AlgoSec Reviews

We use it daily to check existing rules created on all our firewalls and existing flows that are allowed, and if we can improve the performance of our firewalls by just doing the rearrangement of rules, etc.

We got more productive and agile using the product since the most time consuming job of our team is the creation of firewall rules, analyzing what is already created based on the requests of our users and internal costumers. The solution provides us an in-depth detail of what we have already in production and what we can do to resolve tickets/requests in the most effective way.

We now have more visibility into our firewall and security environment using a single pane of glass. We have a better audit of what our network and security engineers are doing on each device and are now able to see how much we are complaint with our baseline.

The product gave us more agility in the process to analyze and resolve tickets by requesting permissions to access services not enabled by default. At the same time, providing visibility of what we can improve on the scenario that we are already running on it.

The quick wins that the product can help us to achieve. With a few rule arrangements, we can improve the rule processing of the firewalls, increasing their performance and reducing possible bottlenecks, but keep us under the defined baseline of the company.

Also, the gain on the agility of checking what we already have created. The rules that can accommodate new requests instead of creating new rules have definitely helped us to resolve tickets in a faster way, achieving the expected SLA from users and internal customers of the company.

The product should support more vendors with the same in-depth analysis that it already is providing. This would give more reasons to for other companies to adopt it and make us preserve the investment in case we change the running environment.

Five months.

It is very stable without any major issues.

We don't see scalability on this product as a showstopper. We are confident that we can grow without any impact.

Very good. They helped us on everything that we needed.

We stopped using FireMon due to the price and lack of features.

No.

Through a vendor who fulfilled all our expectations.

It is fair. 

For cloud environments, it can be expensive. The model adopted to use as licensing for the cloud environment should be reviewed since it sometimes can increase the value of the service/product in an unexpected way. For example, they should instead use the amount of instances, which should just take into consideration the number of Security Groups and ACLs.

No.

The automation and orchestration of security-related change requests on our selected firewall (in our case Checkpoint) to decrease the time it takes to raise, manipulate, and execute change requests. This is all done with minimal interaction from our Firewall and IPS team, allowing them to more effectively use their time.

It has eased the process of streamlining our firewall configuration management considerably. Our firewall and IPS team now has the ability to budget their time and focus on other tasks, rather than dealing with repetitive change request functions. This has enabled the team to work much more efficiently and effectively.

The feature we found most useful is the automation of the change process within our organization for firewalls. This feature has reduced the number of mundane tasks the firewall and IPS team undertake on a regular basis. We have been able to increase the effectiveness of the team, allowing them to prioritize more complex and business-critical tasks in a faster manner.

In terms of integrations, we would like to see a greater number with the upcoming and next-generation tools (i.e. SOAR and a selection of other SIEMs). This has been a problem for us, as we are going through the process of enhancing our security and some of the products we are looking at are lacking built-in support (integration). 

The AlgoSec Firewall Analyzer was greatly used for firewall analysis, policy tuning, and optimization. The automated change management feature was very useful and integrates seamlessly into the change management process.

This solution helps in maintaining and providing regulatory compliance metrics and to optimize the overall security of the organization. It provides great visibility into your firewall rules, thereby allowing you to eliminate redundant or overlapping rules. It saves time by allowing administrators to test network traffic and pinpoint which rules are being triggered for a particular traffic flow.

The most valuable features to me were the following:

1. Testing network flows and optimizing firewall policies.
2. Obtaining regulatory and compliance metrics for audits.
3. Visualize complex networks using the topology maps.
4. Simple interface and ease of navigation.

The product has a lot of great features already. However, I would like the reporting to be more customizable, as per user and auditing needs.

It is a highly scalable solution as per my experience.

I haven't used any other solutions.

I do not have much information on the pricing, as I wasn't part of the actual procurement process. I was told that the pricing and licensing was comparatively fair.

I did a basic evaluation of FireMon, which had identical features to the AlgoSec Firewall Analyzer.

• To manage the various network security equipment deployed
• Be able to detect unauthorized changes in those equipment.

It is still being deployed, but it shall enable reliance on more third parties out of the IT security team without losing the assurance that the configurations are under control. 

• Ability to manage all the network security equipment centrally
• Ability to delegate to local ITs the network security equipment change requests
• Ability to decrease the necessary workload to enable network connections, troubleshoot
• Ability to detect unauthorized or non-compliant changes in the network security equipment configuration.

Ability to manage more diversity of equipment, as well as simplify the management of the various workflows.

No previous solution.

Yes: Tufin.

Since approximately 2005, I have used AlgoSec in almost all of the companies that I have worked at. AlgoSec Firewall Analyzer (AFA) continues to be my favorite product, as well as the core of other AlgoSec products. My teams use AFA to validate firewall (FW) changes, see hidden and complex rules, identify dangerous combinations of rules across many enterprise firewall situations, and enable a risk-based approach to firewall rules and associated risk management.

AlgoSec is able to provide a consistent view into all of an organization's firewalls, regardless if the management is done by different companies, e.g., Check Point's, Cisco's, and Palo Alto's firewall policies are presented to the security team in a consistent format. This enables risk management decisions to be made without detailed understanding or experience in various underlying firewall technologies or management systems.

AFA is the best feature. It shows consistent information regardless of the underlying platform. Unused rules, hidden rules, and dangerous combinations of rules are easily found and tracked by using AlgoSec.

• I would like to see continued expansion to other firewall versions, platforms, and vendors. 
• I would also like to see continued work on the roadmap.

To be able to monitor all firewalls under one umbrella. It makes it easy for customer to get their reports.

• Reports run easily to my management.
• Searching on IP address to find out the firewalls.
• Streamline tickets

Reports and baseline are the most important feature for auditors. Auditors can get PDF or CSV reports without having to give them access to firewalls.

Having the ability to patch an issue as oppose to upgrading the entire suite.

Once you upgrade to latest version, it is stable.

No issues.

Needs better technical support and quicker response times.

Setup is easy. Just run the script and all seems fine.

In-house with some help from Professional Services, who are knowledgeable and helpful.

Pricing is okay and the licensing can be a little tricky with the initial setup.

We evaluated other options. FireMon and Tufin were on the list but AlgoSec won out. It is better.

AlgoSec may be little pricier with its licenses, but it is probably better than any of other competitors.