Try our new research platform with insights from 80,000+ expert users

FireMon Security Manager vs ManageEngine Firewall Analyzer vs Skybox Security Suite comparison

FireMon and ManageEngine are both solutions in the Firewall Security Management category. FireMon is ranked #4 with an average rating of 8.0, while ManageEngine is ranked #11 with an average rating of 9.0. FireMon holds a 17.8% mindshare in Firewall Security Management, compared to ManageEngine’s 3.3% mindshare. Additionally, 87% of FireMon users are willing to recommend the solution, compared to 92% of ManageEngine users who would recommend it.
FireMon Security Manager
Read 56 FireMon Security Manager reviews
  • 3,429 Views
  • 3,326 Comparison Views
87% willing to recommend
ManageEngine Firewall Analyzer
Read 9 ManageEngine Firewall Analyzer reviews
  • 711 Views
  • 704 Comparison Views
92% willing to recommend
Skybox Security Suite
Read 37 Skybox Security Suite reviews
  • 3,138 Views
  • 2,102 Comparison Views
83% willing to recommend
 

Comparison Buyer's Guide

Download the report
Executive Summary
We performed a comparison between FireMon Security Manager, ManageEngine Firewall Analyzer, and Skybox Security Suite based on real PeerSpot user reviews.

Find out what your peers are saying about AlgoSec, Tufin, Palo Alto Networks and others in Firewall Security Management.

DOWNLOAD THE COMPLETE REPORT
To learn more, read our detailed Firewall Security Management Report (Updated: August 2025).
Buyer's Guide
Firewall Security Management
August 2025
Download the complete report
Helped 867,821 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Mindshare comparison

As of September 2025, in the Firewall Security Management category, the mindshare of FireMon Security Manager is 17.8%, up from 15.8% compared to the previous year. The mindshare of ManageEngine Firewall Analyzer is 3.3%, up from 3.1% compared to the previous year. The mindshare of Skybox Security Suite is 9.5%, down from 10.8% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Firewall Security Management Market Share Distribution
ProductMarket Share (%)
FireMon Security Manager17.8%
Skybox Security Suite9.5%
ManageEngine Firewall Analyzer3.3%
Other69.4%
Firewall Security Management
 

Featured Reviews

Ganesh-Khutwad - PeerSpot reviewer
Rapid policy insights with robust dashboards and cross-vendor automation
FireMon Security Manager is excellent for real-time compliance management. It allows us to quickly retrieve any policy needed for testing and easily analyze it for loopholes. If a loophole exists, FireMon provides comprehensive details within the policy manager. It alerts us to firewall rule additions or changes that violate compliance policies. It supports various firewall platforms, including Checkpoint, Zscaler, Fortinet, Cisco, and AWS, and provides centralized management for all configured policies through a single console. FireMon Security Manager provides many features, like whether my firewall is compatible with required standards such as NTP and SNMP. Each compliance included in our RFPs is shown in the UI of FireMon. It gives robust and clear dashboards, making it easier to understand risks because the policies have ratings showing usage, and the number of hit attacks. It streamlines our compliance reporting processes by providing comprehensive risk and compliance assessments. It offers a range of features, including verification of firewall compatibility with protocols like NTP and SNMP, and detection of signal charges. FireMon effectively addresses all compliance requirements outlined in our RFPs. For instance, it can determine if firewalls or proxies within a stack are configured in Secure Mode or Active-Active mode. FireMon Security Manager enables us to generate reports on all these aspects, ensuring thorough compliance monitoring and documentation. FireMon Security Manager is robust and can help automate firewall policy changes across large multi-vendor enterprise environments. FireMon Security Manager helps automate firewall policy changes across various environments, including on-premises, cloud, hybrid, SASE, and SD-WAN. It also simplifies cleaning up firewall rules in our environment. The time required to accurately create, approve, and deploy firewall policy rules has been reduced. Tasks that took 30 minutes can now be completed in just five minutes using FireMon. FireMon provides immediate visibility into our policies through a robust and clear dashboard, making it easy to identify errors or misconfigurations based on the policy rating.
Read full review
Hoa-Nguyen - PeerSpot reviewer
Implementation supports efficient network management but requires improvement in device handling capacity
The strong points of ManageEngine Firewall Analyzer are many, but I think my favorite feature focuses on the VPN traffic. If I want to manage my policy and optimize it, I find that ManageEngine Firewall Analyzer supports many vendors after Firewall. One aspect I want to improve in ManageEngine Firewall Analyzer is the maximum number of firewalls that can be managed. I learned from the internal support team that one prop server only supports three to five firewalls. I think one prop server can manage a maximum of five because if I have many devices here, the performance of the prop would be very high, considering CPU and RAM usage.
Read full review
NenadMijatovic - PeerSpot reviewer
Efficient in vulnerability management, stable and easy to use
Vulnerability management is the most valuable feature because it lets you focus on the most critical vulnerabilities. That's the important thing. Here in Serbia, there are not so many companies that have too many firewalls inside one company. So, they usually don't buy this model for Firewall Assurance unless there is some compliance. So you can prove that your firewalls are compliant. So, that model is not so important here in Serbia. It's for bigger companies. So, they usually buy network assurance to build the model of the network and vulnerability management to focus on the most important vulnerabilities. Moreover, Skybox can collect data for many vendors. From the endpoint protection vendors to the network equipment vendors to other security vendors. So, it supports more than one hundred vendors to collect data from them.
Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"Firewall auditing is very important. We also use the solution for rule traffic analysis, traffic flow discovery and hidden/shadow rules within over 100 firewalls spanning five different brands."
"The most effective feature is the general reporting on compliance."
"FireMon is nice and provides 360-degree user views."
"It is a good product. Previously, we were using only spreadsheets to compare the usage, but now with FireMon, we are able to clean up or review the policies to some extent. It is still a work in progress, but we are at a good stage now."
"Overall, I would rate this solution a nine out of ten."
"The most valuable feature of FireMon is its ability to configure multiple devices and consolidate them into a single desktop, which allows us to manage all of our security devices, such as Palo Alto and Zscaler, from one place."
"The automation that the platform provides to create tickets reduces human error and more generally, reduces the operational overhead."
"For the cleanup of firewall rules, it performs really well for us. We utilize it in our regular rule cleanup tasks, several times a year. FireMon is our primary tool when doing that, either by going through its out-of-the-box compliance rules or using it to search for certain things in our rules that we want to prune from our firewalls."
More FireMon Security Manager pros
"Firewall Analyzer is easy to work with."
"Firewall Analyzer helps our organization to fulfill the compliance requirement as per ISO 27001, managing the network security effectively."
"I found the reporting to be useful because not only can I go back months, but it lists the individual URLs and the time that a particular person visited."
"The most valuable features of the ManageEngine Firewall Analyzer are the monitoring of the full management of the network elements and the inventory of the infrastructure."
"The strong points of ManageEngine Firewall Analyzer are many, but I think my favorite feature focuses on the VPN traffic."
"Overall the solution does a good job."
"The most valuable feature of the solution is that it is a very user-friendly tool compared to other solutions."
"The ability to appropriately prioritize vulnerabilities inside the environment, and then to have visibility into the traffic and rule sets of an organization, are two of the top capabilities that I recommend. Skybox is the only one that does both of those in a single platform."
"The solution's simplicity of use is its most valuable feature."
"instead of asking for firewall rules which may or may not be relevant, or could already be there, or could be over-permissioned, Skybox can be used to map out the resources that that application is going to use and provide the exact rules that an application would require to function correctly. If the traffic isn't able to flow for the application, if it's erring out, Skybox can be used to troubleshoot that and say, "All right, where is the traffic being stopped and why, and how do I fix that.""
"The performance could be good because we chose it at the time, but it is too complex for us to appreciate its performance because we lack the necessary skills."
"Skybox allows organizations to reprioritize the vulnerability they attempt to patch and mitigate, based on the contextual awareness of the network."
"The revalidation and policy recertifications are most valuable."
"Security review is the most important feature, because it offers a single pane of glass to analyze multiple firewalls."
"The features that I have found most valuable with Skybox Security Suite, and this is because I work on the security side, are the firewall assurance, the change manager and the vulnerability control. These three features are the most impressive from Skybox Security."
More Skybox Security Suite pros
 

Cons

"The current health and monitoring of the devices is atrocious... Imagine you have a list of 200 devices, and you can grade each of those devices as either green, yellow, or red. However, there might be three different reasons for you to go to red, or eight different reasons to go to yellow, and all of those things could be combined... Out of all those categories, I only find one or two of them that are, perhaps, pertinent."
"The support response time has room for improvement."
"We've had recurring issues managing FireMon's internal backups. Sometimes, the space allocated for the backup is full, and there is no process where it deletes files that are older than I certain date. It's just waiting for the storage to get full and then it's cleaned up. It isn't something that creates serious issues for us."
"The stability has been fairly decent, but there have been a few issues. My coworker has had some issues in the past where he has had to work with support."
"I think that having a more open system and providing documentation for it would be helpful for users like us. We are pretty adept and can navigate through the Linux software that the on-premises FireMon is based on. It would help us in the long run."
"FireMon could be made more user-friendly when it comes to creating filters or conducting traffic analysis."
"Our firewalls have multiple paths through them and FireMon falls short a little bit because it's not Palo Alto-centric. I don't think FireMon has kept up with where Palo Alto is at. They started out being Check Point-centric for years and they've never really fully embraced the nuances others, like Palo Alto or Fortinet, have. They don't handle a lot of the capabilities and attributes that Palo Alto does yet. They're working on it. They're getting there."
"When it comes to real-time compliance management, something that is missing is alerting on certain, predefined controls. It would be good to have a predefined set of controls which, if not complied with in a newly set up rule, would create an alert for us. That is something that is missing, out-of-the-box."
More FireMon Security Manager cons
"It would be awesome if the product could monitor services for applications."
"The solution lacks a lot of features that other products have in the marketplace."
"If there is a need to get some customized report or anything, ManageEngine Firewall Analyzer takes some time."
"One aspect I want to improve in ManageEngine Firewall Analyzer is the maximum number of firewalls that can be managed. I learned from the internal support team that one prop server only supports three to five firewalls."
"The stability is so-so. There are always memory issues, but the solution is working great apart from that."
"ManageEngine Firewall Analyzer can improve by having better monitoring of all features from firewalls. We are using Kibana in order to monitor parts that this solution does not record. For example, having more correlation and proactive monitoring in some activity or scenario."
"There is room for improvement in pricing. It would be better, especially if a customer bought all four modules."
"The solution does not support certain devices or vendors in some regions or countries due to regulations."
"They are not satisfied with the complexity of the solution and the price."
"The only place where Skybox has room for improvement, and they're working on releasing this, it's just a slow-go, is the UI. The user interface has historically been via a locally installed thick client. They are moving to a web-based console and it's slowly coming out."
"The initial setup with Skybox Security is hard. You need one or two strong security engineers on your team."
"Skybox Security Suite's attack surface management feature needs improvement."
"The solution needs to move improve its interface to a full web browser version that is more accessible and doesn't require installation for use."
"There is room for improvement in the product's user interface. It could be more user-friendly."
More Skybox Security Suite cons
 

Pricing and Cost Advice

"Pricing model seems fair."
"Pricing is reasonable."
"We don't license all of the devices in our network, so it does not provide us with a comprehensive visibility of all devices in a hybrid network at this time."
"It's a good value. From a licensing standpoint... it's very simple to understand, and gives us a good bang for the buck."
"Relative to what it offers, the price is fair."
"We pay for it yearly."
"Regarding additional costs, if you want things like Policy Optimizer, extra features, that's extra."
"FireMon is cheaper than AlgoSec."
More FireMon Security Manager pricing and cost advice
"I know that the price of the products is flexible. There have been different types of products, like professional and enterprise-based ones, and depending on the requirements, customers can choose their products."
"Needs to work on pricing."
"ManageEngine Firewall Analyzer is less expensive than some of their competitors, such as Cisco. The price is one of the reasons why we use ManageEngine Firewall Analyzer."
"It's expensive."
"The licensing fee is paid yearly and is approximately $100,000."
"The price of the Skybox Security Suite can be expensive."
"The software is expensive. I rate its pricing an eight out of ten."
"I've seen the pricing of every solution on the market. When you compare apples to apples, where Skybox becomes exceedingly expensive is if you look at it compared to something like FireMon that only does a fraction of what Skybox does. But if you include everything that Skybox does, it becomes way more expensive than the competition, but you're also not comparing apples to apples. If you look at FireMon, and you look at like just the firewall assurance piece, they are fairly comparable and, actually, Skybox comes in a little bit cheaper in some cases, depending on which product you're looking at."
"The pricing is high, and the licensing model needs more flexibility."
"When compared with other companies, the license is more costly."
"The product's pricing is excellent value. In terms of licensing, make sure you understand your network components, all your hops through your network, thoroughly, before you decide on the total cost. If you want to do point-to-point flow analysis and such, you need to have the configuration of all the devices in between point A and point B. A lot of people don't realize all their network components until they start using this product."
More Skybox Security Suite pricing and cost advice
report
See which vendors are best for you
Use our free recommendation engine to learn which Firewall Security Management solutions are best for your needs.
See recommendations
867,821 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Computer Software Company
15%
Financial Services Firm
14%
Manufacturing Company
11%
Comms Service Provider
7%
Computer Software Company
18%
Healthcare Company
10%
Comms Service Provider
10%
Energy/Utilities Company
8%
Financial Services Firm
18%
Computer Software Company
12%
Manufacturing Company
10%
Energy/Utilities Company
6%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
By reviewers
Company SizeCount
Small Business9
Midsize Enterprise9
Large Enterprise44
By reviewers
Company SizeCount
Small Business3
Midsize Enterprise1
Large Enterprise10
By reviewers
Company SizeCount
Small Business21
Midsize Enterprise4
Large Enterprise20
 

Questions from the Community

What do you like most about FireMon?
I like the Security Manager console where we can see any changes that have been made or pull the results of an assess...
See all answers
What is your experience regarding pricing and costs for FireMon?
Comparatively, FireMon has a very good price and is below the general competition in cost. I have not seen any additi...
See all answers
What needs improvement with FireMon?
For one company I work with, I use Fortinet, and FireMon is not able to understand the zones that Fortinet uses. Part...
See all answers
What do you like most about ManageEngine Firewall Analyzer?
The most valuable feature of the solution is that it is a very user-friendly tool compared to other solutions.
See all answers
What is your experience regarding pricing and costs for ManageEngine Firewall Analyzer?
The pricing and overall licensing cost of ManageEngine Firewall Analyzer is very cost-effective compared to global co...
See all answers
What needs improvement with ManageEngine Firewall Analyzer?
To improve ManageEngine Firewall Analyzer, they need to implement Zero Touch Provisioning (ZTP) support for firewalls...
See all answers
What do you like most about Skybox Security Suite?
Overall, the tool has helped us reduce risks. If any step is missing, it's easier for my team or engineers to identif...
See all answers
What is your experience regarding pricing and costs for Skybox Security Suite?
From a commercial perspective, AlgoSec is more expensive compared to Skybox Security Suite. Skybox Security Suite is ...
See all answers
What needs improvement with Skybox Security Suite?
The dashboard's UI is not interesting; it is quite normal. It would be better if something more attractive or similar...
See all answers
 

Comparisons

Tufin Orchestration Suite vs FireMon Security Manager Logo
Tufin Orchestration Suite vs FireMon Security Manager
Compared 45% of the time
AlgoSec vs FireMon Security Manager Logo
AlgoSec vs FireMon Security Manager
Compared 38% of the time
RedSeal vs FireMon Security Manager Logo
RedSeal vs FireMon Security Manager
Compared 3% of the time
Palo Alto Networks Panorama vs FireMon Security Manager Logo
Palo Alto Networks Panorama vs FireMon Security Manager
Compared 3% of the time
More FireMon Security Manager Competitors
AlgoSec vs ManageEngine Firewall Analyzer Logo
AlgoSec vs ManageEngine Firewall Analyzer
Compared 35% of the time
Tufin Orchestration Suite vs ManageEngine Firewall Analyzer Logo
Tufin Orchestration Suite vs ManageEngine Firewall Analyzer
Compared 22% of the time
Palo Alto Networks Panorama vs ManageEngine Firewall Analyzer Logo
Palo Alto Networks Panorama vs ManageEngine Firewall Analyzer
Compared 12% of the time
More ManageEngine Firewall Analyzer Competitors
AlgoSec vs Skybox Security Suite Logo
AlgoSec vs Skybox Security Suite
Compared 32% of the time
Tufin Orchestration Suite vs Skybox Security Suite Logo
Tufin Orchestration Suite vs Skybox Security Suite
Compared 30% of the time
RedSeal vs Skybox Security Suite Logo
RedSeal vs Skybox Security Suite
Compared 5% of the time
Palo Alto Networks Panorama vs Skybox Security Suite Logo
Palo Alto Networks Panorama vs Skybox Security Suite
Compared 4% of the time
XM Cyber vs Skybox Security Suite Logo
XM Cyber vs Skybox Security Suite
Compared 3% of the time
More Skybox Security Suite Competitors
 

Product Reports

Buyer's Guide
FireMon Security Manager
September 2025
FireMon Security Manager reportDownload FireMon Security Manager product report
Buyer's Guide
ManageEngine Firewall Analyzer
September 2025
ManageEngine Firewall Analyzer reportDownload ManageEngine Firewall Analyzer product report
Buyer's Guide
Skybox Security Suite
August 2025
Skybox Security Suite reportDownload Skybox Security Suite product report
 

Overview

The increasing complexity of networks, driven by the constant influx of new devices, applications, and cloud services, presents a daunting challenge for managing firewall policies and rules. A typical enterprise environment has millions of rules, and just one simple misconfiguration can lead to devastating consequences like compliance violations, outages, and data breaches. 

FireMon’s Security Manager is a purpose-built network security policy management (NSPM) platform that automates the management of firewall and cloud security policies to eliminate policy-related risk, accurately and quickly change rules, and meet internal and external compliance requirements.

  • Reduce Risk Manage risk with real-time visibility and control
  • Manage Change Avoid misconfigurations, accelerate business, and improve security
  • Enforce and Maintain Compliance Avoid violations, avoid risk, and avoid fines
FireMon

ManageEngine Firewall Analyzer is an agent less log analytics and configuration management software that helps network administrators to centrally collect, archive, analyze their security device logs and generate forensic reports out of it.

Real-time event response system and Integrated Compliance Management module of Firewall Analyzer automates your end point security monitoring, network bandwidth monitoring and security & compliance auditing. Firewall Analyzer eases your Device Configuration Management by providing out-of-the-box reports and alerts for configuration changes. Firewall Analyzer is vendor-agnostic and supports almost all open source and commercial network firewalls like Check Point, Cisco, Juniper, Fortinet, Snort, Squid Project, SonicWALL, Palo Alto and more, IDS/IPS, VPNs, Proxies and other related security devices.

ManageEngine

Skybox Security Suite provides comprehensive tools for network and firewall compliance, vulnerability management, and change management, with a focus on risk reduction and network optimization.

Skybox Security Suite supports over 130 vendors with massive scalability and seamless integration, notably with Nessus and Qualys. Its features include network path analysis and offline attack simulation, which enhance management effectiveness. Despite its robust offering, improvements are needed in its UI, web interface, reporting detail, and customization. Automation, orchestration, and device policy provisioning require better support, and integration with tools like Rapid7 could be improved. Enhancements in firewall configuration checks, cloud connectivity, pricing, and marketing awareness are also called for, alongside a transition from Java GUI to a consistent web-based system.

What Are Key Features of Skybox Security Suite?
  • Network Assurance: Enhances visibility and optimization of network paths.
  • Firewall Assurance: Facilitates firewall rule set audits for compliance.
  • Vulnerability Management: Offers path detection and risk prioritization.
  • Compliance Management: Ensures adherence to standards like PCI.
  • Change Management: Simplifies management across extensive infrastructures.
What Benefits and ROI Can Users Expect?
  • Scalability: Supports numerous vendors and large-scale deployments.
  • Integration: Seamlessly connects with tools like Nessus and Qualys.
  • Risk Reduction: Improves security across network infrastructures.
  • Simplified Management: User-friendly interface and reporting tools enhance usability.
  • Network Optimization: Streamlines processes and improves performance.

Skybox Security Suite is commonly used in industries requiring strict compliance like finance and healthcare. Firms employ it for firewall audits, enhancing network visibility, and managing configurations against standards such as PCI, ensuring security and policy compliance across expansive networks.

Tufin
 

Sample Customers

Convey, MGM Resorts International, Southwest Airlines, Alkami, Costco, Aetna, IBM, Verizon, Wells Fargo
WFP, NYC.gov, Sony Pictures, Franklin Security Bank, ITC INFOTECH
ADP, Blue Cross Blue Shield, BT, USAID, Delta Dental, EDF Energy, EMC, HSBC, Johnson & Johnson
Buyer's Guide
Firewall Security Management
August 2025
Download Free Report
Find out what your peers are saying about AlgoSec, Tufin, Palo Alto Networks and others in Firewall Security Management. Updated: August 2025.
DOWNLOAD NOW
867,821 professionals have used our research since 2012.