Try our new research platform with insights from 80,000+ expert users

Prisma Cloud by Palo Alto Networks vs Tufin Orchestration Suite comparison

Sponsored
 

Comparison Buyer's Guide

Executive SummaryUpdated on Sep 16, 2024
 

Categories and Ranking

SentinelOne Singularity Clo...
Sponsored
Ranking in Container Security
3rd
Average Rating
8.6
Reviews Sentiment
8.1
Number of Reviews
92
Ranking in other categories
Vulnerability Management (6th), Cloud and Data Center Security (5th), Cloud Workload Protection Platforms (CWPP) (4th), Cloud Security Posture Management (CSPM) (4th), Cloud-Native Application Protection Platforms (CNAPP) (3rd), Compliance Management (3rd)
Prisma Cloud by Palo Alto N...
Ranking in Container Security
1st
Average Rating
8.4
Reviews Sentiment
7.4
Number of Reviews
106
Ranking in other categories
Web Application Firewall (WAF) (5th), Cloud Workload Protection Platforms (CWPP) (1st), Cloud Security Posture Management (CSPM) (2nd), Cloud-Native Application Protection Platforms (CNAPP) (1st), Data Security Posture Management (DSPM) (1st)
Tufin Orchestration Suite
Ranking in Container Security
28th
Average Rating
8.0
Number of Reviews
181
Ranking in other categories
Firewall Security Management (2nd)
 

Mindshare comparison

As of November 2024, in the Container Security category, the mindshare of SentinelOne Singularity Cloud Security is 2.0%, up from 0.8% compared to the previous year. The mindshare of Prisma Cloud by Palo Alto Networks is 17.8%, down from 19.4% compared to the previous year. The mindshare of Tufin Orchestration Suite is 0.2%, down from 0.2% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Container Security
 

Featured Reviews

Andrew W - PeerSpot reviewer
Aug 29, 2024
Tells us about vulnerabilities as well as their impact and helps to focus on real issues
Looking at all the different pieces, it has got everything we need. Some of the pieces we do not even use. For example, we do not have Kubernetes Security. We are not running any K8 clusters, so it is good for us. Overall, we find the solution to be fantastic. There can be additional education components. This may not be truly fair to them because of what the product is going for, but it would be great to see additional education for compliance. It is not a criticism of the tool per se, but anything to help non-development resources understand some of the complexities of the cloud is always appreciated. Any additional educational resources are always helpful for security teams, especially those without a development background.
Mohammad Qaw - PeerSpot reviewer
Aug 20, 2024
It gives you one console to see all of your assets, review their configurations, and build your processes
Most customers use Prisma Cloud for visibility and compliance. Prisma has so many features, but many organizations do not use them. They primarily use the visibility part to connect all their cloud accounts and hosts for visibility to see if they are missing any security controls or if they have any misconfigurations. You can connect it to cloud environments such as Azure, AWS, Oracle Cloud, Alibaba, etc., or to an on-prem data center. Prisma Cloud gives you so many options to automate processes related to your daily operations. When it comes to cybersecurity, you can automate things with their existing APIs. They also have out-of-the-box integrations with many solutions. I have not seen any limitations. Everything is customizable. You can do whatever you want, defining the reporting and custom use cases. They recently updated the UI, so it's much better than before.
Amroy Lumban Gaol - PeerSpot reviewer
Sep 26, 2022
A flexible, very secure solution that works well in Layer 2 environments
Our company uses the solution to auto deploy and analyze locks for hundreds of Layer 2 firewalls which are more challenging than Layer 3.  We write script for manual configurations, create policies, analyze all rules and locks, and then auto deploy. We currently have 40 engineers and 100 staff who…

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"The agentless vulnerability scanning is great."
"We noted immediate benefits from using the solution."
"We mostly use alerts. That has been pretty good. If we use the alert system from Amazon, it is much costlier to us, so we use PingSafe."
"You not only get to know about vulnerabilities and misconfigurations but also some of the actual"
"Cloud Native Security has helped us with our risk posture and securing our agenda. It has been tremendous in terms of supporting growth."
"Cloud Native Security offers attack path analysis."
"Cloud Native Security helps us discover vulnerabilities in a cloud environment like open ports that allow people to attack our environment. If someone unintentionally opens a port, we are exposed. Cloud Native Security alerts us so we can remediate the problem. We can also automate it so that Cloud Native Security will fix it."
"The mean time to detect has been reduced."
"We found it to be easy and flexible. We could easily configure it for our needs, and we could spread the Prisma Cloud platform to 16 countries without encountering any kind of problem."
"The solution offers very good configuration capabilities."
"This solution helped us by allowing us to schedule and fix things. This is not an easy thing if you're managing 1,000 plus resources."
"The runtime mechanism on the solution is very useful. It's got very good network mapping between containers. If you have more than one container, you can create a content data link between them."
"Integrating with a CI/CD pipeline and incorporating a vulnerability assessment process are highly effective features, especially when combined with runtime protection."
"I find the CSPM area to be a more valuable and flexible feature."
"I like Prisma's ability to integrate with other tools. We can integrate it with Jira so that when Prisma triggers an alert, it opens a ticket in Jira. That was a big selling point for the product. There's a feature called the guest custom template that allows you to trigger alerts in Jira based on the template. That can also be added as a feature on Jira."
"Prisma Cloud provides the needed visibility and control regardless of how complex and distributed the cloud environments become."
"The stability is bulletproof."
"The automation piece is the most valuable feature: having SecureChange make the change on the firewalls, instead of my having to go manually make the changes on the vendor product."
"The most valuable features are the GUI interface and the API."
"You can easily scale the solution if you need to."
"We built the policy comparison reporting into our processes that before we push any change to production, an engineer will stage actual date rule changes and policy changes. Another engineer will go in and do a comparison report of the last push policy to the last save, making sure what has been changed is what is expected to. From an operational excellence, it's huge for us. We have huge policies. All it takes is one accidental right click, delete, or backspace button, which could impact our business. So, this is something that we use almost day in and day out."
"The change workflow process is very easy to customize. You can do a workflow however you want, so you can have an approval every single step. Or, you can remove approvals on certain steps, automating some steps."
"The solution is quite scalable."
"The solution is good, and no clients complained about it."
 

Cons

"The cost has the potential for improvement."
"There's room for improvement in the graphic explorer."
"SentinelOne Singularity Cloud Security could be improved with easier integrations to the Singularity Data Lake, particularly for various vendors."
"There is a bit of a learning curve for new users."
"SentinelOne currently lacks a break glass account feature, which is critical for implementing Single Sign-On."
"There can be a specific type of alert showing that a new type of risk has been identified."
"A few YouTube videos could be helpful. There isn't a lot of information out there to look at."
"I used to work on AWS. At times, I would generate a normal bug in my system, and then I would check PingSafe. The alert used to come after about three and a half hours. It used to take that long to generate the alert about the vulnerability in my system. If a hacker attacks a system and PingSafe takes three to four hours to generate an alert, it will not be beneficial for the company. It would be helpful if we get the alert in five to ten minutes."
"The first time I looked at Prisma Cloud, it took me a while to understand how to implement the integration or how to enable features by using the interface for integration. That portion can probably be improved."
"One thing that is missing is Cloud Run runtime security—serverless. That would be great to have in the tool. It's not that easy to have Cloud Run in specific environments."
"The UI could use some improvement; we usually find the information we're looking for, but what fields can be clicked on and what workflow to follow to get the required information is not always evident. Sometimes we're all over the place, clicking around to drill in and uncover the alert and investigation details we're looking for."
"This solution is more AWS and Azure-centric. It needs to be more specific on the GCP side, which they are working on."
"The Palo Alto support needs to improve."
"While the documentation continually improves, it still has limitations compared to the extensive resources available for older products like hardware firewalls, which have been around for approximately 20 years."
"When it comes to protecting the full cloud-native stack, it has the right breadth. They're covering all the topics I would care about, like container, cloud configuration, and serverless. There's one gap. There could be a better set of features around identity management—native AWS—IAM roles, and service account management. The depth in each of those areas varies a little bit. While they may have the breadth, I think there's still work to do in flushing out each of those feature sets."
"The UI is the worst."
"At least in our environment, the dynamic learning of the topology needs improvement."
"They've got such a large number of APIs, and it is so easy to use their APIs. Effectively, they allow us to use it with anything. The only way to improve it more is by offering support for implementing their APIs into certain hardware or software that we might use. They can provide support for implementing APIs."
"I don't get the full visibility. There are a lot of improvements which can be done in terms of visibility."
"We will be using the appliance based product, which cannot be scaled as much. It is a limitation in the hardware."
"The pricing could be a bit more competitive."
"There are at least two things that need improvement. One is the business workflow and the second is the integration with logging solutions."
"The initial setup was time consuming."
"The metrics need improvement. They need more consistency or understanding of automation, along lines of customization of automation."
 

Pricing and Cost Advice

"Singularity Cloud Security by SentinelOne is cost-efficient."
"Their pricing appears to be based simply on the number of accounts we have, which is common for cloud-based products."
"PingSafe is not very expensive compared to Prisma Cloud, but it's also not that cheap. However, because of its features, it makes sense to us as a company. It's fairly priced."
"SentinelOne provided competitive pricing compared to other vendors, and we are satisfied with the deal."
"The tool is cost-effective."
"We have an enterprise license. It is affordable. I'm not sure, but I think we pay 150,000 rupees per month."
"I wasn't sure what to expect from the pricing, but I was pleasantly surprised to find that it was a little less than I thought."
"It's not expensive. The product is in its initial growth stages and appears more competitive compared to others. It comes in different variants, and I believe the enterprise version costs around $55 per user per year. I would rate it a five, somewhere fairly moderate."
"The pricing is reasonable."
"Prisma Cloud by Palo Alto Networks is a highly expensive solution."
"Prisma Cloud is cost-efficient, but the credits are on the higher end."
"I find the pricing to be expensive."
"Its price is reasonable as compared to other products. The main challenge is explaining the licensing model to customers. It isn't a problem related to Palo Alto. Commonly, people don't understand cloud licensing or security licensing. When they have fixed virtual machines, they know what they are going to be charged, but when it comes to cloud automation, it is hard for them to get clarity in case of high workloads or when they have enabled auto-scaling, etc. It would be helpful if Palo Alto can educate people on their licensing programs."
"We are encountering some resistance in the African market regarding the cost of Prisma Cloud."
"The pricing is competitive. From what I have seen in the past, it is on par with the others."
"The pricing and licensing are expensive compared to the other offerings that we considered."
"Pricing played a big part here... The customer had evaluated other products but, due to price as well as support, they chose Tufin."
"We have seen ROI in operational aspects, in terms of how long it takes to resolve incidences which arise."
"The pricing is reasonable."
"Its price is reasonable, but it could be lower. It has been cost-effective for us. We have a contract for three years."
"Licensing is available in both perpetual and subscription models, and it appears to be good for our scalable environments."
"We have seen ROI just in the time savings and knowledge. Knowledge is power. Having the solution do it automatically for you without you doing the work is huge. If you are spending $50,000 a year, it could have cost you a $100,000 in man-hours without it, especially if you are working with a team.."
"The solution has helped reduce the time it takes us to make changes. It helps make overall integrated changes immediately. It allows us to cut down at least a few hours in the week in regards to changes and monitoring."
"I suggest talking with Tufin about the flexibility of the pricing structure."
report
Use our free recommendation engine to learn which Container Security solutions are best for your needs.
815,129 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Computer Software Company
19%
Financial Services Firm
16%
Manufacturing Company
10%
Insurance Company
5%
Educational Organization
17%
Financial Services Firm
13%
Computer Software Company
13%
Manufacturing Company
9%
Financial Services Firm
19%
Computer Software Company
18%
Manufacturing Company
9%
Energy/Utilities Company
5%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
 

Questions from the Community

What do you like most about PingSafe?
The dashboard gives me an overview of all the things happening in the product, making it one of the tool's best featu...
What is your experience regarding pricing and costs for PingSafe?
I am personally not taking care of the pricing part, but when we moved from CrowdStrike to Singularity Cloud Native S...
What needs improvement with PingSafe?
They can provide some kind of alert when a new type of risk is there. There can be a specific type of alert showing t...
What is your primary use case for Prisma Cloud by Palo Alto Networks ?
Prisma Cloud helps support DevSecOps methodologies, making those responsibilities easier to manage.
What Cloud-Native Application Protection Platform do you recommend?
We like Prisma Cloud by Palo Alto Networks, since it offers us incredible visibility into our entire cloud system. We...
What do you think of Aqua Security vs Prisma Cloud?
Aqua Security is easy to use and very manageable. Its main focus is on Kubernetes and Docker. Security is a very valu...
What do you like most about Tufin?
The most valuable feature of Tufin is security auditing. We are able to check the rules and compliance of the company...
What is your experience regarding pricing and costs for Tufin?
Tuffin is expensive, and we have to explain to our customers the benefit for them to purchase. If we explain the bene...
What needs improvement with Tufin?
The reporting function could improve in Tufin. For our clients with companies that have strong compliance, reporting ...
 

Also Known As

PingSafe
Palo Alto Networks Prisma Cloud, Prisma Public Cloud, RedLock Cloud 360, RedLock, Twistlock, Aporeto
Tufin SecureCloud
 

Overview

 

Sample Customers

Information Not Available
Amgen, Genpact, Western Asset, Zipongo, Proofpoint, NerdWallet, Axfood, 21st Century Fox, Veeva Systems, Reinsurance Group of America
3M, AT&T, Blue Cross Blue Shield, BNP Parabas, ConocoPhillips, Deutsche Bank, GE, IBM, Pfizer, United States Postal Service 
Find out what your peers are saying about Prisma Cloud by Palo Alto Networks vs. Tufin Orchestration Suite and other solutions. Updated: October 2024.
815,129 professionals have used our research since 2012.