IT Central Station is now PeerSpot: Here's why

Cisco Defense Orchestrator vs FireMon comparison

You must select at least 2 products to compare!
Featured Review
Buyer's Guide
Cisco Defense Orchestrator vs. FireMon
July 2022
Find out what your peers are saying about Cisco Defense Orchestrator vs. FireMon and other solutions. Updated: July 2022.
620,319 professionals have used our research since 2012.
Quotes From Members
We asked business professionals to review the solutions they use.
Here are some excerpts of what they said:
"With Cisco Defense Orchestrator, we can manage the complete Cisco Security solution. It provides a simple and centralized way to manage all products.""Cisco Defense Orchestrator has useful guides for the steps that need to follow by users.""The most valuable feature is the Intrusion prevention."

More Cisco Defense Orchestrator Pros →

"We also use the solution’s SASE integration capabilities to extend security policy management for cloud firewall management. It helps in creating one consistent rule across multiple platforms and it improves accuracy.""For the cleanup of firewall rules, it performs really well for us. We utilize it in our regular rule cleanup tasks, several times a year. FireMon is our primary tool when doing that, either by going through its out-of-the-box compliance rules or using it to search for certain things in our rules that we want to prune from our firewalls.""It is a good product. Previously, we were using only spreadsheets to compare the usage, but now with FireMon, we are able to clean up or review the policies to some extent. It is still a work in progress, but we are at a good stage now.""In one report, FireMon tells us there are, say, 1,000 rules that can be taken out and it gives us the ability to disable those for a year and to track when we made our changes. After a year, we can go back and eliminate the rules, to bring the configuration down to an almost human-readable level.""Compared to other applications, it is user-friendly. The appearance of the menus and titles is clear and they are easy to follow. Of course, it requires some experience through using it, to go through everything, but it is not very difficult. It is an easy application to use.""FireMon decreases errors and misconfigurations by 10% that increase risk in our environment. That has to do a lot with the change reporting that is in place, but also with the built-in controls and custom controls that we have made. Those all decrease the errors that people naturally make on a day-to-day basis for firewall administration.""FireMon is nice and provides 360-degree user views.""The most valuable features are the security assessments and the ability to identify unused rules or objects."

More FireMon Pros →

"They need to work on the user interface. It needs to be improved to make it more user-friendly.""They can centralize all products and provide a correlation about an incident and the response. They can also provide an on-premises solution. Currently, Cisco Defense Orchestrator is just for cloud deployments, not for on-premises deployments. Customers have to manage it on the cloud. We are based in Vietnam, and most of the customers here prefer to have on-premises deployments. Customers, especially from banking and government sectors, do not prefer to do anything on the cloud. Some of the small enterprises use the cloud.""Cisco Defense Orchestrator can improve by providing more support for third-party security components."

More Cisco Defense Orchestrator Cons →

"When it comes to identifying risk in our environment and prioritizing fixes, it is really about the different priorities within the organization. FireMon is not so smart that it can tell what's important to us. It's up to us to figure that out.""I don't like that it comes with bugs, constant issues, and limited functionality.""The initial setup can take some time, including connecting it and configuring it. It's not something that is easy for anybody to do. There is time and energy required because of the number of systems you have to configure to get it to work properly.""The cost of the solution is pretty expensive. It would be ideal if they could work on their pricing.""FireMon could improve its end-user practices. As an end user, I am just trying to catch up on all the alerts. There are so many, and you still have to go through them and document what was found.""The advanced features are complex in setting up the rules.""It comes as a Linux appliance on a server and we're not a Linux shop, we're more of a Windows shop. It would be great if they could automate or integrate the backups into it and other things through their GUI interface, just to make the management of Linux a little more transparent.""Our firewalls have multiple paths through them and FireMon falls short a little bit because it's not Palo Alto-centric. I don't think FireMon has kept up with where Palo Alto is at. They started out being Check Point-centric for years and they've never really fully embraced the nuances others, like Palo Alto or Fortinet, have. They don't handle a lot of the capabilities and attributes that Palo Alto does yet. They're working on it. They're getting there."

More FireMon Cons →

Pricing and Cost Advice
  • "If you compare to what is available on the market, they are in the same range with respect to pricing."
  • "I work with a lot of clients, and the price or value of the Cisco Defense Orchestrator can vary from one client to another. If you have a lot of Cisco solutions, the price of the Cisco Defense Orchestrator is justified. Whereas if you have some security components from other vendors, such as Check Point or Palo Alto. This solution would be a pretty expensive proposition considering that they don't integrate with them well."
  • More Cisco Defense Orchestrator Pricing and Cost Advice →

  • "FireMon is cheaper than AlgoSec."
  • "Pricing is reasonable."
  • "FireMon is very expensive. I think that they charge a premium. In general, they are very pricey. Compared to their competitors, they cost a little more than the other solutions that we evaluated."
  • "This is an expensive solution. The cost of three modules for three years was approximately one million."
  • "The pricing was very good during our initial year, but they increased it this year a little bit. The price is okay. It is not cheap, but it is still average."
  • More FireMon Pricing and Cost Advice →

    Use our free recommendation engine to learn which Firewall Security Management solutions are best for your needs.
    620,319 professionals have used our research since 2012.
    Questions from the Community
    Top Answer:The most valuable feature is the Intrusion prevention.
    Top Answer:If you compare to what is available on the market, they are in the same range with respect to pricing.
    Top Answer:It's a stable solution, but it could always be improved. They need to work on the user interface. It needs to be improved to make it more user-friendly.
    Top Answer:When it comes to real-time compliance management, it is very good because it is able to compare changes in the configuration as well as giving us a timestamp. It also sends email alerts to our… more »
    Top Answer:The pricing was very good during our initial year, but they increased it this year a little bit. The price is okay. It is not cheap, but it is still average.
    Top Answer:We like that it is able to draw the network's topology. However, because it can't see certain things, it doesn't draw the full story. However, it is still extremely helpful. We also have asymmetric… more »
    Average Words per Review
    Average Words per Review
    Also Known As
    Learn More

    Cisco Defense Orchestrator is a cloud based policy management solution to drive simple and consistent security policy across multiple Cisco security platforms.

    FireMon’s mission is to improve security operations that will in turn lead to better security outcomes. 

    FireMon delivers industry-leading security policy management, cloud security operations, and cybersecurity asset management solutions to over 1,700 enterprises in nearly 70 countries.

    Our security policy management platform is the only real-time solution that reduces firewall and cloud security policy-related risks, manages policy changes, and enforces compliance.

    FireMon’s DisruptOps offering is the only distributed cloud security operations offering that detects and responds to issues in the fast-paced public cloud environments such as AWS and Azure. Our cloud-based Lumeta cybersecurity asset management solution can scan an entire enterprise infrastructure, from on-premises networks to the cloud, to identify everything in the environment and provide valuable insights into how it’s all connected together.

    Learn more at

    Learn more about Cisco Defense Orchestrator
    Learn more about FireMon
    Sample Customers
    Insurance Company of British Columbia, Shawmut
    Convey, MGM Resorts International, Southwest Airlines, Alkami, Costco, Aetna, IBM, Salesforce, Verizon, Wells Fargo
    Top Industries
    Manufacturing Company43%
    Consumer Goods Company14%
    Healthcare Company14%
    Comms Service Provider39%
    Computer Software Company24%
    Financial Services Firm5%
    Insurance Company4%
    Financial Services Firm27%
    Insurance Company10%
    Computer Software Company10%
    Computer Software Company28%
    Comms Service Provider15%
    Financial Services Firm11%
    Energy/Utilities Company5%
    Company Size
    Small Business43%
    Midsize Enterprise21%
    Large Enterprise36%
    Small Business19%
    Midsize Enterprise12%
    Large Enterprise69%
    Small Business13%
    Midsize Enterprise13%
    Large Enterprise74%
    Small Business17%
    Midsize Enterprise17%
    Large Enterprise66%
    Buyer's Guide
    Cisco Defense Orchestrator vs. FireMon
    July 2022
    Find out what your peers are saying about Cisco Defense Orchestrator vs. FireMon and other solutions. Updated: July 2022.
    620,319 professionals have used our research since 2012.

    Cisco Defense Orchestrator is ranked 11th in Firewall Security Management with 3 reviews while FireMon is ranked 3rd in Firewall Security Management with 17 reviews. Cisco Defense Orchestrator is rated 7.6, while FireMon is rated 8.0. The top reviewer of Cisco Defense Orchestrator writes "A simple and centralized way to manage all products". On the other hand, the top reviewer of FireMon writes "We have made massive improvements to firewall management and firewall hygiene". Cisco Defense Orchestrator is most compared with Palo Alto Networks Panorama, AlgoSec, Tufin, Skybox Security Suite and Fortinet FortiGate Cloud, whereas FireMon is most compared with Tufin, AlgoSec, Skybox Security Suite, Palo Alto Networks Panorama and AWS Firewall Manager. See our Cisco Defense Orchestrator vs. FireMon report.

    See our list of best Firewall Security Management vendors.

    We monitor all Firewall Security Management reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.