FireMon Security Manager vs Tufin Orchestration Suite comparison

FireMon and Tufin are both solutions in the Firewall Security Management category. FireMon is ranked #4 with an average rating of 8.0, while Tufin is ranked #2 with an average rating of 8.0. FireMon holds a 16.5% mindshare in Firewall Security Management, compared to Tufin’s 22.0% mindshare. Additionally, 87% of FireMon users are willing to recommend the solution, compared to 91% of Tufin users who would recommend it.

FireMon Security Manager

Read 56 FireMon Security Manager reviews

4,327 Views
3,335 Comparison Views

87% willing to recommend

Tufin Orchestration Suite

Read 183 Tufin Orchestration Suite reviews

7,388 Views
4,294 Comparison Views

91% willing to recommend

FireMon Security Manager

Tufin Orchestration Suite

Comparison Buyer's Guide

Download the report

Executive SummaryUpdated on Jan 8, 2025

Tufin Orchestration Suite and FireMon Security Manager compete in the network security management category. Tufin appears to have the upper hand due to its automated workflow and comprehensive compliance checks.

Features: Tufin is recognized for its SecureTrack and SecureChange features, which automate firewall rule management and enhance network visibility. FireMon is noted for its in-depth analytics and the ability to track and optimize firewall rule changes.

Room for Improvement: Tufin requires enhancements in supporting additional network devices, cloud integration, and user experience. FireMon could improve native support for various firewall brands and reporting capabilities, as well as offer more workflow customization options.

Ease of Deployment and Customer Service: Both Tufin and FireMon offer deployment options for on-premises and cloud environments. Tufin is appreciated for strong customer service, while FireMon is praised for the knowledgeability and availability of its support team.

Pricing and ROI: Tufin's pricing, despite being high, is seen as justified by its features, offering significant ROI through time savings. FireMon’s pricing is considered balanced, and both solutions help reduce operational costs and improve efficiency by minimizing manual intervention in security management tasks.

To learn more, read our detailed FireMon Security Manager vs. Tufin Orchestration Suite Report (Updated: January 2025).

Buyer's Guide

FireMon Security Manager vs. Tufin Orchestration Suite

January 2025

Download the complete report

Helped 839,319 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Categories and Ranking

FireMon Security Manager

Ranking in Firewall Security Management

4th

Average Rating

8.2

Reviews Sentiment

7.5

Number of Reviews

Ranking in other categories

No ranking in other categories

Tufin Orchestration Suite

Ranking in Firewall Security Management

2nd

Average Rating

8.0

Reviews Sentiment

7.3

Number of Reviews

183

Ranking in other categories

No ranking in other categories

Mindshare comparison

As of March 2025, in the Firewall Security Management category, the mindshare of FireMon Security Manager is 16.5%, up from 16.3% compared to the previous year. The mindshare of Tufin Orchestration Suite is 22.0%, up from 20.6% compared to the previous year. It is calculated based on PeerSpot user engagement data.

Firewall Security Management

Featured Reviews

Ganesh-Khutwad

Senior Network Specialist at Tech Mahindra Limited

Rapid policy insights with robust dashboards and cross-vendor automation

FireMon Security Manager is excellent for real-time compliance management. It allows us to quickly retrieve any policy needed for testing and easily analyze it for loopholes. If a loophole exists, FireMon provides comprehensive details within the policy manager. It alerts us to firewall rule additions or changes that violate compliance policies. It supports various firewall platforms, including Checkpoint, Zscaler, Fortinet, Cisco, and AWS, and provides centralized management for all configured policies through a single console. FireMon Security Manager provides many features, like whether my firewall is compatible with required standards such as NTP and SNMP. Each compliance included in our RFPs is shown in the UI of FireMon. It gives robust and clear dashboards, making it easier to understand risks because the policies have ratings showing usage, and the number of hit attacks. It streamlines our compliance reporting processes by providing comprehensive risk and compliance assessments. It offers a range of features, including verification of firewall compatibility with protocols like NTP and SNMP, and detection of signal charges. FireMon effectively addresses all compliance requirements outlined in our RFPs. For instance, it can determine if firewalls or proxies within a stack are configured in Secure Mode or Active-Active mode. FireMon Security Manager enables us to generate reports on all these aspects, ensuring thorough compliance monitoring and documentation. FireMon Security Manager is robust and can help automate firewall policy changes across large multi-vendor enterprise environments. FireMon Security Manager helps automate firewall policy changes across various environments, including on-premises, cloud, hybrid, SASE, and SD-WAN. It also simplifies cleaning up firewall rules in our environment. The time required to accurately create, approve, and deploy firewall policy rules has been reduced. Tasks that took 30 minutes can now be completed in just five minutes using FireMon. FireMon provides immediate visibility into our policies through a robust and clear dashboard, making it easy to identify errors or misconfigurations based on the policy rating.

Read full review

MithatBulut

Network Security Engineer at Tom

New employees can quickly grasp the various IPs, devices, and the network's logical and physical

Tufin is primarily used to orchestrate and manage network traffic and firewall devices. It is specifically useful for implementing firewall policies and handling requests from clients that require policy updates or changes Tufin simplifies understanding network topology. New employees can quickly…

Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Pros

"The most effective feature is the general reporting on compliance."

"It is the single place where we go to review all of our firewall changes. The solution makes it easier for us to track all the changes made. It is a central place where we can look at all the firewall rules, because we have three different firewall vendors. It save us time and creates efficiencies by looking at the general picture."

"The most valuable feature is that everything is recorded in the historical logs, including the firewall rules, headcounts, object-level usage, and the rule documentation. The rule certification details are also there, which means that someone can be held accountable for a specific firewall rule."

"Its user-friendly interface allows for easy viewing and searching of network policies, including proxies, all on one console."

"The unused objects is another nice feature, where it digs a little bit deeper into comparing the logs that it sees versus the configurations that it sees... The unused objects feature will go through in a pretty detailed way and show us which ones aren't being used. Or, if they are used, it will show us how often they're used."

"It is a good product. Previously, we were using only spreadsheets to compare the usage, but now with FireMon, we are able to clean up or review the policies to some extent. It is still a work in progress, but we are at a good stage now."

"What I like about FireMon is the ability to track changes made by network engineers on the network."

"Policy test, access path analysis, and change reports."

More FireMon Security Manager pros

"We use Tufin to clean up our firewall policies. This makes it a lot easier to find out the things that are wrong."

"The reports that this solution provides are very useful."

"I like the deployment and management of this solution."

"Tufin Orchestration Suite is a good tool that makes firewall policies faster to implement from a central point, and its support is good."

"It provides very good reports. It can easily integrate with multiple firewalls, such as Cisco, Juniper, Palo Alto, and Checkpoint. We can push a policy from Tufin to a firewall, which is a very good feature. We can monitor all access rules and the operating system of a firewall."

"The features I have found most valuable are its capability to check on the firewall and the routers. Afterwards it checks out all the configs, checks the vulnerabilities, checks the risks - it checks everything that may end up causing our router to be compromised. At the end it recommendations what we should do."

"The most valuable features are the Security Risks and Best Practices reporting/Rule base cleanup."

"It has allowed us to be more efficient in our processing of firewall requests."

More Tufin Orchestration Suite pros

Cons

"While I like the reporting, I think that has the biggest room for improvement. Right now, as a user of FireMon, if I create a report, I am the only one who can see it inside FireMon. If someone on my team creates a report, they are the only person who can see that report on FireMon. It doesn't matter if you're admin in FireMon or not. The way we have to do it now is that we have created a service account user and that service account user runs all the reports. This way, all the reports, which are running, are just run under a single user so we can always access them. This definitely needs to change so users can see other users' reports or we can share reports within FireMon."

"The cost of the solution is pretty expensive. It would be ideal if they could work on their pricing."

"We are looking for more integration with SIEM and other tools."

"A phone app would be nice. This is the reason why it is not perfect yet."

"We have not used the Policy Planner but even so, we have identified areas of improvement with it during our testing. For example, it could be better when it comes to ease of integration or ease of policy automation. Another problem is that there is a console where it has too many options and is not very straightforward. Essentially, controlling it could be made more seamless."

"FireMon could improve its end-user practices. As an end user, I am just trying to catch up on all the alerts. There are so many, and you still have to go through them and document what was found."

"When it comes to identifying risk in our environment and prioritizing fixes, it is really about the different priorities within the organization. FireMon is not so smart that it can tell what's important to us. It's up to us to figure that out."

"The training for configuring new users or operators is confusing because the UI is not user-friendly and has room for improvement."

More FireMon Security Manager cons

"There are pros and cons to the workflow. You cannot customize it fully and there are some limitations. You cannot create a pure object, a firewall, IP, or service (single layer) object. You can only create a firewall object group. That is one of the challenges."

"I would like to see them get rid of the REST APIs and use something more modern."

"I haven't seen the cloud integration yet, and I would like to see if we could audit the cloud firewalls, like the cloud-native, Azure, and Amazon. That would be nice. You want one tool to do everything. I don't want to use another tool, or manually go and audit the cloud firewalls."

"The solution does not have automation with other Firewalls."

"I would like an improved reporting module which can be flexible (custom reports) and allow us to generate our own reports, because the data is already there."

"They are a little bit behind on some of their support for the Palo Alto firewall platform. I'd like to see that catch up, specifically around importing certain objects."

"We have had a couple issues with the VMs, but I think it was just because they were starving for resources. A recommendation on what the virtual appliances should have for resources would be appreciated."

"The network part of the solution could be improved. It's too hard because of the Tufin licensing model for the routing devices."

More Tufin Orchestration Suite cons

Pricing and Cost Advice

"We don't license all of the devices in our network, so it does not provide us with a comprehensive visibility of all devices in a hybrid network at this time."

"Regarding additional costs, if you want things like Policy Optimizer, extra features, that's extra."

"The pricing was very good during our initial year, but they increased it this year a little bit. The price is okay. It is not cheap, but it is still average."

"FireMon is cheaper than AlgoSec."

"FireMon is very expensive. I think that they charge a premium. In general, they are very pricey. Compared to their competitors, they cost a little more than the other solutions that we evaluated."

"It's a good value. From a licensing standpoint... it's very simple to understand, and gives us a good bang for the buck."

"This is an expensive solution. The cost of three modules for three years was approximately one million."

"We pay for it yearly."

More FireMon Security Manager pricing and cost advice

"There is no issue with the pricing because we used a VM. That kept the cost low, as compared to an appliance."

"We haven't purchased the license yet for SecureChange. We do have plans to buy it next year."

"Tuffin is expensive, and we have to explain to our customers the benefit for them to purchase. If we explain the benefits in the correct way they do not mind the price. We typically do costing for the customer for three to five years. We make the general total cost of ownership at the beginning of a project for our customers."

"The solution has helped us to reduce the time it takes to make changes. With Tufin, it takes ten to 15 minutes. Before, it was 30 minutes or more."

"Licensing is available in both perpetual and subscription models, and it appears to be good for our scalable environments."

"Pricing played a big part here... The customer had evaluated other products but, due to price as well as support, they chose Tufin."

"The solution has helped reduce the time it takes us to make changes. It helps make overall integrated changes immediately. It allows us to cut down at least a few hours in the week in regards to changes and monitoring."

"There are ways to deploy the license to different types of firewall. However, if we decide to change the physical brand of the firewall, we need to go back to Tufin and modify the licensing. This is a hassle."

More Tufin Orchestration Suite pricing and cost advice

See which vendors are best for you

Use our free recommendation engine to learn which Firewall Security Management solutions are best for your needs.

See recommendations

839,319 professionals have used our research since 2012.

Top Industries

By visitors reading reviews

Computer Software Company

20%

Financial Services Firm

16%

Manufacturing Company

Healthcare Company

Financial Services Firm

19%

Computer Software Company

16%

Manufacturing Company

10%

Retailer

Company Size

By reviewers

Large Enterprise

Midsize Enterprise

Small Business

Questions from the Community

What do you like most about FireMon?

I like the Security Manager console where we can see any changes that have been made or pull the results of an assessment and control the policies that we implement.

See all answers

What is your experience regarding pricing and costs for FireMon?

Comparatively, FireMon has a very good price and is below the general competition in cost. I have not seen any additional fees beyond the general contract fees for the usage I have. So, I have not ...

See all answers

What needs improvement with FireMon?

For one company I work with, I use Fortinet, and FireMon is not able to understand the zones that Fortinet uses. Part of that compliance piece does not provide me with the necessary information. An...

See all answers

What do you like most about Tufin SecureCloud?

The most valuable feature of Tufin is security auditing. We are able to check the rules and compliance of the company, for example, what is allowed or not. We are able to check the rules over diffe...

See all answers

What needs improvement with Tufin SecureCloud?

The design needs improvement, particularly in recognizing target devices and target files. Additionally, there's a need for an improved network map.

See all answers

What is your primary use case for Tufin SecureCloud?

My primary use case involves applying firewall policies faster from a central point. Additionally, I would like to use it to generate reports, but this hasn't occurred yet.

See all answers

Comparisons

AlgoSec vs FireMon Security Manager

Compared 38% of the time

Skybox Security Suite vs FireMon Security Manager

Compared 10% of the time

Palo Alto Networks Panorama vs FireMon Security Manager

Compared 4% of the time

ManageEngine Firewall Analyzer vs FireMon Security Manager

Compared 3% of the time

RedSeal vs FireMon Security Manager

Compared 3% of the time

More FireMon Security Manager Competitors

AlgoSec vs Tufin Orchestration Suite

Compared 36% of the time

Skybox Security Suite vs Tufin Orchestration Suite

Compared 17% of the time

Palo Alto Networks Panorama vs Tufin Orchestration Suite

Compared 6% of the time

ManageEngine Firewall Analyzer vs Tufin Orchestration Suite

Compared 4% of the time

Opinnate vs Tufin Orchestration Suite

Compared 2% of the time

More Tufin Orchestration Suite Competitors

Product Reports

Buyer's Guide

FireMon Security Manager

March 2025

Download FireMon Security Manager product report

Buyer's Guide

Tufin Orchestration Suite

February 2025

Download Tufin Orchestration Suite product report

Also Known As

No data available

Tufin SecureCloud

Overview

The increasing complexity of networks, driven by the constant influx of new devices, applications, and cloud services, presents a daunting challenge for managing firewall policies and rules. A typical enterprise environment has millions of rules, and just one simple misconfiguration can lead to devastating consequences like compliance violations, outages, and data breaches.

FireMon’s Security Manager is a purpose-built network security policy management (NSPM) platform that automates the management of firewall and cloud security policies to eliminate policy-related risk, accurately and quickly change rules, and meet internal and external compliance requirements.

Reduce Risk Manage risk with real-time visibility and control
Manage Change Avoid misconfigurations, accelerate business, and improve security
Enforce and Maintain Compliance Avoid violations, avoid risk, and avoid fines

FireMon

Tufin enables organizations to automate their security policy visibility, risk management, provisioning and compliance across their multi-vendor, hybrid environment. Customers gain visibility and control across their network, ensure continuous compliance with security standards and embed security enforcement into workflows and development pipelines.

Tufin

Sample Customers

Convey, MGM Resorts International, Southwest Airlines, Alkami, Costco, Aetna, IBM, Verizon, Wells Fargo

3M, AT&T, Blue Cross Blue Shield, BNP Parabas, ConocoPhillips, Deutsche Bank, GE, IBM, Pfizer, United States Postal Service

Buyer's Guide

FireMon Security Manager vs. Tufin Orchestration Suite

January 2025

Free Report: FireMon Security Manager vs. Tufin Orchestration Suite

Find out what your peers are saying about FireMon Security Manager vs. Tufin Orchestration Suite and other solutions. Updated: January 2025.

DOWNLOAD NOW

839,319 professionals have used our research since 2012.

See our FireMon Security Manager vs. Tufin Orchestration Suite report.

See our list of best Firewall Security Management vendors.

We monitor all Firewall Security Management reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.