RedSeal vs Tufin Orchestration Suite comparison

"The most valuable feature I enjoy that is provided by this security analytics platform is the ability to measure resilience."

"The most valuable features are network mapping and configuration."

"This is the only solution in the world that gives you a digital resilience score."

"If you want to understand your network environment as it relates to configuration issues, host/node vulnerabilities and firewall configurations, then I highly recommend that RedSeal be considered."

"RedSeal helps you prioritize and allocate your scarce human and capital resources where they have the biggest impact to protect your most-valuable digital assets."

"The most valuable feature of the product to me is being able to ask what-if questions about traffic flows, which is a great ability to have for security and incident response."

"RedSeal integrates the network and gives us a visual or graphical overview of our network. If an organization is geographically dispersed, for instance, with one office in Canada and one office in the Philippines, the whole network, including all devices, is integrated into RedSeal, and you can see from where the traffic is going in and out."

"RedSeal has different modules, such as the Analyzer module, which can be leveraged."

"I don't evaluate other vendors every two weeks, but I've evaluated them before, and I think Tufin is quite a technically-leading solution."

"It has allowed us to be more efficient in our processing of firewall requests."

"We have a better view of our compliance status."

"The most valuable feature of this solution is that it reduces both the time required and the number of errors when making changes."

"It understands my need to make sure that there are specific metrics that we are looking at and with those seeing across our technologies, as opposed to just a vendor technology building reports."

"Its ability to detect changes within our firewall."

"They've been great, we have a good relationship with them and the product does a lot of things that we want."

"There are a lot of benefits to using the reporting. It gives us duplicate objects, duplicate services, shadow firewall rules, and the firewall rules not needed for a given number of days or months."

"Sometimes, it required us to refresh the configuration. When we integrated any of the configurations into the device, sometimes, it could not detect the exact picture of that device. So, we had to reset the device to see that if it was giving true-positive results or false-positive results. In some cases, we were not able to get true-positive results. There was some kind of bug in that version. Its interface is not user-friendly and needs to be improved. It takes time to understand the interface and various options. Skybox has quite a user-friendly interface. They could provide a feature for compliance audit policy if it is already not there. A compliance audit policy ensures that all configurations are based on the best practices standards, such as CIS benchmarks standard or other similar standards. It provides visibility about whether your device configuration is based on best practices or not. Usually, such a feature is provided by other solutions such as Meteor or Tenable Nessus."

"The network mapping/visualization could be improved significantly."

"There is room for improvement regarding customization and automation of reports."

"The dashboard should be improved to make correlating data easier to do."

"There is room for improvement in integrating the OT security part and the private 5G security part in RedSeal."

"One of the areas of concern is the GUI. It is important to our customers that the GUI looks beautiful. It's a Java Client, so you have a Java dependency."

"Although we are talking about a very robust platform, I would like to see the Windows compatible VM version come back."

"Integration with other security tools. Have the ability to create custom reports: Currently, within RedSeal you only have the option to run the canned reports."

"The product should integrate with the UTM features."

"My suggestion would be to be able to correlate it with other toolsets, and not just have it contained in their own toolsets."

"I would like easier integration with more automation."

"Integration for Layer 2 devices could be improved because it requires manual scripting."

"It needs more compatibility with older firewalls."

"I have not really found any other side benefits."

"We need to implement micro-segmentation in our infrastructure, and we are using Cisco ACI. However, we are facing an issue with Tufin, as it does not currently support integration with ACI for micro-segmentation, even though it is advertised as such."

"Tufin should do a better part of educating their users because it's quite complicated."

"The pricing is based on the number of endpoints and devices, and we have seen it range from mid-five figures to low six figures."

"It's not that expensive, except for Security Groups. For us, just the Security Groups were about half of the total price. The total was about €500,000 a year, of which €200,000 was for Security Groups."

"I'm saving 20 man-hours a week, so I am seeing some ROI."

"Our evaluation showed that Tufin's features were on par with AlgoSec, but Tufin was the better financial choice."

"The seller of Tufin, when I wanted the solution, was very flexible because the cost on the lease was very high in Latin America. So, he was able to reduce the cost."

"We have seen ROI from the side of operations, and we'll probably get to more of that as time goes on. However it took a while to get to that point."

"While licensing varies greatly, it is about $50,000 a year."

"Our engineers are spending less time on manual processes: 20 to 30 hour plus."

"Our licensing costs are pretty low. We were grandfathered in, so we are at about $35,000 per year."