Try our new research platform with insights from 80,000+ expert users

FireMon Security Manager vs Tufin Orchestration Suite comparison

 

Comparison Buyer's Guide

Executive SummaryUpdated on Nov 4, 2024
 

Categories and Ranking

FireMon Security Manager
Ranking in Firewall Security Management
4th
Average Rating
8.2
Reviews Sentiment
7.7
Number of Reviews
54
Ranking in other categories
No ranking in other categories
Tufin Orchestration Suite
Ranking in Firewall Security Management
2nd
Average Rating
8.0
Reviews Sentiment
7.3
Number of Reviews
183
Ranking in other categories
Container Security (28th)
 

Mindshare comparison

As of December 2024, in the Firewall Security Management category, the mindshare of FireMon Security Manager is 16.4%, up from 15.9% compared to the previous year. The mindshare of Tufin Orchestration Suite is 21.7%, up from 21.4% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Firewall Security Management
 

Featured Reviews

JeffReese - PeerSpot reviewer
Makes compliance much easier compared to doing it manually, and automates policy changes across environments
People have a tendency to just add rules to firewalls, but they don't go back and take rules away. Some of our customers have thousands of unused rules that have been sitting out there for over a year. In one report, FireMon tells us there are, say, 1,000 rules that can be taken out and it gives us the ability to disable those for a year and to track when we made our changes. After a year, we can go back and eliminate the rules, to bring the configuration down to an almost human-readable level. It also identifies risks in your environment and helps to prioritize fixes. It actually rates the risk level, meaning you look for the red and try to bring everything to green.
Amroy Lumban Gaol - PeerSpot reviewer
A flexible, very secure solution that works well in Layer 2 environments
Integration for Layer 2 devices could be improved because it requires manual scripting. Other layers are very simple to integrate. It would be a benefit to have a form field for firewall names, user names, and passwords which then auto integrate. Licensing options are confusing and require additional fees for high availability. Competitors include high availability with their standard licenses.

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"I like the Security Manager console where we can see any changes that have been made or pull the results of an assessment and control the policies that we implement."
"FireMon is nice and provides 360-degree user views."
"Compared to other applications, it is user-friendly. The appearance of the menus and titles is clear and they are easy to follow. Of course, it requires some experience through using it, to go through everything, but it is not very difficult. It is an easy application to use."
"In one report, FireMon tells us there are, say, 1,000 rules that can be taken out and it gives us the ability to disable those for a year and to track when we made our changes. After a year, we can go back and eliminate the rules, to bring the configuration down to an almost human-readable level."
"For the cleanup of firewall rules, it performs really well for us. We utilize it in our regular rule cleanup tasks, several times a year. FireMon is our primary tool when doing that, either by going through its out-of-the-box compliance rules or using it to search for certain things in our rules that we want to prune from our firewalls."
"The firewall assessment feature is great."
"The ease of use is the most valuable feature. There are a lot of products out there, but the ability to navigate through and use Firemon is very good."
"The most valuable features are the security assessments and the ability to identify unused rules or objects."
"We are able to stay compliant with many of the regulations."
"This solution provides a more organized manner for us to track towards compliance for our PCI audits."
"The features I have found most valuable are its capability to check on the firewall and the routers. Afterwards it checks out all the configs, checks the vulnerabilities, checks the risks - it checks everything that may end up causing our router to be compromised. At the end it recommendations what we should do."
"We just got done with major audits. Tufin was able to provide information to give back to people, and say, "Hey, this is what I need to do, and what we're doing.""
"It provides a comprehensive overview of what our network looks like in terms of what is allowed and what is not, then how the traffic' is flowing with the Network Topology Map."
"It is an important application for controlling and monitoring firewall rules. It is useful for making and monitoring the changes."
"The solution is good, and no clients complained about it."
"The stability is bulletproof."
 

Cons

"FireMon could be easier to use and flexibility regarding reporting could be improved."
"It comes as a Linux appliance on a server and we're not a Linux shop, we're more of a Windows shop. It would be great if they could automate or integrate the backups into it and other things through their GUI interface, just to make the management of Linux a little more transparent."
"We've had recurring issues managing FireMon's internal backups. Sometimes, the space allocated for the backup is full, and there is no process where it deletes files that are older than I certain date. It's just waiting for the storage to get full and then it's cleaned up. It isn't something that creates serious issues for us."
"One area for 7.x customers that needs improvement is the migration. It is an involved process so get ready to spend some time getting your environment back to the way it was."
"I think that having a more open system and providing documentation for it would be helpful for users like us. We are pretty adept and can navigate through the Linux software that the on-premises FireMon is based on. It would help us in the long run."
"We are looking for more integration with SIEM and other tools."
"We have not used the Policy Planner but even so, we have identified areas of improvement with it during our testing. For example, it could be better when it comes to ease of integration or ease of policy automation. Another problem is that there is a console where it has too many options and is not very straightforward. Essentially, controlling it could be made more seamless."
"When it comes to documentation, they need to start putting together a basic command manual. With Cisco, you can look up a command and it gives you examples of three or four different ways that command can be used. It tells you how to put it into the GUI and the CLI. FireMon does need to start doing that."
"I needed more help getting the product to work in the lab."
"We had a discussion in the Customer Advisory Board yesterday around use of SecureChange. We would like to have an opportunity for an engineer to choose if you want to make or take the policy which has been suggested by the designer functionality, making it more human readable or less human readable (more or less granular). This would be huge for the customers who are using SecureChange. They said this was one of their issues with it, especially for anything that was going into a regulator's or auditor's hands. The more human readable, the better that it would be, and this would definitely be applicable to our industry. It sounds like they are working on this issue, or they took the feedback, but that would be a big one for us in being able to make the jump to SecureChange."
"The interface is like a 1990s kind of thing. It's a little ugly. There are many things that you cannot tweak, little things like the column width and how you display the information. You end up exporting everything to an Excel file and doing your work there."
"The older version that we have doesn't support some newer firewall vendors."
"The change workflow process is flexible and customizable to some extent, but there is room for improvement. In some cases, we've found it difficult to get the exact thing which we were looking for. Then, we end up having to go and do the thing manually."
"We like the change impact analysis capabilities quite a bit. The only weakness is that the reporting is a bit clunky. We would like to have the reporting be better."
"Integration for Layer 2 devices could be improved because it requires manual scripting."
"The hardest piece is getting the matrix built."
 

Pricing and Cost Advice

"Regarding additional costs, if you want things like Policy Optimizer, extra features, that's extra."
"Relative to what it offers, the price is fair."
"It's a good value. From a licensing standpoint... it's very simple to understand, and gives us a good bang for the buck."
"We don't license all of the devices in our network, so it does not provide us with a comprehensive visibility of all devices in a hybrid network at this time."
"Pricing is reasonable."
"The pricing is very good, very straightforward. It also came in cheaper than AlgoSec and Tufin."
"This is an expensive solution. The cost of three modules for three years was approximately one million."
"We pay for it yearly."
"Our evaluation showed that Tufin's features were on par with AlgoSec, but Tufin was the better financial choice."
"While licensing varies greatly, it is about $50,000 a year."
"I'm saving 20 man-hours a week, so I am seeing some ROI."
"Tuffin is expensive, and we have to explain to our customers the benefit for them to purchase. If we explain the benefits in the correct way they do not mind the price. We typically do costing for the customer for three to five years. We make the general total cost of ownership at the beginning of a project for our customers."
"This solution helped us to reduce the time it takes to make changes. We used to spend up to an hour to do a change, and now, it's around five minutes."
"The solution is more reasonably priced than its competitors."
"The additional piece, which we are buying and doesn't include our other solution, is close to 300,000."
"The licensing costs are a significant amount of money."
report
Use our free recommendation engine to learn which Firewall Security Management solutions are best for your needs.
824,145 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Computer Software Company
19%
Financial Services Firm
16%
Manufacturing Company
8%
Energy/Utilities Company
6%
Financial Services Firm
19%
Computer Software Company
17%
Manufacturing Company
9%
Retailer
5%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
 

Questions from the Community

What do you like most about FireMon?
I like the Security Manager console where we can see any changes that have been made or pull the results of an assessment and control the policies that we implement.
What needs improvement with FireMon?
Although configuration is not the most difficult aspect of FireMon, a basic understanding of cloud computing and firewall principles is necessary for successful implementation. Therefore, simplifyi...
What is your primary use case for FireMon?
FireMon Security Manager is a highly intelligent and useful device that consolidates all our security policies, including those for Zscaler proxies, into a single console. This centralized view eli...
What do you like most about Tufin?
The most valuable feature of Tufin is security auditing. We are able to check the rules and compliance of the company, for example, what is allowed or not. We are able to check the rules over diffe...
What is your experience regarding pricing and costs for Tufin?
Tuffin is expensive, and we have to explain to our customers the benefit for them to purchase. If we explain the benefits in the correct way they do not mind the price. We typically do costing for ...
What needs improvement with Tufin?
The reporting function could improve in Tufin. For our clients with companies that have strong compliance, reporting privacy data is mostly a problem. In the IT department, private data needs a fun...
 

Also Known As

No data available
Tufin SecureCloud
 

Learn More

 

Overview

 

Sample Customers

Convey, MGM Resorts International, Southwest Airlines, Alkami, Costco, Aetna, IBM, Verizon, Wells Fargo
3M, AT&T, Blue Cross Blue Shield, BNP Parabas, ConocoPhillips, Deutsche Bank, GE, IBM, Pfizer, United States Postal Service 
Find out what your peers are saying about FireMon Security Manager vs. Tufin Orchestration Suite and other solutions. Updated: December 2024.
824,145 professionals have used our research since 2012.