firewall Security Management category, the mindshare of Cisco Security Cloud Control is 2.9%, up from 1.1% compared to the previous year. The mindshare of FireMon Security Manager is 17.7%, up from 16.6% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Firewall Security Management Market Share Distribution
ProductMarket Share (%)
FireMon Security Manager17.7%
Cisco Security Cloud Control2.9%
Other79.4%
Firewall Security Management
 

Featured Reviews

FS
Francisco Delos Santos
Security Engineer at Metrobank
Automation reduces intervention and speeds up threat prevention
Our primary use case for Cisco Defense Orchestrator is the automation of playbooks. We primarily use it for this purpose to streamline processes The most valuable feature is the automation, as it reduces user intervention and allows us to focus on other tasks. Since the system is automated,…
Read full review
SurajYadav - PeerSpot reviewer
SurajYadav
Network Security Consultant at NTT DATA
Centralized policy governance has reduced audit effort and continuously improves risk visibility
I wish to see deeper and more customizable reporting and dashboards, as while the standard reports are useful for audits, operational teams sometimes need real-time, flexible views without exporting data. Tighter integrations with ticketing and change management tools would also enhance the workflow from request to implementation. FireMon Security Manager is excellent for policy governance and risk reduction, but better real-time dashboards and stronger workflow integrations would make it even more powerful for daily operations. There are one or two areas where FireMon Security Manager could be improved to make it even stronger. While FireMon Security Manager overall delivers solid governance and risk insight, it would benefit from more flexible dashboards and deeper integrations to reduce manual steps and improve visibility without relying on external tools. I rate FireMon Security Manager an 8 out of 10. It is a strong tool for firewall policy management, risk analysis, and compliance, clearly improving our audit process and policy governance. The reason I do not give it a 9 out of 10 is mainly because the dashboard could be more flexible and integration with the firewalls could be smoother. FireMon Security Manager is a reliable and high-value platform for managing and governing firewall policies, especially in a multi-vendor environment, though a few areas can still be improved.
Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"We have quite a few Active Stone by pairs. If they fail over... I'll see that there's a change on it and I'll have a look. The only change on it is that now this one is the standby, it took over the active role. I can go into that firewall and find out what happened... and troubleshoot based on that. That's pretty cool too."
"The ability to see the uptimes on the different VPNs that we have configured for site-to-site."
"If we have a firewall go down, I can hop into CDO, pull the latest configuration off and apply it. That's really good. It helps save time."
"We use a lot of image upgrades. We take some 20 devices and then we update everything at once, including the policies. We apply policies for groups. For certain groups, like anti-viruses, we send out policies and apply them to every single device. It's really easy and simple."
"When we're looking to the policies, it identifies the shadow rules. It notifies us about anything that will supersede other rules."
"I like the upgrade feature. That is pretty valuable to me because I have dual ASAs and when I go through CDO it does it for me pretty well. It's all done in the back-end and I don't really have to be involved. I just initiate, pick the image, and I pick when I want it done and it just does it, whether I have a single ASA or have a dual ASA."
"The most valuable feature is the automation, as it reduces user intervention and allows us to focus on other tasks."
"With Cisco Defense Orchestrator, we can manage the complete Cisco Security solution. It provides a simple and centralized way to manage all products."
More Cisco Security Cloud Control pros
"The technical support is very good. They've always been helpful."
"The Security Manager part of FireMon... gives me an eye on everything that's out there, everything that I cannot see. Because I'm not a network admin, I cannot go to a firewall itself, but at least I have FireMon so that I can go in and view everything that I want to view. And I can eliminate whatever I see that is wrong,"
"FireMon Security Manager is a fast and intelligent device that delivers results in under ten seconds, even with thousands of policies."
"When it comes to real-time compliance management, it is very good because it is able to compare changes in the configuration as well as giving us a timestamp. It also sends email alerts to our environment so we know if someone has made a change on the network. It gives us the whole picture of that change. Whether it is a configuration change or just a small comment, it gives us the before and after snapshot."
"FireMon is nice and provides 360-degree user views."
"We also use the solution’s SASE integration capabilities to extend security policy management for cloud firewall management. It helps in creating one consistent rule across multiple platforms and it improves accuracy."
"Overall, I would rate this solution a nine out of ten."
"It is the single place where we go to review all of our firewall changes. The solution makes it easier for us to track all the changes made. It is a central place where we can look at all the firewall rules, because we have three different firewall vendors. It save us time and creates efficiencies by looking at the general picture."
More FireMon Security Manager pros
 

Cons

"It would be a better product if it incorporated device control for third-party products easily."
"They can centralize all products and provide a correlation about an incident and the response. They can also provide an on-premises solution. Currently, Cisco Defense Orchestrator is just for cloud deployments, not for on-premises deployments. Customers have to manage it on the cloud. We are based in Vietnam, and most of the customers here prefer to have on-premises deployments. Customers, especially from banking and government sectors, do not prefer to do anything on the cloud. Some of the small enterprises use the cloud."
"CDO doesn't have a report, an official report that I can check daily. It has another module called FTD, but it doesn't have that specifically for ASA. In the reporting, there are a lot of things that aren't there. There is also room for improvement in the daily monitoring."
"We had some MX devices that were blocking Windows Update from happening. We found out it was a Meraki issue, but it would have been nice if it had been flagged for us: "Hey, these updates are failing because the MX is blocking it." It wasn't a huge problem, but there was a loss of our time as well as the fact that the updates didn't get pushed out... It would have been nice if CDO had let us know that that was an issue."
"The main thing that would useful for us would the logging and monitoring. I have to check it out, to get the beta, because I don't have access to them... I wanted CDO to be a central place so where I could do everything but right now I don't think that's possible. I really don't want to go back and forth between this and FMC. Maybe the logging portion, when I look at it, will give me some similarities."
"I'd like CDO to be the one-stop-shop where we could do all the configurations easily. It would be nice, for ASA upgrades, if we could do them from a central repository and not have to reach out to Cisco. That would be a definite plus."
"There could be some slight improvements to navigation. In some of the navigation you've got to go back to be able to get into where you need to be once you've made a change. If I make a change, I've then got to go back to submit and send the change."
"When logging into the device, we sort of had problems with it staying in sync. If somebody made a change onsite, it wouldn't do an automatic sync. It would have to wait, as you would have to do a manual sync up."
More Cisco Security Cloud Control cons
"Sometimes, there is a problem related to the sizing itself. If we have many devices added or if the firewall complexity is huge, we might experience some lag in processing. It may relate to the hardware specifications."
"The current health and monitoring of the devices is atrocious... Imagine you have a list of 200 devices, and you can grade each of those devices as either green, yellow, or red. However, there might be three different reasons for you to go to red, or eight different reasons to go to yellow, and all of those things could be combined... Out of all those categories, I only find one or two of them that are, perhaps, pertinent."
"Our firewalls have multiple paths through them and FireMon falls short a little bit because it's not Palo Alto-centric. I don't think FireMon has kept up with where Palo Alto is at. They started out being Check Point-centric for years and they've never really fully embraced the nuances others, like Palo Alto or Fortinet, have. They don't handle a lot of the capabilities and attributes that Palo Alto does yet. They're working on it. They're getting there."
"FireMon could be made more user-friendly when it comes to creating filters or conducting traffic analysis."
"FireMon could be easier to use and flexibility regarding reporting could be improved."
"When it comes to real-time compliance management, something that is missing is alerting on certain, predefined controls. It would be good to have a predefined set of controls which, if not complied with in a newly set up rule, would create an alert for us. That is something that is missing, out-of-the-box."
"The AWS integration is still not mature for us to use. It is just not ready for our use case for AWS connectivity. Therefore, it does not provide us with a single pane of glass for our cloud environments, because we can't manage our cloud environment with the tool."
"To my knowledge, there's no cloud component to FireMon whatsoever. We're on the hook for any updates to versioning of the operating system or the application that runs on the operating system. It would be nice if it was a little bit more automated."
More FireMon Security Manager cons
 

Pricing and Cost Advice

"It is about a $100 per year for an ASA 5506 firewall, and from there it keeps going up if you have a bigger box. For example, the 5516 is $200 to $300 per year."
"If you compare to what is available on the market, they are in the same range with respect to pricing."
"It is covered under the CIsco Enterprise License Agreement (ELA). So, it is licensed and ours."
"After our free trial was done we got a subscription for three years and it was under $3,000 or so. It's part of the EA we already paid for, so I don't know what it would be if it was a la carte."
"It's around £500 per unit for a three-year license."
"I work with a lot of clients, and the price or value of the Cisco Defense Orchestrator can vary from one client to another. If you have a lot of Cisco solutions, the price of the Cisco Defense Orchestrator is justified. Whereas if you have some security components from other vendors, such as Check Point or Palo Alto. This solution would be a pretty expensive proposition considering that they don't integrate with them well."
"It's a good value. From a licensing standpoint... it's very simple to understand, and gives us a good bang for the buck."
"The pricing is very good, very straightforward. It also came in cheaper than AlgoSec and Tufin."
"Its pricing is good. Compared to others, it is not so expensive."
"Pricing model seems fair."
"The pricing was very good during our initial year, but they increased it this year a little bit. The price is okay. It is not cheap, but it is still average."
"Pricing is reasonable."
"We pay for it yearly."
"FireMon is very expensive. I think that they charge a premium. In general, they are very pricey. Compared to their competitors, they cost a little more than the other solutions that we evaluated."
More FireMon Security Manager pricing and cost advice
report
See which vendors are best for you
Use our free recommendation engine to learn which Firewall Security Management solutions are best for your needs.
See recommendations
883,089 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Computer Software Company
18%
Manufacturing Company
12%
Financial Services Firm
10%
Performing Arts
7%
Financial Services Firm
12%
Manufacturing Company
12%
Computer Software Company
10%
Comms Service Provider
9%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
By reviewers
Company SizeCount
Small Business6
Midsize Enterprise3
Large Enterprise5
By reviewers
Company SizeCount
Small Business9
Midsize Enterprise9
Large Enterprise46
 

Questions from the Community

What needs improvement with Cisco Defense Orchestrator?
Cisco Defense Orchestrator should be made more user-friendly overall. Currently, to use it effectively, one must be specific with the rule set that needs to be set up. Additionally, I suggest impro...
See all answers
What is your primary use case for Cisco Defense Orchestrator?
Our primary use case for Cisco Defense Orchestrator is the automation of playbooks. We primarily use it for this purpose to streamline processes.
See all answers
What advice do you have for others considering Cisco Defense Orchestrator?
Those who want to use Cisco Defense Orchestrator should build their own use case and see if it fits their environment. The most significant benefit for us is the response time because it automates ...
See all answers
What do you like most about FireMon?
I like the Security Manager console where we can see any changes that have been made or pull the results of an assessment and control the policies that we implement.
See all answers
What is your experience regarding pricing and costs for FireMon?
Our experience with FireMon Security Manager's pricing and licensing is that it is on the higher side, but justified for a large, regulated environment. The setup cost and licensing made sense give...
See all answers
What needs improvement with FireMon?
I wish to see deeper and more customizable reporting and dashboards, as while the standard reports are useful for audits, operational teams sometimes need real-time, flexible views without exportin...
See all answers
 

Comparisons

Tufin Orchestration Suite vs Cisco Security Cloud Control Logo
Tufin Orchestration Suite vs Cisco Security Cloud Control
Compared 19% of the time
AlgoSec vs Cisco Security Cloud Control Logo
AlgoSec vs Cisco Security Cloud Control
Compared 12% of the time
Skybox Security Suite vs Cisco Security Cloud Control Logo
Skybox Security Suite vs Cisco Security Cloud Control
Compared 12% of the time
Palo Alto Networks Panorama vs Cisco Security Cloud Control Logo
Palo Alto Networks Panorama vs Cisco Security Cloud Control
Compared 11% of the time
Fortinet FortiGate Cloud vs Cisco Security Cloud Control Logo
Fortinet FortiGate Cloud vs Cisco Security Cloud Control
Compared 8% of the time
More Cisco Security Cloud Control Competitors
Tufin Orchestration Suite vs FireMon Security Manager Logo
Tufin Orchestration Suite vs FireMon Security Manager
Compared 36% of the time
AlgoSec vs FireMon Security Manager Logo
AlgoSec vs FireMon Security Manager
Compared 33% of the time
Skybox Security Suite vs FireMon Security Manager Logo
Skybox Security Suite vs FireMon Security Manager
Compared 7% of the time
Palo Alto Networks Panorama vs FireMon Security Manager Logo
Palo Alto Networks Panorama vs FireMon Security Manager
Compared 7% of the time
AWS Firewall Manager vs FireMon Security Manager Logo
AWS Firewall Manager vs FireMon Security Manager
Compared 1% of the time
More FireMon Security Manager Competitors
 

Product Reports

Buyer's Guide
Cisco Security Cloud Control
February 2026
Cisco Security Cloud Control reportDownload Cisco Security Cloud Control product report
Buyer's Guide
FireMon Security Manager
February 2026
FireMon Security Manager reportDownload FireMon Security Manager product report
 

Also Known As

Cisco Defense Orchestrator, CDO
No data available
 

Interactive Demo

Cisco
Demo not available
FireMon
 

Overview

Cisco Security Cloud Control offers centralized management, real-time visibility, and AI-driven automation for on-premises and cloud environments, simplifying scalability and deployment.

With a unified approach, Cisco Security Cloud Control enhances security posture by providing cross-platform insights across Cisco's ecosystem. It accelerates threat detection and optimizes policy enforcement through a blend of AI automation and natural language querying capabilities. The intuitive platform serves multiple devices, enabling comprehensive management of Secure Firewall, Secure Access, and other services with guidance from the Cisco AI Assistant. It also includes an AI Operations feature that identifies critical issues and provides real-time insights, enhancing response times while a policy analyzer improves security hygiene by detecting and closing security gaps. Its automation minimizes manual tasks, secures cloud-stored configurations, and supports two-factor authentication. However, it could benefit from improvements in navigation clarity, bulk change handling, and expanded third-party integrations.

What are the key features of Cisco Security Cloud Control?
  • Centralized Device Control: Streamlines management with bulk policy upgrades and automation.
  • AI-Driven Automation: Reduces manual tasks and enhances threat detection.
  • Network Visibility: Provides insights with valuable reporting and intrusion prevention.
  • Intuitive Configuration: Enables easy policy adjustments and restoration of secure connections.
What benefits can users anticipate?
  • Increased Efficiency: Reduces operational overhead with centralized management.
  • Improved Security: Enhances protection through automated policy enforcement and AI insights.
  • Time Savings: Simplifies management of multiple devices in cloud and on-premises environments.
  • Scalability: Supports growth with ease of deployment and policy consistency.

Industries implementing Cisco Security Cloud Control leverage its capabilities for tasks ranging from firewall management to intrusion prevention. Enterprises use it to streamline policy management, automate configurations, and integrate Cisco devices with cloud strategies, benefiting from simplified security orchestration and network segmentation.

Cisco

The increasing complexity of networks, driven by the constant influx of new devices, applications, and cloud services, presents a daunting challenge for managing firewall policies and rules. A typical enterprise environment has millions of rules, and just one simple misconfiguration can lead to devastating consequences like compliance violations, outages, and data breaches. 

FireMon’s Security Manager is a purpose-built network security policy management (NSPM) platform that automates the management of firewall and cloud security policies to eliminate policy-related risk, accurately and quickly change rules, and meet internal and external compliance requirements.

  • Reduce Risk Manage risk with real-time visibility and control
  • Manage Change Avoid misconfigurations, accelerate business, and improve security
  • Enforce and Maintain Compliance Avoid violations, avoid risk, and avoid fines
FireMon
 

Sample Customers

Insurance Company of British Columbia, Shawmut
Convey, MGM Resorts International, Southwest Airlines, Alkami, Costco, Aetna, IBM, Verizon, Wells Fargo
Buyer's Guide
Cisco Security Cloud Control vs. FireMon Security Manager
February 2026
Free Report: Cisco Security Cloud Control vs. FireMon Security Manager
Find out what your peers are saying about Cisco Security Cloud Control vs. FireMon Security Manager and other solutions. Updated: February 2026.
DOWNLOAD NOW
883,089 professionals have used our research since 2012.
See our Cisco Security Cloud Control vs. FireMon Security Manager report.
See our list of best Firewall Security Management vendors.

We monitor all Firewall Security Management reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.