RedSeal vs Tufin Orchestration Suite comparison

"The most valuable features are network mapping and configuration."

"RedSeal integrates the network and gives us a visual or graphical overview of our network. If an organization is geographically dispersed, for instance, with one office in Canada and one office in the Philippines, the whole network, including all devices, is integrated into RedSeal, and you can see from where the traffic is going in and out."

"This is the only solution in the world that gives you a digital resilience score."

"RedSeal has different modules, such as the Analyzer module, which can be leveraged."

"We are using the visibility with notifications on every firewall change and what those changes were. We have visibility to see who is making the changes, and when."

"It's user-friendly. It's easy to understand menus on the web GUI. That's a good feature for us. I can say that it's doing what it's supposed to do. It also integrates well with other products like Check Point."

"The most valuable feature is alerting, which lets me know when someone has made a change."

"This solution has helped our clients because it allows them to leverage the tools so that they can actually reduce their overall expenses for the environment."

"SecureChange is the most interesting part. It all comes down to having the user request firewall access and SecureChange, based on workflows, takes care of it, sending two or three emails to the business approvers. With one click, you can automate a firewall rule."

"The change workflow process is flexible and customizable... If we have a firewall completed and we want to redo it, if we need to re-engineer a particular firewall and open a different destination, we can do that by creating a break-fix... That is one of its useful tools."

"We use Tufin to clean up our firewall policies. This makes it a lot easier to find out the things that are wrong."

"It's hard to pick the most valuable feature. All of them are valuable, they're all critical for us... ChangeTrack obviously has a lot of very good features, like the risk analysis, the USP, and the Policy Browser."

"There is room for improvement in integrating the OT security part and the private 5G security part in RedSeal."

"Sometimes, it required us to refresh the configuration. When we integrated any of the configurations into the device, sometimes, it could not detect the exact picture of that device. So, we had to reset the device to see that if it was giving true-positive results or false-positive results. In some cases, we were not able to get true-positive results. There was some kind of bug in that version. Its interface is not user-friendly and needs to be improved. It takes time to understand the interface and various options. Skybox has quite a user-friendly interface. They could provide a feature for compliance audit policy if it is already not there. A compliance audit policy ensures that all configurations are based on the best practices standards, such as CIS benchmarks standard or other similar standards. It provides visibility about whether your device configuration is based on best practices or not. Usually, such a feature is provided by other solutions such as Meteor or Tenable Nessus."

"The dashboard should be improved to make correlating data easier to do."

"One of the areas of concern is the GUI. It is important to our customers that the GUI looks beautiful. It's a Java Client, so you have a Java dependency."

"I would like the application to have faster response times. E.g., the dashboard may take up to two minutes to load. Or, when we do the topology seating its two and a half hours. I would like to get those times down and increase the efficiency of the product there."

"I would like to see more configuration options on next-generation firewalls, defining possible standards for devices."

"There are some missing features we'd like to see them add in the future."

"It would be great to add a link to Visio to create shapes directly from Tufin, as it has the configuration."

"I feel that the user interface is a bit dated."

"We need to implement micro-segmentation in our infrastructure, and we are using Cisco ACI. However, we are facing an issue with Tufin, as it does not currently support integration with ACI for micro-segmentation, even though it is advertised as such."

"The initial setup was time consuming."

"I haven't seen the cloud integration yet, and I would like to see if we could audit the cloud firewalls, like the cloud-native, Azure, and Amazon. That would be nice. You want one tool to do everything. I don't want to use another tool, or manually go and audit the cloud firewalls."

"The pricing is based on the number of endpoints and devices, and we have seen it range from mid-five figures to low six figures."

"We've seen a decrease of about 50 percent in the overall time it takes to complete a firewall change."

"Our licensing costs are pretty low. We were grandfathered in, so we are at about $35,000 per year."

"Tuffin is expensive, and we have to explain to our customers the benefit for them to purchase. If we explain the benefits in the correct way they do not mind the price. We typically do costing for the customer for three to five years. We make the general total cost of ownership at the beginning of a project for our customers."

"Tufin reduced the time it takes to solve a problem, which reduces the time of the outage."

"Our licensing fees are approximately $100,000 USD yearly."

"It's not that expensive, except for Security Groups. For us, just the Security Groups were about half of the total price. The total was about €500,000 a year, of which €200,000 was for Security Groups."

"This solution helps us reduce the time it takes us to make changes. We're probably saving time by 25%."

"The additional piece, which we are buying and doesn't include our other solution, is close to 300,000."