FireMon Security Manager Reviews

Name: FireMon Security Manager
Brand: FireMon
Rating: 4.1 (53 reviews)

4.1 out of 5

53 reviews
87% willing to recommend

1,769 followers

What is FireMon Security Manager?

The increasing complexity of networks, driven by the constant influx of new devices, applications, and cloud services, presents a daunting challenge for managing firewall policies and rules. A typical enterprise environment has millions of rules, and just one simple misconfiguration can lead to devastating consequences like compliance violations, outages, and data breaches.

Get the FireMon Security Manager Buyer's Guide and find out what your peers are saying about FireMon Security Manager, AlgoSec, Tufin Orchestration Suite and more!

FireMon Security Manager is the #5 ranked solution in top Firewall Security Management solutions. PeerSpot users give FireMon Security Manager an average rating of 8.2 out of 10. Based on the analysis of the 53 most recent FireMon Security Manager reviews, the overall sentiment is positive, with a sentiment score of 7.3. (Among the highest in the category). FireMon Security Manager is most commonly compared to AlgoSec: FireMon Security Manager vs AlgoSec. FireMon Security Manager is popular among the large enterprise segment, accounting for 67% of users researching this solution on PeerSpot. The top industry researching this solution are professionals from a computer software company, accounting for 20% of all views.

Buyer's Guide

FireMon Security Manager

November 2024

Get the report

Helped 816,406 peers since 2012

Featured reviews

JeffReese

Senior Security Engineer at a financial services firm with 1,001-5,000 employees

People have a tendency to just add rules to firewalls, but they don't go back and take rules away. Some of our customers have thousands of unused rules that have been sitting out there for over a year. In one report, FireMon tells us there are, say, 1,000 rules that can be taken out and it gives us the ability to disable those for a year and to track when we made our changes. After a year, we can go back and eliminate the rules, to bring the configuration down to an almost human-readable level. It also identifies risks in your environment and helps to prioritize fixes. It actually rates the risk level, meaning you look for the red and try to bring everything to green.

Read full review

Jaimin Mehta

Senior Server and Cloud Engineer at Ertech

What I like about FireMon is the ability to track changes made by network engineers on the network. This allows us to run reports based on those changes. We can also track new rules to see if they comply with our standards. Additionally, we can identify rules that haven't been used or those that duplicate others excessively. FireMon enables us to create reports that provide valuable information for making changes within the system. The dashboard in FireMon is excellent, offering an overview of our network's compliance and security index database, among other things. I have also used FireMon for risk analysis of policies, exploring the possibilities and findings. While primarily focused on cleaning up files for a project, I have utilized many features for removing redundant and unused rules. However, I am aware that FireMon has even more to offer, such as understanding our network topology and conducting a comprehensive risk analysis. My current work mostly revolves around compliance, change management, and reviewing the alterations made.

Read full review

reviewer1727610

Network Security Analyst at a government with 10,001+ employees

Using FireMon has sped up our process a little bit. We had a fairly big hiatus where we weren't really utilizing it to the degree that we wanted. This is because, after the upgrade, there were a few critical things that broke. We worked with FireMon to alleviate those issues and to get them fixed. Now, it's to the point where it was before the upgrade, and we're trying to utilize it more for what we need. This includes compliance, security checks, and a lot of cleaning up. In terms of cleaning up firewall rules, FireMon helps in the sense that we can determine which rules are justified. One of my teammates actually created a script using the API to pull all the rules for a few of the core devices. Then, we give them to the respective group within the organization to look at and audit. This is something that is done on an annual basis. In that sense, we have started to utilize FireMon a lot, and it gives users a clean look at all of the firewall policies they have and provides them the opportunity to justify them. That helps cleanup because anything that's not justified or that needs to go, we can submit a request and get those taken care of. For creating, approving, and deploying firewall rules, FireMon saves us time when it comes to the troubleshooting aspect. When there are issues with blocks that happen for users, or if they are trying to go from one end to another end, either outside the internet or internally, FireMon homes in and helps us. We use FireMon more for this, rather than to audit specific rules. We are using it read-only right now, so it helps us to find the policy in question that could be the cause of the issue, but we alleviate it by submitting a request. There's a lengthy process for validating and verifying requests that come in, so the product doesn't save us time in this regard. We have the visual but then we tell the respective team to handle the writing on the device. Using FireMon has decreased errors and misconfigurations that would have otherwise increased risk in our environment. I can't estimate an exact number but when we did the initial cleanup a year ago, on the core devices it helped us to eliminate rules that weren't really being used. It was between 300 and 400 rules per device, which is a significant amount. FireMon has helped us to identify risks in the environment and to prioritize the fixes. This is mainly with some of the security blocking rules that we have, which are pretty intense. Firemon found issues where they were blocking too much or too little. It didn't have a very large impact on our security posture because we have other security tools that we're utilizing for intrusion detection, as well as other vulnerabilities. Because we're using it read-only, its primary use is as a monitoring solution. It doesn't do too much but does help with finding security issues before something goes wrong.

Read full review

FireMon Security Manager mindshare

As of November 2024, the mindshare of FireMon Security Manager in the Firewall Security Management category stands at 16.2%, up from 16.1% compared to the previous year, according to calculations based on PeerSpot user engagement data.

Firewall Security Management

Key learnings from peers

Last updated Nov 21, 2024

Valuable Features

The most valuable features of FireMon, according to the reviews, are:
- Ability to configure multiple devices and consolidate them into a single desktop for centralized management of security devices.
- Built-in cleanup reports and unused objects feature for improved cleanup and hygiene of the environment.
- Real-time compliance management capabilities, including automatic warnings for rule violations.
- Ease of use and user-friendly interface. - Security assessments and ability to identify unused rules or objects.
- Historical logs and documentation for accountability and compliance purposes.
- Automation features for reducing human error and operational overhead. - Change normalization and reporting for tracking and analyzing configuration changes.
- Dashboard for identifying high-risk rules and prioritizing fixes.
- Decreased errors and misconfigurations, improving security posture.

"I like the Security Manager console where we can see any changes that have been made or pull the results of an assessment and control the policies that we implement."
"What I like about FireMon is the ability to track changes made by network engineers on the network."
"I've been using the reports to see what is going on, and that is a helpful feature. We can track down unused rules, which helps with compliance. We can see rules that have not been used or that are duplicates or overly permissive."

Room for Improvement

Improvements needed on FireMon include user-friendliness of the UI and training for configuring new users or operators, responsiveness of the technical support team, lack of a cloud component and automation for updates, absence of a basic command manual, inability to identify and prioritize risk, limitations in drawing the full network topology and handling asymmetric routing, lack of predefined controls for alerting, limited accessibility and openness of the system for troubleshooting, stability issues affecting operations, difficulties with rule consolidation and cleanup, issues with detection of VPNs and UDP rules, limitations in handling firewall brands and complex network configurations, lack of automatic warning for compliance policy violations, need for enhanced reporting capabilities, improvements in ease of integration and policy automation, better control and sharing of reports, and enhanced support for individual vendors and their specific features. Additionally, the management of the Linux appliance could be made more transparent and user-friendly for Windows-based organizations.

"We've had recurring issues managing FireMon's internal backups. Sometimes, the space allocated for the backup is full, and there is no process where it deletes files that are older than I certain date. It's just waiting for the storage to get full and then it's cleaned up. It isn't something that creates serious issues for us."
"FireMon could be made more user-friendly when it comes to creating filters or conducting traffic analysis."
"Some of the things that you want to do in FireMon are not exactly straightforward, like creating certain reports or controls. Some of the functions could be a little more user-friendly, such as creating certain filters."

ROI

FireMon provides valuable benefits that are difficult to quantify in terms of ROI. It saves time, improves security, and helps in preventing cyber security incidents. It allows for accurate creation, approval, and deployment of firewall policy rules, reducing errors and misconfigurations that increase risk. The solution also identifies unintentional firewall rule usage, enabling immediate fixes. While the solution works well with simple firewalls, it struggles to scale with complex firewalls, requiring additional manual work. Despite this, FireMon has shown a return on investment through the completion of numerous projects tied to future-oriented processes. These projects have resulted in significant improvements in firewall management and hygiene, decreasing errors and misconfigurations. FireMon's reporting capabilities also help in correcting inaccurate firewall change requests and ensure the correct placement of firewall rules. Overall, FireMon's ROI is evident in the time saved and enhanced security it provides.

Pricing

Users have generally found the pricing for FireMon to be reasonable and straightforward. There are no hidden fees or additional costs beyond the standard licensing fees. Some users have experienced sticker shock due to the pricing being per device, but they believe it is worth the cost as it saves them significant time and resources. While the pricing was initially good, there have been some slight increases in recent years. However, overall, users do not have major issues with the pricing and consider it average or fair. It should be noted that FireMon is generally considered an expensive solution compared to its competitors. The pricing is module-based, with different tiers for licensing and support. Users usually opt for both licensing and support for their modules. In some cases, there may be extra costs for upgrades, system failures, or consultants.

"It's a good value. From a licensing standpoint... it's very simple to understand, and gives us a good bang for the buck."
"The pricing was very good during our initial year, but they increased it this year a little bit. The price is okay. It is not cheap, but it is still average."
"This is an expensive solution. The cost of three modules for three years was approximately one million."

Popular Use Cases

The primary use case of FireMon is for monitoring, reporting, and logging purposes. It is used to capture logs and events from enterprise firewalls, collect configurations, and ensure that firewall rules are up to date and being used. FireMon is also used by MSSPs to monitor security devices on customer sites. It is used to prevent bad things from happening within the infrastructure and to keep track of firewall devices as an inventory database. FireMon is used for monitoring changes on firewalls, conducting regular rule reviews, and helping with firewall migrations. It provides visibility into all rule sets and helps with troubleshooting. Additionally, FireMon is used for automating ticket resolution, firewall management, security management, firewall health, and processing firewall change requests. It is used for firewall rule analysis, firewall rule certification, PCI compliance, managing personal data, preventing data loss, and decommissioning firewalls. FireMon's Security Manager module is used for reporting, auditing firewall changes, tracking firewall hygiene, and applying firewall rules correctly. It is also used to identify unused rules and objects. FireMon is used by a range of organizations, from small groups to enterprise environments.

Service and Support

The customer service and support of FireMon have received mixed reviews. Some customers have had positive experiences, noting that the support team is quick to respond and provide helpful assistance. They appreciate the promptness and efficiency of the technical support, with some rating it as 10 out of 10. The support team is described as knowledgeable and patient, meeting compliance and IT risk deadlines. Additionally, the support team is praised for their global availability, providing great support regardless of the location of the issue. However, there are also some areas for improvement mentioned by customers. Some have experienced delays in receiving detailed answers to their questions, and there have been instances where the support team was not aware of changes in new releases. Despite these concerns, most customers still find the technical support to be good and helpful, rating it around 7 to 9.5 out of 10. In summary, FireMon's customer service and support have shown strengths in responsiveness, knowledge, and availability, but there is room for improvement in terms of communication and staying up-to-date with changes in the product.

Deployment

The setup for FireMon was described as straightforward, easy, and simple by multiple reviewers. Some mentioned that it only took a few hours or even 20 minutes to complete. However, a few reviewers did mention that there were some hiccups and more detailed configurations that caused minor issues and required some troubleshooting. Overall, the initial setup process was manageable and not overly complex.

Scalability

The solution of FireMon is considered scalable based on the number of licenses. It has been effective for a small shop with 10 users who use it once a week. The ability to scale up or down easily is mentioned, with new customers being added by setting up a VM. However, there is potential for more scalability, especially in a cloud environment. The on-premises deployment is described as pretty scalable, with the ability to add more collectors by spinning up new VMs. There may be some limitations in terms of processing capacity and integration with Palo Alto, but overall, the solution is capable and being extensively used within organizations. The scalability of FireMon is commended, with the ability to add resources, data collectors, and scale as the company grows. It can be deployed across multiple servers for larger organizations.

Stability

The solution of FireMon is highly stable with no downtime. It has been running efficiently for long periods of time without any issues. Once it is deployed, it requires minimal maintenance and monitoring. Some users have experienced minor stability issues, such as false negatives and swap file issues, but these problems were promptly addressed by FireMon. However, there have been cases where the solution could not be used due to stability issues, and some users have faced challenges with specific versions of the software. Overall, the stability of FireMon is considered favorable, with only a few isolated incidents of downtime or performance issues.

These insights are based on the in-depth reviews provided by peers to help you make a better buying decision.

Download our FireMon Security Manager Buyer's Guide for additional reliable information.

Review data by company size

By reviewers

By visitors reading reviews

Top industries

By visitors reading reviews

Computer Software Company

20%

Financial Services Firm

16%

Manufacturing Company

Energy/Utilities Company

Healthcare Company

Government

Retailer

Insurance Company

Comms Service Provider

Educational Organization

Real Estate/Law Firm

University

Media Company

Transportation Company

Construction Company

Logistics Company

Wholesaler/Distributor

Legal Firm

Non Profit

Hospitality Company

Performing Arts

Consumer Goods Company

Outsourcing Company

International Affairs Institute

Recreational Facilities/Services Company

Compare FireMon Security Manager with alternative products

Learn more about FireMon Security Manager

FireMon’s Security Manager is a purpose-built network security policy management (NSPM) platform that automates the management of firewall and cloud security policies to eliminate policy-related risk, accurately and quickly change rules, and meet internal and external compliance requirements.

Reduce Risk Manage risk with real-time visibility and control
Manage Change Avoid misconfigurations, accelerate business, and improve security
Enforce and Maintain Compliance Avoid violations, avoid risk, and avoid fines