FireMon Security Manager vs Tufin Orchestration Suite comparison

FireMon and Tufin are both solutions in the Firewall Security Management category. FireMon is ranked #4 with an average rating of 8.0, while Tufin is ranked #2 with an average rating of 8.0. FireMon holds a 16.6% mindshare in Firewall Security Management, compared to Tufin’s 22.0% mindshare. Additionally, 87% of FireMon users are willing to recommend the solution, compared to 91% of Tufin users who would recommend it.

FireMon Security Manager

Read 56 FireMon Security Manager reviews

4,099 Views
3,200 Comparison Views

87% willing to recommend

Tufin Orchestration Suite

Read 184 Tufin Orchestration Suite reviews

6,937 Views
4,065 Comparison Views

91% willing to recommend

FireMon Security Manager

Tufin Orchestration Suite

Comparison Buyer's Guide

Download the report

Executive SummaryUpdated on Apr 20, 2025

Tufin Orchestration Suite and FireMon Security Manager are robust solutions in the field of network security and automation. Tufin appears to have the upper hand in providing comprehensive policy management and automation, whereas FireMon is highly valued for its real-time monitoring and risk analysis capabilities.

Features: Tufin Orchestration Suite offers centralized policy management, automation of workflows, and proactive compliance auditing through SecureTrack and SecureChange. FireMon Security Manager excels in real-time monitoring, identification of redundant rules, and detailed risk analysis, allowing integration across various security devices.

Room for Improvement: Users suggest that Tufin could enhance its user interface and expand support for multi-vendor environments. Improvements in report functionalities and system speed are desirable. FireMon could enhance its update process, support for additional device types, and improve the intuitiveness of its GUI while integrating better with emerging technologies like SDN.

Ease of Deployment and Customer Service: Both Tufin and FireMon are predominantly deployed on-premises with hybrid and cloud options available. Tufin is praised for its responsive technical support, while FireMon's customer service is recognized for its effectiveness and expertise, though some feel it could be more streamlined.

Pricing and ROI: Tufin is considered expensive, but users often justify its pricing due to comprehensive capabilities and ROI through workflow efficiencies. FireMon offers competitive pricing and a structured licensing model, perceived as more cost-effective, with both solutions providing significant ROI by improving efficiency in managing security tasks.

To learn more, read our detailed FireMon Security Manager vs. Tufin Orchestration Suite Report (Updated: April 2025).

Buyer's Guide

FireMon Security Manager vs. Tufin Orchestration Suite

April 2025

Download the complete report

Helped 848,576 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Categories and Ranking

FireMon Security Manager

Ranking in Firewall Security Management

4th

Average Rating

8.2

Reviews Sentiment

7.5

Number of Reviews

Ranking in other categories

No ranking in other categories

Tufin Orchestration Suite

Ranking in Firewall Security Management

2nd

Average Rating

8.0

Reviews Sentiment

7.2

Number of Reviews

184

Ranking in other categories

No ranking in other categories

Mindshare comparison

As of April 2025, in the Firewall Security Management category, the mindshare of FireMon Security Manager is 16.6%, up from 16.2% compared to the previous year. The mindshare of Tufin Orchestration Suite is 22.0%, up from 20.3% compared to the previous year. It is calculated based on PeerSpot user engagement data.

Firewall Security Management

Featured Reviews

Ganesh-Khutwad

Senior Network Specialist at Tech Mahindra Limited

Rapid policy insights with robust dashboards and cross-vendor automation

FireMon Security Manager is excellent for real-time compliance management. It allows us to quickly retrieve any policy needed for testing and easily analyze it for loopholes. If a loophole exists, FireMon provides comprehensive details within the policy manager. It alerts us to firewall rule additions or changes that violate compliance policies. It supports various firewall platforms, including Checkpoint, Zscaler, Fortinet, Cisco, and AWS, and provides centralized management for all configured policies through a single console. FireMon Security Manager provides many features, like whether my firewall is compatible with required standards such as NTP and SNMP. Each compliance included in our RFPs is shown in the UI of FireMon. It gives robust and clear dashboards, making it easier to understand risks because the policies have ratings showing usage, and the number of hit attacks. It streamlines our compliance reporting processes by providing comprehensive risk and compliance assessments. It offers a range of features, including verification of firewall compatibility with protocols like NTP and SNMP, and detection of signal charges. FireMon effectively addresses all compliance requirements outlined in our RFPs. For instance, it can determine if firewalls or proxies within a stack are configured in Secure Mode or Active-Active mode. FireMon Security Manager enables us to generate reports on all these aspects, ensuring thorough compliance monitoring and documentation. FireMon Security Manager is robust and can help automate firewall policy changes across large multi-vendor enterprise environments. FireMon Security Manager helps automate firewall policy changes across various environments, including on-premises, cloud, hybrid, SASE, and SD-WAN. It also simplifies cleaning up firewall rules in our environment. The time required to accurately create, approve, and deploy firewall policy rules has been reduced. Tasks that took 30 minutes can now be completed in just five minutes using FireMon. FireMon provides immediate visibility into our policies through a robust and clear dashboard, making it easy to identify errors or misconfigurations based on the policy rating.

Read full review

MithatBulut

Network Security Engineer at TD SYNNEX

New employees can quickly grasp the various IPs, devices, and the network's logical and physical

Tufin is primarily used to orchestrate and manage network traffic and firewall devices. It is specifically useful for implementing firewall policies and handling requests from clients that require policy updates or changes Tufin simplifies understanding network topology. New employees can quickly…

Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Pros

"FireMon decreases errors and misconfigurations by 10% that increase risk in our environment. That has to do a lot with the change reporting that is in place, but also with the built-in controls and custom controls that we have made. Those all decrease the errors that people naturally make on a day-to-day basis for firewall administration."

"Firewall auditing is very important. We also use the solution for rule traffic analysis, traffic flow discovery and hidden/shadow rules within over 100 firewalls spanning five different brands."

"FireMon saves us a lot of time and it's nice because if you're adding a rule that's similar to another rule, it'll tell you so sometimes you can just edit the one and add another source or destination in there without creating a duplicate rule. It enables you to consolidate and have fewer, more meaningful rules. We're saving around 30% of our time."

"The most valuable feature is that everything is recorded in the historical logs, including the firewall rules, headcounts, object-level usage, and the rule documentation. The rule certification details are also there, which means that someone can be held accountable for a specific firewall rule."

"In one report, FireMon tells us there are, say, 1,000 rules that can be taken out and it gives us the ability to disable those for a year and to track when we made our changes. After a year, we can go back and eliminate the rules, to bring the configuration down to an almost human-readable level."

"Compared to other applications, it is user-friendly. The appearance of the menus and titles is clear and they are easy to follow. Of course, it requires some experience through using it, to go through everything, but it is not very difficult. It is an easy application to use."

"It is a good product. Previously, we were using only spreadsheets to compare the usage, but now with FireMon, we are able to clean up or review the policies to some extent. It is still a work in progress, but we are at a good stage now."

"FireMon Security Manager is a fast and intelligent device that delivers results in under ten seconds, even with thousands of policies."

More FireMon Security Manager pros

"I don't think that we were ever slow, but we can now say that changes are completed within twenty-four hours."

"It allows administrators to visualize the traffic flow, and troubleshoot when necessary."

"My team uses it heavily to audit the changes made by junior engineers, going back and figuring out what they messed up, and correcting their mistakes. We generate reports for customer compliance and audits, as well as for regulatory audits."

"We are able to discover firewall rules that are too broad and widen the security footprint."

"The APIs are the most valuable feature of this solution, as they facilitate integration with ServiceNow and other solutions."

"It provides a comprehensive overview of what our network looks like in terms of what is allowed and what is not, then how the traffic' is flowing with the Network Topology Map."

"The most valuable feature of Tufin is security auditing. We are able to check the rules and compliance of the company, for example, what is allowed or not. We are able to check the rules over different gateways and set over firewalls."

"We are able to stay compliant with many of the regulations."

More Tufin Orchestration Suite pros

Cons

"While I like the reporting, I think that has the biggest room for improvement. Right now, as a user of FireMon, if I create a report, I am the only one who can see it inside FireMon. If someone on my team creates a report, they are the only person who can see that report on FireMon. It doesn't matter if you're admin in FireMon or not. The way we have to do it now is that we have created a service account user and that service account user runs all the reports. This way, all the reports, which are running, are just run under a single user so we can always access them. This definitely needs to change so users can see other users' reports or we can share reports within FireMon."

"The cost of the solution is pretty expensive. It would be ideal if they could work on their pricing."

"We are looking for more integration with SIEM and other tools."

"Its reporting can be improved. I am the only one who works a lot with it, and I am having problems in terms of reporting. In the case of Palo Alto, I'm okay with it, but with some of the Cisco devices, such as routers, when I provide the reports to other teams for review, they always say that the hit count is incorrect. So, I was struggling for a long time to work with them. When working with other teams, they have a lot of questions about reporting, such as how it reports, and we are still struggling with that."

"When it comes to identifying risk in our environment and prioritizing fixes, it is really about the different priorities within the organization. FireMon is not so smart that it can tell what's important to us. It's up to us to figure that out."

"The training for configuring new users or operators is confusing because the UI is not user-friendly and has room for improvement."

"I think that having a more open system and providing documentation for it would be helpful for users like us. We are pretty adept and can navigate through the Linux software that the on-premises FireMon is based on. It would help us in the long run."

"I ran a report and FireMon suggested that certain tools were not used. When I removed them, while it didn't bring our environment down completely, a lot of our environment started malfunctioning. Our backup system did not work, nor did other things that involve internal and external communication. We are not comfortable with what it did."

More FireMon Security Manager cons

"Currently, we have to get different data from different sections of the site. It would be nice if it was all combined into one."

"This solution would benefit from better reporting functionality with graphing so that reports can be presented to management."

"Our project is running on Riverbed for SDN. I don't know if Tufin can integrate with Riverbed. Other than that, I have no issues with this product."

"One of the areas that I've had challenges with is making complicated reports."

"Lacks ability to create a Terraform that would enable deployment without manual steps."

"At least in our environment, the dynamic learning of the topology needs improvement."

"The documentation site is horrible as well. It has a tree structure, and you really get lost quite easily."

"The design needs improvement, particularly in recognizing target devices and target files. Additionally, there's a need for an improved network map."

More Tufin Orchestration Suite cons

Pricing and Cost Advice

"It's a good value. From a licensing standpoint... it's very simple to understand, and gives us a good bang for the buck."

"FireMon is very expensive. I think that they charge a premium. In general, they are very pricey. Compared to their competitors, they cost a little more than the other solutions that we evaluated."

"Relative to what it offers, the price is fair."

"Pricing is reasonable."

"Pricing model seems fair."

"FireMon is cheaper than AlgoSec."

"Regarding additional costs, if you want things like Policy Optimizer, extra features, that's extra."

"The pricing is very good, very straightforward. It also came in cheaper than AlgoSec and Tufin."

More FireMon Security Manager pricing and cost advice

"We are seeing ROI in terms of having SecureApp."

"Tuffin is expensive, and we have to explain to our customers the benefit for them to purchase. If we explain the benefits in the correct way they do not mind the price. We typically do costing for the customer for three to five years. We make the general total cost of ownership at the beginning of a project for our customers."

"The solution has helped reduce the time it takes us to make changes. It helps make overall integrated changes immediately. It allows us to cut down at least a few hours in the week in regards to changes and monitoring."

"This solution helps us reduce the time it takes us to make changes. We're probably saving time by 25%."

"We've seen a decrease of about 50 percent in the overall time it takes to complete a firewall change."

"While licensing varies greatly, it is about $50,000 a year."

"The additional piece, which we are buying and doesn't include our other solution, is close to 300,000."

"I suggest talking with Tufin about the flexibility of the pricing structure."

More Tufin Orchestration Suite pricing and cost advice

See which vendors are best for you

Use our free recommendation engine to learn which Firewall Security Management solutions are best for your needs.

See recommendations

848,576 professionals have used our research since 2012.

Top Industries

By visitors reading reviews

Computer Software Company

18%

Financial Services Firm

16%

Manufacturing Company

Healthcare Company

Financial Services Firm

19%

Computer Software Company

15%

Manufacturing Company

10%

Retailer

Company Size

By reviewers

Large Enterprise

Midsize Enterprise

Small Business

Questions from the Community

What do you like most about FireMon?

I like the Security Manager console where we can see any changes that have been made or pull the results of an assessment and control the policies that we implement.

See all answers

What is your experience regarding pricing and costs for FireMon?

Comparatively, FireMon has a very good price and is below the general competition in cost. I have not seen any additional fees beyond the general contract fees for the usage I have. So, I have not ...

See all answers

What needs improvement with FireMon?

For one company I work with, I use Fortinet, and FireMon is not able to understand the zones that Fortinet uses. Part of that compliance piece does not provide me with the necessary information. An...

See all answers

What do you like most about Tufin SecureCloud?

The most valuable feature of Tufin is security auditing. We are able to check the rules and compliance of the company, for example, what is allowed or not. We are able to check the rules over diffe...

See all answers

What needs improvement with Tufin SecureCloud?

The design needs improvement, particularly in recognizing target devices and target files. Additionally, there's a need for an improved network map.

See all answers

What is your primary use case for Tufin SecureCloud?

My primary use case involves applying firewall policies faster from a central point. Additionally, I would like to use it to generate reports, but this hasn't occurred yet.

See all answers

Comparisons

AlgoSec vs FireMon Security Manager

Compared 38% of the time

Skybox Security Suite vs FireMon Security Manager

Compared 11% of the time

Palo Alto Networks Panorama vs FireMon Security Manager

Compared 4% of the time

ManageEngine Firewall Analyzer vs FireMon Security Manager

Compared 3% of the time

RedSeal vs FireMon Security Manager

Compared 3% of the time

More FireMon Security Manager Competitors

AlgoSec vs Tufin Orchestration Suite

Compared 36% of the time

Skybox Security Suite vs Tufin Orchestration Suite

Compared 17% of the time

Palo Alto Networks Panorama vs Tufin Orchestration Suite

Compared 6% of the time

ManageEngine Firewall Analyzer vs Tufin Orchestration Suite

Compared 3% of the time

Illumio vs Tufin Orchestration Suite

Compared 2% of the time

More Tufin Orchestration Suite Competitors

Product Reports

Buyer's Guide

FireMon Security Manager

April 2025

Download FireMon Security Manager product report

Buyer's Guide

Tufin Orchestration Suite

March 2025

Download Tufin Orchestration Suite product report

Also Known As

No data available

Tufin SecureCloud

Overview

The increasing complexity of networks, driven by the constant influx of new devices, applications, and cloud services, presents a daunting challenge for managing firewall policies and rules. A typical enterprise environment has millions of rules, and just one simple misconfiguration can lead to devastating consequences like compliance violations, outages, and data breaches.

FireMon’s Security Manager is a purpose-built network security policy management (NSPM) platform that automates the management of firewall and cloud security policies to eliminate policy-related risk, accurately and quickly change rules, and meet internal and external compliance requirements.

Reduce Risk Manage risk with real-time visibility and control
Manage Change Avoid misconfigurations, accelerate business, and improve security
Enforce and Maintain Compliance Avoid violations, avoid risk, and avoid fines

FireMon

Tufin enables organizations to automate their security policy visibility, risk management, provisioning and compliance across their multi-vendor, hybrid environment. Customers gain visibility and control across their network, ensure continuous compliance with security standards and embed security enforcement into workflows and development pipelines.

Tufin

Sample Customers

Convey, MGM Resorts International, Southwest Airlines, Alkami, Costco, Aetna, IBM, Verizon, Wells Fargo

3M, AT&T, Blue Cross Blue Shield, BNP Parabas, ConocoPhillips, Deutsche Bank, GE, IBM, Pfizer, United States Postal Service

Buyer's Guide

FireMon Security Manager vs. Tufin Orchestration Suite

April 2025

Free Report: FireMon Security Manager vs. Tufin Orchestration Suite

Find out what your peers are saying about FireMon Security Manager vs. Tufin Orchestration Suite and other solutions. Updated: April 2025.

DOWNLOAD NOW

848,576 professionals have used our research since 2012.

See our FireMon Security Manager vs. Tufin Orchestration Suite report.

See our list of best Firewall Security Management vendors.

We monitor all Firewall Security Management reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.