Cisco Security Cloud Control vs Skybox Security Suite comparison

Cisco Security Cloud Control vs. Skybox Security Suite

Download the complete report

Helped 859,579 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Categories and Ranking

Cisco Security Cloud Control

Ranking in Firewall Security Management

14th

Average Rating

8.2

Number of Reviews

Ranking in other categories

No ranking in other categories

Skybox Security Suite

Ranking in Firewall Security Management

6th

Average Rating

7.6

Reviews Sentiment

6.8

Number of Reviews

Ranking in other categories

Vulnerability Management (30th)

Mindshare comparison

As of June 2025, in the Firewall Security Management category, the mindshare of Cisco Security Cloud Control is 1.1%, down from 1.3% compared to the previous year. The mindshare of Skybox Security Suite is 10.8%, up from 10.7% compared to the previous year. It is calculated based on PeerSpot user engagement data.

Firewall Security Management

Featured Reviews

Vivek Balaji

Technical Director - Cyber Security at a comms service provider with 1-10 employees

Useful guides, excellent support, integration could improve

Cisco Defense Orchestrator has useful guides for the steps that need to follow by users Cisco Defense Orchestrator can improve by providing more support for third-party security components. I have been using Cisco Defense Orchestrator for approximately eight months. The Cisco Defense…

Read full review

NenadMijatovic

Director of Sales at S4E Serbia

Efficient in vulnerability management, stable and easy to use

Vulnerability management is the most valuable feature because it lets you focus on the most critical vulnerabilities. That's the important thing. Here in Serbia, there are not so many companies that have too many firewalls inside one company. So, they usually don't buy this model for Firewall Assurance unless there is some compliance. So you can prove that your firewalls are compliant. So, that model is not so important here in Serbia. It's for bigger companies. So, they usually buy network assurance to build the model of the network and vulnerability management to focus on the most important vulnerabilities. Moreover, Skybox can collect data for many vendors. From the endpoint protection vendors to the network equipment vendors to other security vendors. So, it supports more than one hundred vendors to collect data from them.

Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Pros

"We have quite a few Active Stone by pairs. If they fail over... I'll see that there's a change on it and I'll have a look. The only change on it is that now this one is the standby, it took over the active role. I can go into that firewall and find out what happened... and troubleshoot based on that. That's pretty cool too."

"When we're looking to the policies, it identifies the shadow rules. It notifies us about anything that will supersede other rules."

"The most valuable feature is that you can push one policy or one rule out to several devices at a time."

"The most valuable feature is the automation, as it reduces user intervention and allows us to focus on other tasks."

"The bulk changes feature is definitely the most valuable."

"For this product, they are very uncharacteristically interested in resolving whatever issue the customer reports. They're really attentive, and they address whatever we bring up as quickly as they can. That's been a very positive aspect of the product."

"We use a lot of image upgrades. We take some 20 devices and then we update everything at once, including the policies. We apply policies for groups. For certain groups, like anti-viruses, we send out policies and apply them to every single device. It's really easy and simple."

"If we have a firewall go down, I can hop into CDO, pull the latest configuration off and apply it. That's really good. It helps save time."

More Cisco Security Cloud Control pros

"The features that I have found most valuable with Skybox Security Suite, and this is because I work on the security side, are the firewall assurance, the change manager and the vulnerability control. These three features are the most impressive from Skybox Security."

"The solution offers very nice dashboards and they've recently added a very good Java-based web interface."

"The most valuable feature is firewall management."

"Key features for us include the firewall change audit every week. Also, being able to track firewall ACL usage, so that we can produce semiannual reports on ACL usage and shadowed and redundant rules on the firewall."

"Skybox deployment is simple, and it's very useful."

"The revalidation and policy recertifications are most valuable."

"Correlates logs and threats and prioritizes; provides network maps;p provides change result context and resulting vulnerability."

"Skybox Security Suite was a very good tool for my organization."

More Skybox Security Suite pros

Cons

"CDO doesn't have a report, an official report that I can check daily. It has another module called FTD, but it doesn't have that specifically for ASA. In the reporting, there are a lot of things that aren't there. There is also room for improvement in the daily monitoring."

"I've found dozens of bugs over the year we've been using it. The more I use it for different things, the more problems I find... Most of the problems have to do with the user interface. A lot of thought and work has gone into the back-end component to make the product do what it's intended to do, but the way it is presented for use hasn't gotten nearly as much thought to make it smart and bug-free."

"It should have more features to manage FirePOWER appliances."

"We had some MX devices that were blocking Windows Update from happening. We found out it was a Meraki issue, but it would have been nice if it had been flagged for us: "Hey, these updates are failing because the MX is blocking it." It wasn't a huge problem, but there was a loss of our time as well as the fact that the updates didn't get pushed out... It would have been nice if CDO had let us know that that was an issue."

"The main thing that would useful for us would the logging and monitoring. I have to check it out, to get the beta, because I don't have access to them... I wanted CDO to be a central place so where I could do everything but right now I don't think that's possible. I really don't want to go back and forth between this and FMC. Maybe the logging portion, when I look at it, will give me some similarities."

"They need to work on the user interface. It needs to be improved to make it more user-friendly."

"They can centralize all products and provide a correlation about an incident and the response. They can also provide an on-premises solution. Currently, Cisco Defense Orchestrator is just for cloud deployments, not for on-premises deployments. Customers have to manage it on the cloud. We are based in Vietnam, and most of the customers here prefer to have on-premises deployments. Customers, especially from banking and government sectors, do not prefer to do anything on the cloud. Some of the small enterprises use the cloud."

"I'd like CDO to be the one-stop-shop where we could do all the configurations easily. It would be nice, for ASA upgrades, if we could do them from a central repository and not have to reach out to Cisco. That would be a definite plus."

More Cisco Security Cloud Control cons

"The initial setup with Skybox Security is hard. You need one or two strong security engineers on your team."

"The most recent update was not tested with all of the vendors before it was released, so some of the features are misbehaving."

"The support could be improved."

"There is room for improvement in the technical support."

"They are not satisfied with the complexity of the solution and the price."

"There is room for improvement in pricing. It would be better, especially if a customer bought all four modules."

"I've had issues with licensing where, when they were expiring and I asked for the updated licenses, I would the wrong ones. I think their process needs to be straightened out a little bit - I don't know if they fixed it already, it has been awhile. It wasn't as straightforward as it could have been."

"If anything could be improved it would be staying on top of the collector scripts, but I understand that's a very tough challenge."

More Skybox Security Suite cons

Pricing and Cost Advice

"After our free trial was done we got a subscription for three years and it was under $3,000 or so. It's part of the EA we already paid for, so I don't know what it would be if it was a la carte."

"It is about a $100 per year for an ASA 5506 firewall, and from there it keeps going up if you have a bigger box. For example, the 5516 is $200 to $300 per year."

"If you compare to what is available on the market, they are in the same range with respect to pricing."

"I work with a lot of clients, and the price or value of the Cisco Defense Orchestrator can vary from one client to another. If you have a lot of Cisco solutions, the price of the Cisco Defense Orchestrator is justified. Whereas if you have some security components from other vendors, such as Check Point or Palo Alto. This solution would be a pretty expensive proposition considering that they don't integrate with them well."

"It is covered under the CIsco Enterprise License Agreement (ELA). So, it is licensed and ours."

"It's around £500 per unit for a three-year license."

"The solution is based on a subscription model for annual licenses."

"Currently, the licensing costs me about $300 USD for the year. This is a huge amount for my environment."

"I think for the cost, what we got definitely is worth it. The only caution I would give is that whenever you license for Firewall Assurance at the same time, for some weird reason, you have to get one Network Assurance license, just to manage one firewall. That's a little bit of overkill. But otherwise, in general, the pricing is fairly okay."

"Pricing is on the higher side. In terms of licensing, you should buy the complete suite rather than buying only the Change Manager. I think Change Manager with Vulnerability Control is something that would be interesting to look at."

"The price is not expensive."

"The price of the Skybox Security Suite can be expensive."

"The pricing is high, and the licensing model needs more flexibility."

"I rate the pricing two on a scale of one to ten, where one is very expensive, and ten is cost-effective."

More Skybox Security Suite pricing and cost advice

See which vendors are best for you

Use our free recommendation engine to learn which Firewall Security Management solutions are best for your needs.

See recommendations

859,579 professionals have used our research since 2012.

Top Industries

By visitors reading reviews

Computer Software Company

49%

Manufacturing Company

12%

Financial Services Firm

Legal Firm

Financial Services Firm

18%

Computer Software Company

17%

Manufacturing Company

10%

Energy/Utilities Company

Company Size

By reviewers

Large Enterprise

Midsize Enterprise

Small Business

Questions from the Community

What needs improvement with Cisco Defense Orchestrator?

Cisco Defense Orchestrator should be made more user-friendly overall. Currently, to use it effectively, one must be specific with the rule set that needs to be set up. Additionally, I suggest impro...

What is your primary use case for Cisco Defense Orchestrator?

Our primary use case for Cisco Defense Orchestrator is the automation of playbooks. We primarily use it for this purpose to streamline processes.

What advice do you have for others considering Cisco Defense Orchestrator?

Those who want to use Cisco Defense Orchestrator should build their own use case and see if it fits their environment. The most significant benefit for us is the response time because it automates ...

What do you like most about Skybox Security Suite?

Overall, the tool has helped us reduce risks. If any step is missing, it's easier for my team or engineers to identify it. The tool provides accurate recommendations based on the data. Its integrat...

What is your experience regarding pricing and costs for Skybox Security Suite?

From a commercial perspective, AlgoSec is more expensive compared to Skybox Security Suite. Skybox Security Suite is cost-effective.

What needs improvement with Skybox Security Suite?

The dashboard's UI is not interesting; it is quite normal. It would be better if something more attractive or similar useful information found in AlgoSec was available.

Palo Alto Networks Panorama vs Cisco Security Cloud Control

Comparisons

Compared 40% of the time

Tufin Orchestration Suite vs Cisco Security Cloud Control

Compared 31% of the time

AlgoSec vs Cisco Security Cloud Control

Compared 29% of the time

More Cisco Security Cloud Control Competitors

AlgoSec vs Skybox Security Suite

Compared 32% of the time

Tufin Orchestration Suite vs Skybox Security Suite

Compared 30% of the time

FireMon Security Manager vs Skybox Security Suite

Compared 13% of the time

RedSeal vs Skybox Security Suite

Compared 5% of the time

Qualys VMDR vs Skybox Security Suite

Compared 3% of the time

More Skybox Security Suite Competitors

Product Reports

Cisco Security Cloud Control

Download Cisco Security Cloud Control product report

Skybox Security Suite

Download Skybox Security Suite product report

Also Known As

Cisco Defense Orchestrator, CDO

No data available

Interactive Demo

Cisco

Demo not available

Tufin

Overview

Cisco Security Cloud Control offers centralized management, real-time visibility, and AI-driven automation for on-premises and cloud environments, simplifying scalability and deployment.

With a unified approach, Cisco Security Cloud Control enhances security posture by providing cross-platform insights across Cisco's ecosystem. It accelerates threat detection and optimizes policy enforcement through a blend of AI automation and natural language querying capabilities. The intuitive platform serves multiple devices, enabling comprehensive management of Secure Firewall, Secure Access, and other services with guidance from the Cisco AI Assistant. It also includes an AI Operations feature that identifies critical issues and provides real-time insights, enhancing response times while a policy analyzer improves security hygiene by detecting and closing security gaps. Its automation minimizes manual tasks, secures cloud-stored configurations, and supports two-factor authentication. However, it could benefit from improvements in navigation clarity, bulk change handling, and expanded third-party integrations.

What are the key features of Cisco Security Cloud Control?

Centralized Device Control: Streamlines management with bulk policy upgrades and automation.
AI-Driven Automation: Reduces manual tasks and enhances threat detection.
Network Visibility: Provides insights with valuable reporting and intrusion prevention.
Intuitive Configuration: Enables easy policy adjustments and restoration of secure connections.

What benefits can users anticipate?

Increased Efficiency: Reduces operational overhead with centralized management.
Improved Security: Enhances protection through automated policy enforcement and AI insights.
Time Savings: Simplifies management of multiple devices in cloud and on-premises environments.
Scalability: Supports growth with ease of deployment and policy consistency.

Industries implementing Cisco Security Cloud Control leverage its capabilities for tasks ranging from firewall management to intrusion prevention. Enterprises use it to streamline policy management, automate configurations, and integrate Cisco devices with cloud strategies, benefiting from simplified security orchestration and network segmentation.

Cisco

Skybox Security Suite provides comprehensive tools for network and firewall compliance, vulnerability management, and change management, with a focus on risk reduction and network optimization.

Skybox Security Suite supports over 130 vendors with massive scalability and seamless integration, notably with Nessus and Qualys. Its features include network path analysis and offline attack simulation, which enhance management effectiveness. Despite its robust offering, improvements are needed in its UI, web interface, reporting detail, and customization. Automation, orchestration, and device policy provisioning require better support, and integration with tools like Rapid7 could be improved. Enhancements in firewall configuration checks, cloud connectivity, pricing, and marketing awareness are also called for, alongside a transition from Java GUI to a consistent web-based system.

What Are Key Features of Skybox Security Suite?

Network Assurance: Enhances visibility and optimization of network paths.
Firewall Assurance: Facilitates firewall rule set audits for compliance.
Vulnerability Management: Offers path detection and risk prioritization.
Compliance Management: Ensures adherence to standards like PCI.
Change Management: Simplifies management across extensive infrastructures.

What Benefits and ROI Can Users Expect?

Scalability: Supports numerous vendors and large-scale deployments.
Integration: Seamlessly connects with tools like Nessus and Qualys.
Risk Reduction: Improves security across network infrastructures.
Simplified Management: User-friendly interface and reporting tools enhance usability.
Network Optimization: Streamlines processes and improves performance.

Skybox Security Suite is commonly used in industries requiring strict compliance like finance and healthcare. Firms employ it for firewall audits, enhancing network visibility, and managing configurations against standards such as PCI, ensuring security and policy compliance across expansive networks.

Tufin

Sample Customers

Insurance Company of British Columbia, Shawmut

ADP, Blue Cross Blue Shield, BT, USAID, Delta Dental, EDF Energy, EMC, HSBC, Johnson & Johnson

Cisco Security Cloud Control vs. Skybox Security Suite