Try our new research platform with insights from 80,000+ expert users

Cisco Security Cloud Control vs FireMon Security Manager comparison

Cisco and FireMon are both solutions in the Firewall Security Management category. Cisco is ranked #14 with an average rating of 8.0, while FireMon is ranked #3 with an average rating of 7.8. Cisco holds a 1.2% mindshare in Firewall Security Management, compared to FireMon’s 17.5% mindshare. Additionally, 100% of Cisco users are willing to recommend the solution, compared to 87% of FireMon users who would recommend it.
Cisco Security Cloud Control
Read 15 Cisco Security Cloud Control reviews
  • 637 Views
  • 637 Comparison Views
100% willing to recommend
FireMon Security Manager
Read 56 FireMon Security Manager reviews
  • 3,669 Views
  • 3,559 Comparison Views
87% willing to recommend
 

Comparison Buyer's Guide

Download the report
Executive SummaryUpdated on Apr 22, 2025

FireMon Security Manager and Cisco Security Cloud Control compete in the network security management category. FireMon seems to have the upper hand with its strong compliance features and customer support, while Cisco's advantage lies in automation and ease of use.

Features: FireMon Security Manager offers comprehensive firewall auditing, policy review capabilities, and proactive security intelligence. It effectively identifies redundant ACLs and monitors network changes, offering a holistic view of network security. Cisco Security Cloud Control focuses on automation and simplified operations, appealing to users who prioritize management ease and fast threat response.

Room for Improvement: FireMon Security Manager could improve customization in network mapping, enhance traffic path analysis, and integrate with more devices. Users suggest enhancing reporting functionality and offering an easier update process. Cisco Security Cloud Control would benefit from better compatibility with non-Cisco products and improved integration with third-party tools. Enhancements in reporting features and more intuitive change management could improve its utility.

Ease of Deployment and Customer Service: FireMon Security Manager is primarily on-premise with hybrid functionality, known for great customer support. Cisco Security Cloud Control, suited for public and private cloud environments, offers good customer service but could improve interface intuitiveness. Both provide strong support, but FireMon has a slight edge in user satisfaction.

Pricing and ROI: FireMon Security Manager is competitively priced with some concerns about high renewal costs. It provides strong ROI through network security management efficiency. Cisco Security Cloud Control's pricing aligns with its features, possibly premium for companies using other vendor solutions. Users find it provides valuable insights and efficiency, justifying the investment for Cisco-focused environments.

DOWNLOAD THE COMPLETE REPORT
To learn more, read our detailed Cisco Security Cloud Control vs. FireMon Security Manager Report (Updated: July 2025).
Buyer's Guide
Cisco Security Cloud Control vs. FireMon Security Manager
July 2025
Download the complete report
Helped 862,514 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Categories and Ranking

Cisco Security Cloud Control
Ranking in Firewall Security Management
14th
Average Rating
8.2
Number of Reviews
15
Ranking in other categories
No ranking in other categories
FireMon Security Manager
Ranking in Firewall Security Management
3rd
Average Rating
8.2
Reviews Sentiment
7.5
Number of Reviews
56
Ranking in other categories
No ranking in other categories
 

Mindshare comparison

As of July 2025, in the Firewall Security Management category, the mindshare of Cisco Security Cloud Control is 1.2%, down from 1.4% compared to the previous year. The mindshare of FireMon Security Manager is 17.5%, up from 15.8% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Firewall Security Management
 

Featured Reviews

Vivek Balaji - PeerSpot reviewer
Useful guides, excellent support, integration could improve
Cisco Defense Orchestrator has useful guides for the steps that need to follow by users Cisco Defense Orchestrator can improve by providing more support for third-party security components. I have been using Cisco Defense Orchestrator for approximately eight months. The Cisco Defense…
Read full review
Ganesh-Khutwad - PeerSpot reviewer
Rapid policy insights with robust dashboards and cross-vendor automation
FireMon Security Manager is excellent for real-time compliance management. It allows us to quickly retrieve any policy needed for testing and easily analyze it for loopholes. If a loophole exists, FireMon provides comprehensive details within the policy manager. It alerts us to firewall rule additions or changes that violate compliance policies. It supports various firewall platforms, including Checkpoint, Zscaler, Fortinet, Cisco, and AWS, and provides centralized management for all configured policies through a single console. FireMon Security Manager provides many features, like whether my firewall is compatible with required standards such as NTP and SNMP. Each compliance included in our RFPs is shown in the UI of FireMon. It gives robust and clear dashboards, making it easier to understand risks because the policies have ratings showing usage, and the number of hit attacks. It streamlines our compliance reporting processes by providing comprehensive risk and compliance assessments. It offers a range of features, including verification of firewall compatibility with protocols like NTP and SNMP, and detection of signal charges. FireMon effectively addresses all compliance requirements outlined in our RFPs. For instance, it can determine if firewalls or proxies within a stack are configured in Secure Mode or Active-Active mode. FireMon Security Manager enables us to generate reports on all these aspects, ensuring thorough compliance monitoring and documentation. FireMon Security Manager is robust and can help automate firewall policy changes across large multi-vendor enterprise environments. FireMon Security Manager helps automate firewall policy changes across various environments, including on-premises, cloud, hybrid, SASE, and SD-WAN. It also simplifies cleaning up firewall rules in our environment. The time required to accurately create, approve, and deploy firewall policy rules has been reduced. Tasks that took 30 minutes can now be completed in just five minutes using FireMon. FireMon provides immediate visibility into our policies through a robust and clear dashboard, making it easy to identify errors or misconfigurations based on the policy rating.
Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"I like the upgrade feature. That is pretty valuable to me because I have dual ASAs and when I go through CDO it does it for me pretty well. It's all done in the back-end and I don't really have to be involved. I just initiate, pick the image, and I pick when I want it done and it just does it, whether I have a single ASA or have a dual ASA."
"The initial setup was straightforward. We spun up the VM onsite. We generated the key that it needed to talk to the Cloud Orchestrator. After that, as I started adding devices, it was relatively quick and easy."
"We have quite a few Active Stone by pairs. If they fail over... I'll see that there's a change on it and I'll have a look. The only change on it is that now this one is the standby, it took over the active role. I can go into that firewall and find out what happened... and troubleshoot based on that. That's pretty cool too."
"Cisco Defense Orchestrator has useful guides for the steps that need to follow by users."
"If we have a firewall go down, I can hop into CDO, pull the latest configuration off and apply it. That's really good. It helps save time."
"With Cisco Defense Orchestrator, we can manage the complete Cisco Security solution. It provides a simple and centralized way to manage all products."
"The bulk changes feature is definitely the most valuable."
"The ability to do operations on multiple firewalls at once is valuable because it saves time and mental effort. The solution's ability to make bulk changes makes it very convenient to manage things at once on multiple targets."
More Cisco Security Cloud Control pros
"Firewall auditing is very important. We also use the solution for rule traffic analysis, traffic flow discovery and hidden/shadow rules within over 100 firewalls spanning five different brands."
"The most effective feature is the general reporting on compliance."
"The most valuable features are the security assessments and the ability to identify unused rules or objects."
"The most valuable feature is the reporting capability because everything that we do is a result of our being able to query a report, based on our environment and our PCI compliance efforts."
"For the cleanup of firewall rules, it performs really well for us. We utilize it in our regular rule cleanup tasks, several times a year. FireMon is our primary tool when doing that, either by going through its out-of-the-box compliance rules or using it to search for certain things in our rules that we want to prune from our firewalls."
"It provides us with a single pane of glass for our on-prem environment, to see configuration. We have not implemented into the cloud yet. We can search for an object group and see where it lives on any firewall in the enterprise or find security rules, no matter what firewall they're on."
"FireMon is nice and provides 360-degree user views."
"It is a good product. Previously, we were using only spreadsheets to compare the usage, but now with FireMon, we are able to clean up or review the policies to some extent. It is still a work in progress, but we are at a good stage now."
More FireMon Security Manager pros
 

Cons

"The main thing that would useful for us would the logging and monitoring. I have to check it out, to get the beta, because I don't have access to them... I wanted CDO to be a central place so where I could do everything but right now I don't think that's possible. I really don't want to go back and forth between this and FMC. Maybe the logging portion, when I look at it, will give me some similarities."
"When logging into the device, we sort of had problems with it staying in sync. If somebody made a change onsite, it wouldn't do an automatic sync. It would have to wait, as you would have to do a manual sync up."
"I'd like CDO to be the one-stop-shop where we could do all the configurations easily. It would be nice, for ASA upgrades, if we could do them from a central repository and not have to reach out to Cisco. That would be a definite plus."
"Cisco Defense Orchestrator should be made more user-friendly overall."
"I've found dozens of bugs over the year we've been using it. The more I use it for different things, the more problems I find... Most of the problems have to do with the user interface. A lot of thought and work has gone into the back-end component to make the product do what it's intended to do, but the way it is presented for use hasn't gotten nearly as much thought to make it smart and bug-free."
"Cisco Defense Orchestrator should be made more user-friendly overall. Currently, to use it effectively, one must be specific with the rule set that needs to be set up."
"We had some MX devices that were blocking Windows Update from happening. We found out it was a Meraki issue, but it would have been nice if it had been flagged for us: "Hey, these updates are failing because the MX is blocking it." It wasn't a huge problem, but there was a loss of our time as well as the fact that the updates didn't get pushed out... It would have been nice if CDO had let us know that that was an issue."
"Cisco Defense Orchestrator can improve by providing more support for third-party security components."
More Cisco Security Cloud Control cons
"The support response time has room for improvement."
"We are looking for more integration with SIEM and other tools."
"When it comes to documentation, they need to start putting together a basic command manual. With Cisco, you can look up a command and it gives you examples of three or four different ways that command can be used. It tells you how to put it into the GUI and the CLI. FireMon does need to start doing that."
"Our firewalls have multiple paths through them and FireMon falls short a little bit because it's not Palo Alto-centric. I don't think FireMon has kept up with where Palo Alto is at. They started out being Check Point-centric for years and they've never really fully embraced the nuances others, like Palo Alto or Fortinet, have. They don't handle a lot of the capabilities and attributes that Palo Alto does yet. They're working on it. They're getting there."
"When it comes to identifying risk in our environment and prioritizing fixes, it is really about the different priorities within the organization. FireMon is not so smart that it can tell what's important to us. It's up to us to figure that out."
"We're working on implementing FireMon with our ticketing system service now. Having that would be an improvement."
"The advanced features are complex in setting up the rules."
"The stability has been fairly decent, but there have been a few issues. My coworker has had some issues in the past where he has had to work with support."
More FireMon Security Manager cons
 

Pricing and Cost Advice

"It's around £500 per unit for a three-year license."
"After our free trial was done we got a subscription for three years and it was under $3,000 or so. It's part of the EA we already paid for, so I don't know what it would be if it was a la carte."
"It is covered under the CIsco Enterprise License Agreement (ELA). So, it is licensed and ours."
"I work with a lot of clients, and the price or value of the Cisco Defense Orchestrator can vary from one client to another. If you have a lot of Cisco solutions, the price of the Cisco Defense Orchestrator is justified. Whereas if you have some security components from other vendors, such as Check Point or Palo Alto. This solution would be a pretty expensive proposition considering that they don't integrate with them well."
"It is about a $100 per year for an ASA 5506 firewall, and from there it keeps going up if you have a bigger box. For example, the 5516 is $200 to $300 per year."
"If you compare to what is available on the market, they are in the same range with respect to pricing."
"Relative to what it offers, the price is fair."
"We don't license all of the devices in our network, so it does not provide us with a comprehensive visibility of all devices in a hybrid network at this time."
"FireMon is very expensive. I think that they charge a premium. In general, they are very pricey. Compared to their competitors, they cost a little more than the other solutions that we evaluated."
"FireMon is cheaper than AlgoSec."
"Its pricing is good. Compared to others, it is not so expensive."
"We pay for it yearly."
"Regarding additional costs, if you want things like Policy Optimizer, extra features, that's extra."
"Pricing model seems fair."
More FireMon Security Manager pricing and cost advice
report
See which vendors are best for you
Use our free recommendation engine to learn which Firewall Security Management solutions are best for your needs.
See recommendations
862,514 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Computer Software Company
48%
Manufacturing Company
14%
Financial Services Firm
7%
Transportation Company
3%
Computer Software Company
17%
Financial Services Firm
15%
Manufacturing Company
10%
Healthcare Company
6%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
 

Questions from the Community

What needs improvement with Cisco Defense Orchestrator?
Cisco Defense Orchestrator should be made more user-friendly overall. Currently, to use it effectively, one must be specific with the rule set that needs to be set up. Additionally, I suggest impro...
See all answers
What is your primary use case for Cisco Defense Orchestrator?
Our primary use case for Cisco Defense Orchestrator is the automation of playbooks. We primarily use it for this purpose to streamline processes.
See all answers
What advice do you have for others considering Cisco Defense Orchestrator?
Those who want to use Cisco Defense Orchestrator should build their own use case and see if it fits their environment. The most significant benefit for us is the response time because it automates ...
See all answers
What do you like most about FireMon?
I like the Security Manager console where we can see any changes that have been made or pull the results of an assessment and control the policies that we implement.
See all answers
What is your experience regarding pricing and costs for FireMon?
Comparatively, FireMon has a very good price and is below the general competition in cost. I have not seen any additional fees beyond the general contract fees for the usage I have. So, I have not ...
See all answers
What needs improvement with FireMon?
For one company I work with, I use Fortinet, and FireMon is not able to understand the zones that Fortinet uses. Part of that compliance piece does not provide me with the necessary information. An...
See all answers
 

Comparisons

Palo Alto Networks Panorama vs Cisco Security Cloud Control Logo
Palo Alto Networks Panorama vs Cisco Security Cloud Control
Compared 41% of the time
Tufin Orchestration Suite vs Cisco Security Cloud Control Logo
Tufin Orchestration Suite vs Cisco Security Cloud Control
Compared 30% of the time
AlgoSec vs Cisco Security Cloud Control Logo
AlgoSec vs Cisco Security Cloud Control
Compared 28% of the time
More Cisco Security Cloud Control Competitors
Tufin Orchestration Suite vs FireMon Security Manager Logo
Tufin Orchestration Suite vs FireMon Security Manager
Compared 44% of the time
AlgoSec vs FireMon Security Manager Logo
AlgoSec vs FireMon Security Manager
Compared 38% of the time
Skybox Security Suite vs FireMon Security Manager Logo
Skybox Security Suite vs FireMon Security Manager
Compared 8% of the time
Palo Alto Networks Panorama vs FireMon Security Manager Logo
Palo Alto Networks Panorama vs FireMon Security Manager
Compared 3% of the time
RedSeal vs FireMon Security Manager Logo
RedSeal vs FireMon Security Manager
Compared 3% of the time
More FireMon Security Manager Competitors
 

Product Reports

Buyer's Guide
Cisco Security Cloud Control
July 2025
Cisco Security Cloud Control reportDownload Cisco Security Cloud Control product report
Buyer's Guide
FireMon Security Manager
July 2025
FireMon Security Manager reportDownload FireMon Security Manager product report
 

Also Known As

Cisco Defense Orchestrator, CDO
No data available
 

Interactive Demo

Cisco
Demo not available
FireMon
 

Overview

Cisco Security Cloud Control offers centralized management, real-time visibility, and AI-driven automation for on-premises and cloud environments, simplifying scalability and deployment.

With a unified approach, Cisco Security Cloud Control enhances security posture by providing cross-platform insights across Cisco's ecosystem. It accelerates threat detection and optimizes policy enforcement through a blend of AI automation and natural language querying capabilities. The intuitive platform serves multiple devices, enabling comprehensive management of Secure Firewall, Secure Access, and other services with guidance from the Cisco AI Assistant. It also includes an AI Operations feature that identifies critical issues and provides real-time insights, enhancing response times while a policy analyzer improves security hygiene by detecting and closing security gaps. Its automation minimizes manual tasks, secures cloud-stored configurations, and supports two-factor authentication. However, it could benefit from improvements in navigation clarity, bulk change handling, and expanded third-party integrations.

What are the key features of Cisco Security Cloud Control?
  • Centralized Device Control: Streamlines management with bulk policy upgrades and automation.
  • AI-Driven Automation: Reduces manual tasks and enhances threat detection.
  • Network Visibility: Provides insights with valuable reporting and intrusion prevention.
  • Intuitive Configuration: Enables easy policy adjustments and restoration of secure connections.
What benefits can users anticipate?
  • Increased Efficiency: Reduces operational overhead with centralized management.
  • Improved Security: Enhances protection through automated policy enforcement and AI insights.
  • Time Savings: Simplifies management of multiple devices in cloud and on-premises environments.
  • Scalability: Supports growth with ease of deployment and policy consistency.

Industries implementing Cisco Security Cloud Control leverage its capabilities for tasks ranging from firewall management to intrusion prevention. Enterprises use it to streamline policy management, automate configurations, and integrate Cisco devices with cloud strategies, benefiting from simplified security orchestration and network segmentation.

Cisco

The increasing complexity of networks, driven by the constant influx of new devices, applications, and cloud services, presents a daunting challenge for managing firewall policies and rules. A typical enterprise environment has millions of rules, and just one simple misconfiguration can lead to devastating consequences like compliance violations, outages, and data breaches. 

FireMon’s Security Manager is a purpose-built network security policy management (NSPM) platform that automates the management of firewall and cloud security policies to eliminate policy-related risk, accurately and quickly change rules, and meet internal and external compliance requirements.

  • Reduce Risk Manage risk with real-time visibility and control
  • Manage Change Avoid misconfigurations, accelerate business, and improve security
  • Enforce and Maintain Compliance Avoid violations, avoid risk, and avoid fines
FireMon
 

Sample Customers

Insurance Company of British Columbia, Shawmut
Convey, MGM Resorts International, Southwest Airlines, Alkami, Costco, Aetna, IBM, Verizon, Wells Fargo
Buyer's Guide
Cisco Security Cloud Control vs. FireMon Security Manager
July 2025
Free Report: Cisco Security Cloud Control vs. FireMon Security Manager
Find out what your peers are saying about Cisco Security Cloud Control vs. FireMon Security Manager and other solutions. Updated: July 2025.
DOWNLOAD NOW
862,514 professionals have used our research since 2012.
See our Cisco Security Cloud Control vs. FireMon Security Manager report.
See our list of best Firewall Security Management vendors.

We monitor all Firewall Security Management reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.