Try our new research platform with insights from 80,000+ expert users

AWS Firewall Manager vs Tufin Orchestration Suite comparison

 

Comparison Buyer's Guide

Executive SummaryUpdated on Nov 4, 2024

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Categories and Ranking

AWS Firewall Manager
Ranking in Firewall Security Management
9th
Average Rating
7.8
Reviews Sentiment
7.6
Number of Reviews
8
Ranking in other categories
No ranking in other categories
Tufin Orchestration Suite
Ranking in Firewall Security Management
2nd
Average Rating
8.0
Reviews Sentiment
7.2
Number of Reviews
184
Ranking in other categories
No ranking in other categories
 

Mindshare comparison

As of July 2025, in the Firewall Security Management category, the mindshare of AWS Firewall Manager is 3.8%, down from 6.4% compared to the previous year. The mindshare of Tufin Orchestration Suite is 22.5%, up from 20.2% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Firewall Security Management
 

Featured Reviews

Bassam Khoreich - PeerSpot reviewer
Automated security operations streamline network protection
I use AWS Firewall Manager primarily for cybersecurity solutions, particularly for AWS Firewall Manager AWS Firewall Manager can be the control plane for multiple deployed applications like CloudFront and any other network firewall, BPF, and VPC. Everything can be managed with one dashboard. It…
MithatBulut - PeerSpot reviewer
New employees can quickly grasp the various IPs, devices, and the network's logical and physical
Tufin is primarily used to orchestrate and manage network traffic and firewall devices. It is specifically useful for implementing firewall policies and handling requests from clients that require policy updates or changes Tufin simplifies understanding network topology. New employees can quickly…

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"It has centralized cloud firewall management rules. It provides compliance in tracking and reporting."
"The most valuable feature is scaling, which allows you to deploy one configuration and scan and deploy it across the network. The automated policy application feature also streamlines security operations."
"The product is highly reliable."
"The most valuable feature is the centrally managed rule. I also like the central orchestration."
"The interface is intuitive and it is easy for the users."
"AWS Firewall Manager isn't a separate solution when you create the virtual private cloud (VPC), so you can control the traffic through that security group."
"Also, the strength of the community is invaluable."
"Once this solution is set up, we hardly have to touch it."
"The Automatic Policy Generator saves time because we are able to identify the required policy when a client doesn't know what he needs."
"In the past, we would do certain things because of private knowledge of people's own understanding of the network. We don't have to rely on just that piece of it, because of the topology. We now know which firewalls come into play."
"Tufin has improved my organization with its configuration management. It has tremendously improved the operation's success and has made life easier."
"Tufin allows our say junior guys to learn how to view policies. It gives them a tool that will help them consolidate and optimize."
"Policy management and the cartography of the network have been the most valuable features."
"It's hard to pick the most valuable feature. All of them are valuable, they're all critical for us... ChangeTrack obviously has a lot of very good features, like the risk analysis, the USP, and the Policy Browser."
"The most valuable function is the SecureChange where it is able to automate everything from the validation of the rules to the pushing of the rules."
"The most valuable feature are role and objects usage for individual objects and app usage."
 

Cons

"Enabling and configuring the logging is not that straightforward."
"They could consider organizing and enhancing documentation in a more structured and chronological manner"
"It needs to be more employee-friendly, and the security management could be more efficient."
"AWS Firewall Manager should be open to manage other third-party appliances as well."
"The system should be more customizable."
"This solution is suitable for a small-scale enterprise and may not scale up to a very high volume of traffic or a large number of servers."
"I would like to see AWS add some UTM features to the firewall. It would also be great if AWS Firewall had native IPS/IDS. They have the separate IPS/IDS, GuardDuty."
"The product could benefit from improvements in the user interface and integration capabilities."
"A big improvement would be on the USP policy. If we could use Palo Alto to take those zone names and auto import them into the policy, then just do the policy based on the zone names instead of having to put in every single subnet."
"There's a need for an improved network map."
"I would like the application to have faster response times. E.g., the dashboard may take up to two minutes to load. Or, when we do the topology seating its two and a half hours. I would like to get those times down and increase the efficiency of the product there."
"The design needs improvement, particularly in recognizing target devices and target files. Additionally, there's a need for an improved network map."
"The hardest piece is getting the matrix built."
"I would like to see them get rid of the REST APIs and use something more modern."
"The change impact analysis doesn't even get close to actually solving our problems. I am not impressed with it."
"The metrics need improvement. They need more consistency or understanding of automation, along lines of customization of automation."
 

Pricing and Cost Advice

"The AWS Firewall Manager is a little on the costly side."
"It is a cost-efficient product."
"From what I've heard from my colleagues, it appears that the pricing is competitive, which influenced our decision to choose this option."
"The licensing is on a pay-as-you-go basis and we are billed monthly."
"Our licensing fees are more than $100,000 USD per year."
"This solution helps us reduce the time it takes us to make changes. We're probably saving time by 25%."
"If you don't buy their premium support, their technical support is not great and you can only call during daytime hours. So, we ended up purchasing their premium support."
"We've seen a decrease of about 50 percent in the overall time it takes to complete a firewall change."
"Licensing is on a customer by customer basis."
"Pricing is quite high. We did compare it with AlgoSec but the pricing is not much different between the two."
"While licensing varies greatly, it is about $50,000 a year."
"The seller of Tufin, when I wanted the solution, was very flexible because the cost on the lease was very high in Latin America. So, he was able to reduce the cost."
report
Use our free recommendation engine to learn which Firewall Security Management solutions are best for your needs.
860,745 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Computer Software Company
14%
Financial Services Firm
14%
Hospitality Company
6%
Manufacturing Company
6%
Financial Services Firm
17%
Computer Software Company
15%
Manufacturing Company
10%
Healthcare Company
6%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
 

Questions from the Community

What do you like most about AWS Firewall Manager?
It has centralized cloud firewall management rules. It provides compliance in tracking and reporting.
What is your experience regarding pricing and costs for AWS Firewall Manager?
On a scale of one to ten, I would rate the pricing for AWS Firewall Manager as seven, where one is cheap and ten is expensive.
What needs improvement with AWS Firewall Manager?
AWS Firewall Manager should be open to manage other third-party appliances as well.
What needs improvement with Tufin SecureCloud?
Tufin Orchestration Suite ( /products/tufin-orchestration-suite-reviews ) is not commonly used in Thailand due to a lack of local support, and many customers are switching to AlgoSec or other vendo...
What is your primary use case for Tufin SecureCloud?
I have primarily used Skybox and AlgoSec ( /products/algosec-reviews ). I have also interacted with FireMon for compiling. However, I am not currently working with ACA, and I don't have any project...
What advice do you have for others considering Tufin SecureCloud?
There is potential for improvement in explaining the analytics in the dashboard for Tufin Orchestration Suite. Tufin Orchestration Suite does provide good monitoring; however, interpreting the grap...
 

Also Known As

No data available
Tufin SecureCloud
 

Overview

 

Sample Customers

Expedia, Intuit, Royal Dutch Shell, Brooks Brothers
3M, AT&T, Blue Cross Blue Shield, BNP Parabas, ConocoPhillips, Deutsche Bank, GE, IBM, Pfizer, United States Postal Service 
Find out what your peers are saying about AWS Firewall Manager vs. Tufin Orchestration Suite and other solutions. Updated: June 2025.
860,745 professionals have used our research since 2012.