Cisco Security Cloud Control vs Tufin Orchestration Suite comparison

Cisco Security Cloud Control vs. Tufin Orchestration Suite

Download the complete report

Helped 883,089 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Categories and Ranking

Cisco Security Cloud Control

Ranking in Firewall Security Management

13th

Average Rating

8.2

Number of Reviews

Ranking in other categories

No ranking in other categories

Tufin Orchestration Suite

Ranking in Firewall Security Management

2nd

Average Rating

8.0

Reviews Sentiment

7.2

Number of Reviews

182

Ranking in other categories

AI Observability (79th)

Mindshare comparison

As of March 2026, in the Firewall Security Management category, the mindshare of Cisco Security Cloud Control is 2.9%, up from 1.1% compared to the previous year. The mindshare of Tufin Orchestration Suite is 19.8%, down from 22.0% compared to the previous year. It is calculated based on PeerSpot user engagement data.

Firewall Security Management Market Share Distribution
Product	Market Share (%)
Tufin Orchestration Suite	19.8%
Cisco Security Cloud Control	2.9%
Other	77.3%

Firewall Security Management

Featured Reviews

Francisco Delos Santos

Security Engineer at Metrobank

Automation reduces intervention and speeds up threat prevention

Our primary use case for Cisco Defense Orchestrator is the automation of playbooks. We primarily use it for this purpose to streamline processes The most valuable feature is the automation, as it reduces user intervention and allows us to focus on other tasks. Since the system is automated,…

Read full review

reviewer2688339

Works

Vulnerability control saves audit costs and reduces expenses for organizations

Tufin Orchestration Suite is not commonly used in Thailand due to a lack of local support, and many customers are switching to AlgoSec or other vendors. The analytics features of Tufin Orchestration Suite are challenging to use and require technical expertise, which is a concern as there is not much knowledge in this field in Thailand. The issue of technical knowledge, especially regarding English language proficiency, is significant for government and some companies, making Tufin Orchestration Suite harder to use.

Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Pros

"The most valuable feature is that you can push one policy or one rule out to several devices at a time."

"The most valuable feature is the automation, as it reduces user intervention and allows us to focus on other tasks."

"This product provides excellent centralized device controls and reporting."

"If we have a firewall go down, I can hop into CDO, pull the latest configuration off and apply it. That's really good. It helps save time."

"I like the upgrade feature. That is pretty valuable to me because I have dual ASAs and when I go through CDO it does it for me pretty well. It's all done in the back-end and I don't really have to be involved. I just initiate, pick the image, and I pick when I want it done and it just does it, whether I have a single ASA or have a dual ASA."

"The ability to see the uptimes on the different VPNs that we have configured for site-to-site."

"When we're looking to the policies, it identifies the shadow rules. It notifies us about anything that will supersede other rules."

"There are a lot of templates that are already built-in. They give you quick-to-create and quick-to-apply policies that are typically a little more complicated for people."

More Cisco Security Cloud Control pros

"It provides a comprehensive overview of what our network looks like in terms of what is allowed and what is not, then how the traffic' is flowing with the Network Topology Map."

"The designer gives the ability to know where to add a rule, or if the rule is already in place."

"Tufin simplifies understanding network topology."

"Comparing the rules and policy browser is valuable to me. It gives me the ability to pull running configs and be able to analyze them without having to go directly into the firewall."

"Tufin has improved my organization with its configuration management. It has tremendously improved the operation's success and has made life easier."

"The reports that this solution provides are very useful."

"It allows administrators to visualize the traffic flow, and troubleshoot when necessary."

"The change workflow process is flexible and customizable... If we have a firewall completed and we want to redo it, if we need to re-engineer a particular firewall and open a different destination, we can do that by creating a break-fix... That is one of its useful tools."

More Tufin Orchestration Suite pros

Cons

"They can centralize all products and provide a correlation about an incident and the response. They can also provide an on-premises solution. Currently, Cisco Defense Orchestrator is just for cloud deployments, not for on-premises deployments. Customers have to manage it on the cloud. We are based in Vietnam, and most of the customers here prefer to have on-premises deployments. Customers, especially from banking and government sectors, do not prefer to do anything on the cloud. Some of the small enterprises use the cloud."

"There could be some slight improvements to navigation. In some of the navigation you've got to go back to be able to get into where you need to be once you've made a change. If I make a change, I've then got to go back to submit and send the change."

"The main thing that would useful for us would the logging and monitoring. I have to check it out, to get the beta, because I don't have access to them... I wanted CDO to be a central place so where I could do everything but right now I don't think that's possible. I really don't want to go back and forth between this and FMC. Maybe the logging portion, when I look at it, will give me some similarities."

"It should have more features to manage FirePOWER appliances."

"Cisco Defense Orchestrator can improve by providing more support for third-party security components."

"Cisco Defense Orchestrator should be made more user-friendly overall."

"They need to work on the user interface. It needs to be improved to make it more user-friendly."

"Cisco Defense Orchestrator should be made more user-friendly overall. Currently, to use it effectively, one must be specific with the rule set that needs to be set up."

More Cisco Security Cloud Control cons

"I would like to see more about the cloud in the next release. They need a large plan to deploy the cloud into the solution and a way to implement it."

"I would also like to see them do more cloud integration within the Tufin Orchestration Suite, not within a SaaS solution."

"The key area for improvement is the integration to F5. One of the things that we encountered with another customer is that there were some limitations when we tried to migrate policies from F5 into Tufin."

"The initial setup was time consuming."

"There's a need for an improved network map."

"With scalability, we are going to run into some issues. We have been talking about converting over to actual hardware as opposed to virtual. Therefore, I don't think we are scalable at this time, especially with the updates coming. I'm told that they're going to need a lot more horsepower to push them."

"The reports could be easier to read and more customizable. Also, capturing some of the different versions, and being able to dig through them could be a bit better."

"It would be better if they modernized the web GUI. The web interface GUI is simple and not complicated, but it's also too old."

More Tufin Orchestration Suite cons

Pricing and Cost Advice

"It is covered under the CIsco Enterprise License Agreement (ELA). So, it is licensed and ours."

"It's around £500 per unit for a three-year license."

"It is about a $100 per year for an ASA 5506 firewall, and from there it keeps going up if you have a bigger box. For example, the 5516 is $200 to $300 per year."

"If you compare to what is available on the market, they are in the same range with respect to pricing."

"After our free trial was done we got a subscription for three years and it was under $3,000 or so. It's part of the EA we already paid for, so I don't know what it would be if it was a la carte."

"I work with a lot of clients, and the price or value of the Cisco Defense Orchestrator can vary from one client to another. If you have a lot of Cisco solutions, the price of the Cisco Defense Orchestrator is justified. Whereas if you have some security components from other vendors, such as Check Point or Palo Alto. This solution would be a pretty expensive proposition considering that they don't integrate with them well."

"Its price is reasonable, but it could be lower. It has been cost-effective for us. We have a contract for three years."

"I believe our cost is more than $100,000 per year."

"Tufin reduced the time it takes to solve a problem, which reduces the time of the outage."

"While licensing varies greatly, it is about $50,000 a year."

"We haven't purchased the license yet for SecureChange. We do have plans to buy it next year."

"It is expensive, but as compared to other players, it's more or less okay. Their pricing is not very transparent. This is my biggest point regarding Tufin. I've never seen a price list or something like that. It's always individual, and in many cases, it's very confusing to know what is the base and what is the price."

"Our licensing costs are pretty low. We were grandfathered in, so we are at about $35,000 per year."

"This solution helps us reduce the time it takes us to make changes. We're probably saving time by 25%."

More Tufin Orchestration Suite pricing and cost advice

See which vendors are best for you

Use our free recommendation engine to learn which Firewall Security Management solutions are best for your needs.

See recommendations

883,089 professionals have used our research since 2012.

Top Industries

By visitors reading reviews

Computer Software Company

18%

Manufacturing Company

12%

Financial Services Firm

10%

Performing Arts

Financial Services Firm

15%

Manufacturing Company

12%

Computer Software Company

10%

Comms Service Provider

Company Size

By reviewers

Large Enterprise

Midsize Enterprise

Small Business

By reviewers
Company Size	Count
Small Business	6
Midsize Enterprise	3
Large Enterprise	5

By reviewers
Company Size	Count
Small Business	29
Midsize Enterprise	13
Large Enterprise	152

Questions from the Community

What needs improvement with Cisco Defense Orchestrator?

Cisco Defense Orchestrator should be made more user-friendly overall. Currently, to use it effectively, one must be specific with the rule set that needs to be set up. Additionally, I suggest impro...

What is your primary use case for Cisco Defense Orchestrator?

Our primary use case for Cisco Defense Orchestrator is the automation of playbooks. We primarily use it for this purpose to streamline processes.

What advice do you have for others considering Cisco Defense Orchestrator?

Those who want to use Cisco Defense Orchestrator should build their own use case and see if it fits their environment. The most significant benefit for us is the response time because it automates ...

What needs improvement with Tufin SecureCloud?

Tufin Orchestration Suite ( /products/tufin-orchestration-suite-reviews ) is not commonly used in Thailand due to a lack of local support, and many customers are switching to AlgoSec or other vendo...

What is your primary use case for Tufin SecureCloud?

I have primarily used Skybox and AlgoSec ( /products/algosec-reviews ). I have also interacted with FireMon for compiling. However, I am not currently working with ACA, and I don't have any project...

What advice do you have for others considering Tufin SecureCloud?

There is potential for improvement in explaining the analytics in the dashboard for Tufin Orchestration Suite. Tufin Orchestration Suite does provide good monitoring; however, interpreting the grap...

AlgoSec vs Cisco Security Cloud Control

Comparisons

Compared 12% of the time

Skybox Security Suite vs Cisco Security Cloud Control

Compared 12% of the time

Palo Alto Networks Panorama vs Cisco Security Cloud Control

Compared 11% of the time

FortiGate Cloud-Native Firewall (FortiGate CNF) vs Cisco Security Cloud Control

Compared 10% of the time

FireMon Security Manager vs Cisco Security Cloud Control

Compared 8% of the time

More Cisco Security Cloud Control Competitors

AlgoSec vs Tufin Orchestration Suite

Compared 32% of the time

FireMon Security Manager vs Tufin Orchestration Suite

Compared 31% of the time

Skybox Security Suite vs Tufin Orchestration Suite

Compared 11% of the time

Palo Alto Networks Panorama vs Tufin Orchestration Suite

Compared 4% of the time

RedSeal vs Tufin Orchestration Suite

Compared 3% of the time

More Tufin Orchestration Suite Competitors

Product Reports

Cisco Security Cloud Control

Download Cisco Security Cloud Control product report

Tufin Orchestration Suite

Download Tufin Orchestration Suite product report

Also Known As

Cisco Defense Orchestrator, CDO

Tufin SecureCloud

Interactive Demo

Cisco

Demo not available

Tufin

Overview

Cisco Security Cloud Control offers centralized management, real-time visibility, and AI-driven automation for on-premises and cloud environments, simplifying scalability and deployment.

With a unified approach, Cisco Security Cloud Control enhances security posture by providing cross-platform insights across Cisco's ecosystem. It accelerates threat detection and optimizes policy enforcement through a blend of AI automation and natural language querying capabilities. The intuitive platform serves multiple devices, enabling comprehensive management of Secure Firewall, Secure Access, and other services with guidance from the Cisco AI Assistant. It also includes an AI Operations feature that identifies critical issues and provides real-time insights, enhancing response times while a policy analyzer improves security hygiene by detecting and closing security gaps. Its automation minimizes manual tasks, secures cloud-stored configurations, and supports two-factor authentication. However, it could benefit from improvements in navigation clarity, bulk change handling, and expanded third-party integrations.

What are the key features of Cisco Security Cloud Control?

Centralized Device Control: Streamlines management with bulk policy upgrades and automation.
AI-Driven Automation: Reduces manual tasks and enhances threat detection.
Network Visibility: Provides insights with valuable reporting and intrusion prevention.
Intuitive Configuration: Enables easy policy adjustments and restoration of secure connections.

What benefits can users anticipate?

Increased Efficiency: Reduces operational overhead with centralized management.
Improved Security: Enhances protection through automated policy enforcement and AI insights.
Time Savings: Simplifies management of multiple devices in cloud and on-premises environments.
Scalability: Supports growth with ease of deployment and policy consistency.

Industries implementing Cisco Security Cloud Control leverage its capabilities for tasks ranging from firewall management to intrusion prevention. Enterprises use it to streamline policy management, automate configurations, and integrate Cisco devices with cloud strategies, benefiting from simplified security orchestration and network segmentation.

Cisco

Tufin enables organizations to automate their security policy visibility, risk management, provisioning and compliance across their multi-vendor, hybrid environment. Customers gain visibility and control across their network, ensure continuous compliance with security standards and embed security enforcement into workflows and development pipelines.

Tufin

Sample Customers

Insurance Company of British Columbia, Shawmut

3M, AT&T, Blue Cross Blue Shield, BNP Parabas, ConocoPhillips, Deutsche Bank, GE, IBM, Pfizer, United States Postal Service

Cisco Security Cloud Control vs. Tufin Orchestration Suite