Try our new research platform with insights from 80,000+ expert users

Cisco Security Cloud Control vs Tufin Orchestration Suite comparison

Cisco and Tufin are both solutions in the Firewall Security Management category. Cisco is ranked #14 with an average rating of 8.0, while Tufin is ranked #2 with an average rating of 8.0. Cisco holds a 1.5% mindshare in Firewall Security Management, compared to Tufin’s 22.6% mindshare. Additionally, 100% of Cisco users are willing to recommend the solution, compared to 91% of Tufin users who would recommend it.
Cisco Security Cloud Control
Read 15 Cisco Security Cloud Control reviews
  • 621 Views
  • 621 Comparison Views
100% willing to recommend
Tufin Orchestration Suite
Read 182 Tufin Orchestration Suite reviews
  • 5,835 Views
  • 5,427 Comparison Views
91% willing to recommend
 

Comparison Buyer's Guide

Download the report
Executive SummaryUpdated on Jul 27, 2025

Tufin Orchestration Suite and Cisco Security Cloud Control are key players in firewall management and network security. Tufin is favored for its flexibility across multiple environments, while Cisco dominates within its ecosystem due to seamless integration.

Features: Tufin Orchestration Suite excels in firewall management with SecureTrack and SecureChange, offering visibility and workflow automation. It is also robust in compliance reporting, ideal for complex setups. Cisco Security Cloud Control provides centralized management through automation and integration with Cisco products, enhancing threat response and network oversight.

Room for Improvement: Tufin faces challenges with integration into newer technologies and calls for a more intuitive interface. Its topology features also need enhancement for wider usability. Cisco Security Cloud Control struggles with bulk change capabilities and an unintuitive user interface compared to traditional tools like ASDM. Its integration with non-Cisco products is another area for growth.

Ease of Deployment and Customer Service: Tufin offers deployment across on-premises, hybrid, and private clouds, supported by commendable customer service for handling complex scenarios globally. Cisco provides similar deployment flexibility and excels in customer service within Cisco ecosystems, swiftly addressing technical issues.

Pricing and ROI: Tufin Orchestration Suite is often seen as expensive due to its licensing based on firewall management, posing challenges for smaller organizations despite notable ROI from operational efficiencies. Cisco Security Cloud Control shares similar pricing concerns, particularly outside Cisco environments, but offers substantial value for operations within its product suite.

DOWNLOAD THE COMPLETE REPORT
To learn more, read our detailed Cisco Security Cloud Control vs. Tufin Orchestration Suite Report (Updated: September 2025).
Buyer's Guide
Cisco Security Cloud Control vs. Tufin Orchestration Suite
September 2025
Download the complete report
Helped 869,952 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Categories and Ranking

Cisco Security Cloud Control
Ranking in Firewall Security Management
14th
Average Rating
8.2
Number of Reviews
15
Ranking in other categories
No ranking in other categories
Tufin Orchestration Suite
Ranking in Firewall Security Management
2nd
Average Rating
8.0
Reviews Sentiment
7.2
Number of Reviews
182
Ranking in other categories
No ranking in other categories
 

Mindshare comparison

As of October 2025, in the Firewall Security Management category, the mindshare of Cisco Security Cloud Control is 1.5%, up from 1.3% compared to the previous year. The mindshare of Tufin Orchestration Suite is 22.6%, up from 21.0% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Firewall Security Management Market Share Distribution
ProductMarket Share (%)
Tufin Orchestration Suite22.6%
Cisco Security Cloud Control1.5%
Other75.9%
Firewall Security Management
 

Featured Reviews

Vivek Balaji - PeerSpot reviewer
Useful guides, excellent support, integration could improve
Cisco Defense Orchestrator has useful guides for the steps that need to follow by users Cisco Defense Orchestrator can improve by providing more support for third-party security components. I have been using Cisco Defense Orchestrator for approximately eight months. The Cisco Defense…
Read full review
MithatBulut - PeerSpot reviewer
New employees can quickly grasp the various IPs, devices, and the network's logical and physical
Tufin is primarily used to orchestrate and manage network traffic and firewall devices. It is specifically useful for implementing firewall policies and handling requests from clients that require policy updates or changes Tufin simplifies understanding network topology. New employees can quickly…
Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"The most valuable feature is the automation, as it reduces user intervention and allows us to focus on other tasks."
"With Cisco Defense Orchestrator, we can manage the complete Cisco Security solution. It provides a simple and centralized way to manage all products."
"The ability to see the uptimes on the different VPNs that we have configured for site-to-site."
"The most valuable feature is that you can push one policy or one rule out to several devices at a time."
"If our server is blocked, this solution shows us why it is blocked and allows us to update the network routing."
"The most valuable feature is the Intrusion prevention."
"I like the upgrade feature. That is pretty valuable to me because I have dual ASAs and when I go through CDO it does it for me pretty well. It's all done in the back-end and I don't really have to be involved. I just initiate, pick the image, and I pick when I want it done and it just does it, whether I have a single ASA or have a dual ASA."
"The ability to do operations on multiple firewalls at once is valuable because it saves time and mental effort. The solution's ability to make bulk changes makes it very convenient to manage things at once on multiple targets."
More Cisco Security Cloud Control pros
"It provides a real-time sense of how the policies are configured and whether there are any shadow rules. Another great thing is that it provides greater reporting based on how the rules have been set up."
"The designer gives the ability to know where to add a rule, or if the rule is already in place."
"Valuable features include a central pane of management for all the firewalls and the ability to do queries on the rules and understand in which files the rules are configured."
"The time that we require to makes changes has been reduced from weeks to days."
"The solution helps us meet our compliance needs."
"The stability is bulletproof."
"The visibility is huge. In order to figure out what was going on previously, we would have to pull stuff out of firewalls and put them in spreadsheets, then do sorts. Now, it's all right there in Tufin. We can write reports to look for what we need, ad hoc searches to find object groups, and know which firewalls are on. This was almost impossible to do previously."
"I like the deployment and management of this solution."
More Tufin Orchestration Suite pros
 

Cons

"Cisco Defense Orchestrator should be made more user-friendly overall. Currently, to use it effectively, one must be specific with the rule set that needs to be set up."
"We had some MX devices that were blocking Windows Update from happening. We found out it was a Meraki issue, but it would have been nice if it had been flagged for us: "Hey, these updates are failing because the MX is blocking it." It wasn't a huge problem, but there was a loss of our time as well as the fact that the updates didn't get pushed out... It would have been nice if CDO had let us know that that was an issue."
"CDO doesn't have a report, an official report that I can check daily. It has another module called FTD, but it doesn't have that specifically for ASA. In the reporting, there are a lot of things that aren't there. There is also room for improvement in the daily monitoring."
"They can centralize all products and provide a correlation about an incident and the response. They can also provide an on-premises solution. Currently, Cisco Defense Orchestrator is just for cloud deployments, not for on-premises deployments. Customers have to manage it on the cloud. We are based in Vietnam, and most of the customers here prefer to have on-premises deployments. Customers, especially from banking and government sectors, do not prefer to do anything on the cloud. Some of the small enterprises use the cloud."
"The dashboard needs to be more customizable to provide better reporting for our network."
"If I make a change locally to the firewall, CDO gives an alarm or an error message and says there's a change in compliance: "The firewall has this configuration but the last time it was compiled it had that configuration." That view of new changes versus the old could be better... I had to log in manually, locally on the firewall, to check which version, which configuration was actually running. I couldn't see it in CDO."
"I've found dozens of bugs over the year we've been using it. The more I use it for different things, the more problems I find... Most of the problems have to do with the user interface. A lot of thought and work has gone into the back-end component to make the product do what it's intended to do, but the way it is presented for use hasn't gotten nearly as much thought to make it smart and bug-free."
"When logging into the device, we sort of had problems with it staying in sync. If somebody made a change onsite, it wouldn't do an automatic sync. It would have to wait, as you would have to do a manual sync up."
More Cisco Security Cloud Control cons
"I would like to see more configuration options on next-generation firewalls, defining possible standards for devices."
"Our project is running on Riverbed for SDN. I don't know if Tufin can integrate with Riverbed. Other than that, I have no issues with this product."
"The reports could be easier to read and more customizable. Also, capturing some of the different versions, and being able to dig through them could be a bit better."
"The firewall management is complex for beginners."
"A big improvement would be on the USP policy. If we could use Palo Alto to take those zone names and auto import them into the policy, then just do the policy based on the zone names instead of having to put in every single subnet."
"There was some complexity during the initial setup"
"I needed more help getting the product to work in the lab."
"Currently, we have to get different data from different sections of the site. It would be nice if it was all combined into one."
More Tufin Orchestration Suite cons
 

Pricing and Cost Advice

"It's around £500 per unit for a three-year license."
"If you compare to what is available on the market, they are in the same range with respect to pricing."
"It is about a $100 per year for an ASA 5506 firewall, and from there it keeps going up if you have a bigger box. For example, the 5516 is $200 to $300 per year."
"I work with a lot of clients, and the price or value of the Cisco Defense Orchestrator can vary from one client to another. If you have a lot of Cisco solutions, the price of the Cisco Defense Orchestrator is justified. Whereas if you have some security components from other vendors, such as Check Point or Palo Alto. This solution would be a pretty expensive proposition considering that they don't integrate with them well."
"After our free trial was done we got a subscription for three years and it was under $3,000 or so. It's part of the EA we already paid for, so I don't know what it would be if it was a la carte."
"It is covered under the CIsco Enterprise License Agreement (ELA). So, it is licensed and ours."
"Our licensing costs are pretty low. We were grandfathered in, so we are at about $35,000 per year."
"I'm saving 20 man-hours a week, so I am seeing some ROI."
"The solution is more reasonably priced than its competitors."
"The solution has helped us to reduce the time it takes to make changes. With Tufin, it takes ten to 15 minutes. Before, it was 30 minutes or more."
"Licensing is available in both perpetual and subscription models, and it appears to be good for our scalable environments."
"There is a permanent license for devices, but it's not relative to a device itself. Once you purchase 10 licenses for virtual appliances or virtual context, you can put them into different virtual firewalls, but you can reuse these licenses for other devices if you don't need them for the old ones."
"Tuffin is expensive, and we have to explain to our customers the benefit for them to purchase. If we explain the benefits in the correct way they do not mind the price. We typically do costing for the customer for three to five years. We make the general total cost of ownership at the beginning of a project for our customers."
"Tufin and AlgoSec were pretty much in the competitive price range, but this one provided us better integration into the Check Point environment."
More Tufin Orchestration Suite pricing and cost advice
report
See which vendors are best for you
Use our free recommendation engine to learn which Firewall Security Management solutions are best for your needs.
See recommendations
869,952 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Computer Software Company
46%
Manufacturing Company
12%
Financial Services Firm
6%
Performing Arts
4%
Financial Services Firm
17%
Computer Software Company
12%
Manufacturing Company
11%
Retailer
6%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
By reviewers
Company SizeCount
Small Business6
Midsize Enterprise3
Large Enterprise6
By reviewers
Company SizeCount
Small Business29
Midsize Enterprise13
Large Enterprise152
 

Questions from the Community

What needs improvement with Cisco Defense Orchestrator?
Cisco Defense Orchestrator should be made more user-friendly overall. Currently, to use it effectively, one must be specific with the rule set that needs to be set up. Additionally, I suggest impro...
See all answers
What is your primary use case for Cisco Defense Orchestrator?
Our primary use case for Cisco Defense Orchestrator is the automation of playbooks. We primarily use it for this purpose to streamline processes.
See all answers
What advice do you have for others considering Cisco Defense Orchestrator?
Those who want to use Cisco Defense Orchestrator should build their own use case and see if it fits their environment. The most significant benefit for us is the response time because it automates ...
See all answers
What needs improvement with Tufin SecureCloud?
Tufin Orchestration Suite ( /products/tufin-orchestration-suite-reviews ) is not commonly used in Thailand due to a lack of local support, and many customers are switching to AlgoSec or other vendo...
See all answers
What is your primary use case for Tufin SecureCloud?
I have primarily used Skybox and AlgoSec ( /products/algosec-reviews ). I have also interacted with FireMon for compiling. However, I am not currently working with ACA, and I don't have any project...
See all answers
What advice do you have for others considering Tufin SecureCloud?
There is potential for improvement in explaining the analytics in the dashboard for Tufin Orchestration Suite. Tufin Orchestration Suite does provide good monitoring; however, interpreting the grap...
See all answers
 

Comparisons

Palo Alto Networks Panorama vs Cisco Security Cloud Control Logo
Palo Alto Networks Panorama vs Cisco Security Cloud Control
Compared 27% of the time
AlgoSec vs Cisco Security Cloud Control Logo
AlgoSec vs Cisco Security Cloud Control
Compared 22% of the time
Cisco Secure Firewall Management Center vs Cisco Security Cloud Control Logo
Cisco Secure Firewall Management Center vs Cisco Security Cloud Control
Compared 19% of the time
More Cisco Security Cloud Control Competitors
AlgoSec vs Tufin Orchestration Suite Logo
AlgoSec vs Tufin Orchestration Suite
Compared 36% of the time
FireMon Security Manager vs Tufin Orchestration Suite Logo
FireMon Security Manager vs Tufin Orchestration Suite
Compared 33% of the time
Skybox Security Suite vs Tufin Orchestration Suite Logo
Skybox Security Suite vs Tufin Orchestration Suite
Compared 13% of the time
Palo Alto Networks Panorama vs Tufin Orchestration Suite Logo
Palo Alto Networks Panorama vs Tufin Orchestration Suite
Compared 4% of the time
AWS Firewall Manager vs Tufin Orchestration Suite Logo
AWS Firewall Manager vs Tufin Orchestration Suite
Compared 1% of the time
More Tufin Orchestration Suite Competitors
 

Product Reports

Buyer's Guide
Cisco Security Cloud Control
October 2025
Cisco Security Cloud Control reportDownload Cisco Security Cloud Control product report
Buyer's Guide
Tufin Orchestration Suite
September 2025
Tufin Orchestration Suite reportDownload Tufin Orchestration Suite product report
 

Also Known As

Cisco Defense Orchestrator, CDO
Tufin SecureCloud
 

Interactive Demo

Cisco
Demo not available
Tufin
 

Overview

Cisco Security Cloud Control offers centralized management, real-time visibility, and AI-driven automation for on-premises and cloud environments, simplifying scalability and deployment.

With a unified approach, Cisco Security Cloud Control enhances security posture by providing cross-platform insights across Cisco's ecosystem. It accelerates threat detection and optimizes policy enforcement through a blend of AI automation and natural language querying capabilities. The intuitive platform serves multiple devices, enabling comprehensive management of Secure Firewall, Secure Access, and other services with guidance from the Cisco AI Assistant. It also includes an AI Operations feature that identifies critical issues and provides real-time insights, enhancing response times while a policy analyzer improves security hygiene by detecting and closing security gaps. Its automation minimizes manual tasks, secures cloud-stored configurations, and supports two-factor authentication. However, it could benefit from improvements in navigation clarity, bulk change handling, and expanded third-party integrations.

What are the key features of Cisco Security Cloud Control?
  • Centralized Device Control: Streamlines management with bulk policy upgrades and automation.
  • AI-Driven Automation: Reduces manual tasks and enhances threat detection.
  • Network Visibility: Provides insights with valuable reporting and intrusion prevention.
  • Intuitive Configuration: Enables easy policy adjustments and restoration of secure connections.
What benefits can users anticipate?
  • Increased Efficiency: Reduces operational overhead with centralized management.
  • Improved Security: Enhances protection through automated policy enforcement and AI insights.
  • Time Savings: Simplifies management of multiple devices in cloud and on-premises environments.
  • Scalability: Supports growth with ease of deployment and policy consistency.

Industries implementing Cisco Security Cloud Control leverage its capabilities for tasks ranging from firewall management to intrusion prevention. Enterprises use it to streamline policy management, automate configurations, and integrate Cisco devices with cloud strategies, benefiting from simplified security orchestration and network segmentation.

Cisco

Tufin enables organizations to automate their security policy visibility, risk management, provisioning and compliance across their multi-vendor, hybrid environment. Customers gain visibility and control across their network, ensure continuous compliance with security standards and embed security enforcement into workflows and development pipelines. 

Tufin
 

Sample Customers

Insurance Company of British Columbia, Shawmut
3M, AT&T, Blue Cross Blue Shield, BNP Parabas, ConocoPhillips, Deutsche Bank, GE, IBM, Pfizer, United States Postal Service 
Buyer's Guide
Cisco Security Cloud Control vs. Tufin Orchestration Suite
September 2025
Free Report: Cisco Security Cloud Control vs. Tufin Orchestration Suite
Find out what your peers are saying about Cisco Security Cloud Control vs. Tufin Orchestration Suite and other solutions. Updated: September 2025.
DOWNLOAD NOW
869,952 professionals have used our research since 2012.
See our Cisco Security Cloud Control vs. Tufin Orchestration Suite report.
See our list of best Firewall Security Management vendors.

We monitor all Firewall Security Management reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.