We performed a comparison between AlgoSec and FireMon Security Manager based on real PeerSpot user reviews.
Find out in this report how the two Firewall Security Management solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI."FireFlow continues to drive customer efficiencies, allowing an organisation to keep up with the pace of change."
"The most valuable is helping us determine where our rules are too permissive. Based on previous human review of our rules, they are very cursory. We know why we do something, but we don't get into the details of whether the rule is nice and tight. What Firewall Analyzer lets us do is understand the risks presented by our rules. The tool does a calculation of all the traffic that could be allowed and we can match that to whether it should be allowed."
"One of the quick wins is to view our device status easily, with out-of-the-box dashboards and charts."
"Audit-ready reporting is an awesome feature."
"It has reduced the workload for the firewall team thanks to the API integration with our ticketing system, handling the standard types of requests automatically."
"Detection of malicious activities and malware is much better than other options."
"We have critical security policies. With AlgoSec, we can create a security policy to manage critical applications. I have worked in the bank and they have critical applications. We created some security policies for those applications. Controlling the flow is critical for our customers."
"AlgoSec supports a wide range of devices and is constantly working to include support for many other vendor devices."
"The most valuable feature is the reporting capability because everything that we do is a result of our being able to query a report, based on our environment and our PCI compliance efforts."
"The firewall assessment feature is great."
"The most valuable feature is that everything is recorded in the historical logs, including the firewall rules, headcounts, object-level usage, and the rule documentation. The rule certification details are also there, which means that someone can be held accountable for a specific firewall rule."
"The ease of use is the most valuable feature. There are a lot of products out there, but the ability to navigate through and use Firemon is very good."
"In one report, FireMon tells us there are, say, 1,000 rules that can be taken out and it gives us the ability to disable those for a year and to track when we made our changes. After a year, we can go back and eliminate the rules, to bring the configuration down to an almost human-readable level."
"Vendor agnostic when it comes to integrating with other product."
"The most valuable feature of FireMon is its ability to configure multiple devices and consolidate them into a single desktop, which allows us to manage all of our security devices, such as Palo Alto and Zscaler, from one place."
"The SQL language is convenient to use. It allows us to process a bunch of criteria very quickly and narrows things down if there is an issue with the firewall. It's easy to do that with SQL queries."
"At the integration point, a manual page could be added to the dashboard where directions about the products are explained in detail."
"The user interface could be a little more user-friendly."
"A simple tutorial about the initial configuration on Youtube could provide a lot of help."
"AlgoSec license usage is handled differently between firewall vendors. It may be a bit challenging to properly size the purchase of a new license - especially if a client is running multiple vendor firewalls in the environment."
"Advanced analytics and reporting capabilities that provide deeper insights into network traffic, security policy effectiveness, compliance, and risk management can be beneficial."
"There could be certain improvements such as supporting secure email."
"Support for Layer 7 policies, including User-ID and threat profiles with Palo Alto firewalls, has been a pain point from us. We would like to include the additional info specifically because we believe it changes the riskiness of the rule if it is only set for a specific user or a group of users."
"We see a very high demand for using containers and Dockers and therefore there is a need for managing access control to these platforms. I checked AlgoSec’s roadmap and, for now, there are no plans for developing these features."
"We're working on implementing FireMon with our ticketing system service now. Having that would be an improvement."
"Some of the things that you want to do in FireMon are not exactly straightforward, like creating certain reports or controls. Some of the functions could be a little more user-friendly, such as creating certain filters."
"We are looking for more integration with SIEM and other tools."
"We have had some stability issues that are affecting operations. We rely heavily on this solution and if it isn't working then we have to create rules manually."
"It comes as a Linux appliance on a server and we're not a Linux shop, we're more of a Windows shop. It would be great if they could automate or integrate the backups into it and other things through their GUI interface, just to make the management of Linux a little more transparent."
"FireMon could be made more user-friendly when it comes to creating filters or conducting traffic analysis."
"I think that having a more open system and providing documentation for it would be helpful for users like us. We are pretty adept and can navigate through the Linux software that the on-premises FireMon is based on. It would help us in the long run."
"I don't like that it comes with bugs, constant issues, and limited functionality."
AlgoSec is ranked 1st in Firewall Security Management with 173 reviews while FireMon Security Manager is ranked 4th in Firewall Security Management with 53 reviews. AlgoSec is rated 9.0, while FireMon Security Manager is rated 8.2. The top reviewer of AlgoSec writes "Gives us the ability to dig down into details and work at a level above the skills that we already have". On the other hand, the top reviewer of FireMon Security Manager writes "Makes compliance much easier compared to doing it manually, and automates policy changes across environments". AlgoSec is most compared with Tufin Orchestration Suite, Skybox Security Suite, Palo Alto Networks Panorama, ManageEngine Firewall Analyzer and Fortinet FortiManager, whereas FireMon Security Manager is most compared with Tufin Orchestration Suite, Skybox Security Suite, Palo Alto Networks Panorama, ManageEngine Firewall Analyzer and RedSeal. See our AlgoSec vs. FireMon Security Manager report.
See our list of best Firewall Security Management vendors.
We monitor all Firewall Security Management reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.
Thank you, Sunil and Carlo, for your insightful responses.
I really appreciate that and will investigate further.
Best regards,
John
It’s been too long since I evaluated AlgoSec to give some solid feedback here. I can say that mapping in FireMon is terrible if you have a complicated network, otherwise, it works pretty well.
FireMon performance- make sure you get the best server, you can break them out and put certain roles on different boxes to get a lot of expansion possibilities though it might not be necessary this depends heavily on the size of your configs. If you have 1,000 firewalls with 100 rules each no problem but a handful of firewalls with 900k+ rules can become problematic.
We have not pulled MPLS configs into the system but their protocol support (FireMon) seems top notch.
DR, well you can distribute the environment all over the place so it’s really up to you with Firemon how robust your DR is. I’ve never had a failure requiring a massive restore, even our older servers running their pre-web UI version is still running fine.
Unfortunately we chose Tufin over both those products, sorry I cannot give you a comparison on either. For us, Tufin simplifies the needs we have for Risks/Cleanup/Violations in our FW policies.
We also leverage compliance policy for best practices. You can also take advantage of the reporting functionally which suites your environment or infrastructure such as:
- New Revision
- Advance Change
- FW Modul Change
- Object Change
- Expired Rules
- Rule and Object Usage
- Policy Analysis
- Security Risk
- Rule Documentation.