FireMon Security Manager vs ManageEngine Firewall Analyzer vs Tufin Orchestration Suite comparison

FireMon and ManageEngine are both solutions in the Firewall Security Management category. FireMon is ranked #3 with an average rating of 7.8, while ManageEngine is ranked #11 with an average rating of 9.0. FireMon holds a 17.1% mindshare in Firewall Security Management, compared to ManageEngine’s 3.4% mindshare. Additionally, 87% of FireMon users are willing to recommend the solution, compared to 91% of ManageEngine users who would recommend it.

FireMon Security Manager

Read 56 FireMon Security Manager reviews

3,700 Views
2,572 Comparison Views

87% willing to recommend

ManageEngine Firewall Analyzer

Read 7 ManageEngine Firewall Analyzer reviews

759 Views
500 Comparison Views

91% willing to recommend

Tufin Orchestration Suite

Read 184 Tufin Orchestration Suite reviews

6,179 Views
3,127 Comparison Views

91% willing to recommend

FireMon Security Manager

ManageEngine Firewall Analyzer

Tufin Orchestration Suite

Comparison Buyer's Guide

Download the report

Executive Summary

We performed a comparison between FireMon Security Manager, ManageEngine Firewall Analyzer, and Tufin Orchestration Suite based on real PeerSpot user reviews.

Find out what your peers are saying about AlgoSec, Tufin, FireMon and others in Firewall Security Management.

To learn more, read our detailed Firewall Security Management Report (Updated: May 2025).

Buyer's Guide

Firewall Security Management

May 2025

Download the complete report

Helped 855,156 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Mindshare comparison

As of June 2025, in the Firewall Security Management category, the mindshare of FireMon Security Manager is 17.1%, up from 16.2% compared to the previous year. The mindshare of ManageEngine Firewall Analyzer is 3.4%, up from 2.8% compared to the previous year. The mindshare of Tufin Orchestration Suite is 22.1%, up from 20.2% compared to the previous year. It is calculated based on PeerSpot user engagement data.

Firewall Security Management

Featured Reviews

Ganesh-Khutwad

Senior Network Specialist at Tech Mahindra Limited

Rapid policy insights with robust dashboards and cross-vendor automation

FireMon Security Manager is excellent for real-time compliance management. It allows us to quickly retrieve any policy needed for testing and easily analyze it for loopholes. If a loophole exists, FireMon provides comprehensive details within the policy manager. It alerts us to firewall rule additions or changes that violate compliance policies. It supports various firewall platforms, including Checkpoint, Zscaler, Fortinet, Cisco, and AWS, and provides centralized management for all configured policies through a single console. FireMon Security Manager provides many features, like whether my firewall is compatible with required standards such as NTP and SNMP. Each compliance included in our RFPs is shown in the UI of FireMon. It gives robust and clear dashboards, making it easier to understand risks because the policies have ratings showing usage, and the number of hit attacks. It streamlines our compliance reporting processes by providing comprehensive risk and compliance assessments. It offers a range of features, including verification of firewall compatibility with protocols like NTP and SNMP, and detection of signal charges. FireMon effectively addresses all compliance requirements outlined in our RFPs. For instance, it can determine if firewalls or proxies within a stack are configured in Secure Mode or Active-Active mode. FireMon Security Manager enables us to generate reports on all these aspects, ensuring thorough compliance monitoring and documentation. FireMon Security Manager is robust and can help automate firewall policy changes across large multi-vendor enterprise environments. FireMon Security Manager helps automate firewall policy changes across various environments, including on-premises, cloud, hybrid, SASE, and SD-WAN. It also simplifies cleaning up firewall rules in our environment. The time required to accurately create, approve, and deploy firewall policy rules has been reduced. Tasks that took 30 minutes can now be completed in just five minutes using FireMon. FireMon provides immediate visibility into our policies through a robust and clear dashboard, making it easy to identify errors or misconfigurations based on the policy rating.

Read full review

Mostafiz Miah

Presales & Technical Lead at Elitbuzz Technologies Ltd

Offers good integration features and is user-friendly

What is happening in sometimes, if any issues found in the tool, ManageEngine takes time to provide a proper fix, but it does not happen most of the time. If there is a need to get some customized report or feature, ManageEngine Firewall Analyzer team takes some time. The aforementioned area can be considered for improvement. From a product point of view, the tool is good, user-friendly, and offers easy installation and easy configuration.

Read full review

MithatBulut

Network Security Engineer at TD SYNNEX

New employees can quickly grasp the various IPs, devices, and the network's logical and physical

Tufin is primarily used to orchestrate and manage network traffic and firewall devices. It is specifically useful for implementing firewall policies and handling requests from clients that require policy updates or changes Tufin simplifies understanding network topology. New employees can quickly…

Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Pros

"It is the single place where we go to review all of our firewall changes. The solution makes it easier for us to track all the changes made. It is a central place where we can look at all the firewall rules, because we have three different firewall vendors. It save us time and creates efficiencies by looking at the general picture."

"I like the Security Manager console where we can see any changes that have been made or pull the results of an assessment and control the policies that we implement."

"The most valuable feature for me is its capability for cleanup and managing the complexity of security products."

"The technical support is very good. They've always been helpful."

"FireMon saves us a lot of time and it's nice because if you're adding a rule that's similar to another rule, it'll tell you so sometimes you can just edit the one and add another source or destination in there without creating a duplicate rule. It enables you to consolidate and have fewer, more meaningful rules. We're saving around 30% of our time."

"It provides us with a single pane of glass for our on-prem environment, to see configuration. We have not implemented into the cloud yet. We can search for an object group and see where it lives on any firewall in the enterprise or find security rules, no matter what firewall they're on."

"The unused objects is another nice feature, where it digs a little bit deeper into comparing the logs that it sees versus the configurations that it sees... The unused objects feature will go through in a pretty detailed way and show us which ones aren't being used. Or, if they are used, it will show us how often they're used."

"I've been using the reports to see what is going on, and that is a helpful feature. We can track down unused rules, which helps with compliance. We can see rules that have not been used or that are duplicates or overly permissive."

More FireMon Security Manager pros

"Firewall Analyzer is easy to work with."

"I found the reporting to be useful because not only can I go back months, but it lists the individual URLs and the time that a particular person visited."

"Overall the solution does a good job."

"The most valuable feature of the solution is that it is a very user-friendly tool compared to other solutions."

"The most valuable features of the ManageEngine Firewall Analyzer are the monitoring of the full management of the network elements and the inventory of the infrastructure."

"Firewall Analyzer helps our organization to fulfill the compliance requirement as per ISO 27001, managing the network security effectively."

"This solution has helped us with compliance because we're able to map out certain firewall rules against compliance requirements, and we're able to write reports to show us exactly what our firewalls look like in those areas."

"This solution has helped us to meet our compliance mandates. We implemented the Unified Security Policy (USP). This helped enforce what compliance requirements that we had. We have mitigated and remediated issues that have been brought forth due to that USP showing us issues."

"I don't think that we were ever slow, but we can now say that changes are completed within twenty-four hours."

"There are a lot of benefits to using the reporting. It gives us duplicate objects, duplicate services, shadow firewall rules, and the firewall rules not needed for a given number of days or months."

"The clarity around the auditing provides the most value for us."

"This solution provides a more organized manner for us to track towards compliance for our PCI audits."

"Our engineers save quite a bit of time that was previously spent on manual processes."

"Comparing the rules and policy browser is valuable to me. It gives me the ability to pull running configs and be able to analyze them without having to go directly into the firewall."

More Tufin Orchestration Suite pros

Cons

"The cost of the solution is pretty expensive. It would be ideal if they could work on their pricing."

"FireMon could be easier to use and flexibility regarding reporting could be improved."

"The support response time has room for improvement."

"The advanced features are complex in setting up the rules."

"While I like the reporting, I think that has the biggest room for improvement. Right now, as a user of FireMon, if I create a report, I am the only one who can see it inside FireMon. If someone on my team creates a report, they are the only person who can see that report on FireMon. It doesn't matter if you're admin in FireMon or not. The way we have to do it now is that we have created a service account user and that service account user runs all the reports. This way, all the reports, which are running, are just run under a single user so we can always access them. This definitely needs to change so users can see other users' reports or we can share reports within FireMon."

"Policy Planner requirements section is good, but could use some improvement to allow flexibility to enter different types of requests (modifying an existing policy, object or service group, for example) in a structured task format that can be auto-verified."

"The support response time has room for improvement."

"When it comes to identifying risk in our environment and prioritizing fixes, it is really about the different priorities within the organization. FireMon is not so smart that it can tell what's important to us. It's up to us to figure that out."

More FireMon Security Manager cons

"The solution lacks a lot of features that other products have in the marketplace."

"If there is a need to get some customized report or anything, ManageEngine Firewall Analyzer takes some time."

"The stability is so-so. There are always memory issues, but the solution is working great apart from that."

"ManageEngine Firewall Analyzer can improve by having better monitoring of all features from firewalls. We are using Kibana in order to monitor parts that this solution does not record. For example, having more correlation and proactive monitoring in some activity or scenario."

"It would be awesome if the product could monitor services for applications."

"The solution does not have automation with other Firewalls."

"Integration for Layer 2 devices could be improved because it requires manual scripting."

"There are at least two things that need improvement. One is the business workflow and the second is the integration with logging solutions."

"I feel that the user interface is a bit dated."

"The design needs improvement, particularly in recognizing target devices and target files. Additionally, there's a need for an improved network map."

"Tufin Orchestration Suite is not commonly used in Thailand due to a lack of local support, and many customers are switching to AlgoSec or other vendors."

"I would like to see more expansion into the cloud and documentation needs improvement. When I try to do something new in the product, the documentation is no help. Something's written there, but it's not enough to help you do what you want to do."

"There are things that could be explained a little better for somebody brand new to this system, which could be helpful, especially if it was in real-time while you were working in the system. Having the ability in real-time to be able to understand search query suggestions would be helpful."

More Tufin Orchestration Suite cons

Pricing and Cost Advice

"Its pricing is good. Compared to others, it is not so expensive."

"Pricing model seems fair."

"The pricing was very good during our initial year, but they increased it this year a little bit. The price is okay. It is not cheap, but it is still average."

"Pricing is reasonable."

"We don't license all of the devices in our network, so it does not provide us with a comprehensive visibility of all devices in a hybrid network at this time."

"Regarding additional costs, if you want things like Policy Optimizer, extra features, that's extra."

"Relative to what it offers, the price is fair."

"FireMon is very expensive. I think that they charge a premium. In general, they are very pricey. Compared to their competitors, they cost a little more than the other solutions that we evaluated."

More FireMon Security Manager pricing and cost advice

"I know that the price of the products is flexible. There have been different types of products, like professional and enterprise-based ones, and depending on the requirements, customers can choose their products."

"Needs to work on pricing."

"ManageEngine Firewall Analyzer is less expensive than some of their competitors, such as Cisco. The price is one of the reasons why we use ManageEngine Firewall Analyzer."

"Tuffin is expensive, and we have to explain to our customers the benefit for them to purchase. If we explain the benefits in the correct way they do not mind the price. We typically do costing for the customer for three to five years. We make the general total cost of ownership at the beginning of a project for our customers."

"Our licensing costs are pretty low. We were grandfathered in, so we are at about $35,000 per year."

"Our engineers are spending less time on manual processes: 20 to 30 hour plus."

"Pricing is quite high. We did compare it with AlgoSec but the pricing is not much different between the two."

"It's quite an expensive solution."

"Because we're quite a large company, the price wasn't too much of a factor for us."

"The price of Tufin could be lower."

"We have seen ROI in operational aspects, in terms of how long it takes to resolve incidences which arise."

More Tufin Orchestration Suite pricing and cost advice

See which vendors are best for you

Use our free recommendation engine to learn which Firewall Security Management solutions are best for your needs.

See recommendations

855,156 professionals have used our research since 2012.

Top Industries

By visitors reading reviews

Computer Software Company

17%

Financial Services Firm

16%

Manufacturing Company

Healthcare Company

Computer Software Company

20%

Comms Service Provider

11%

Financial Services Firm

Healthcare Company

Financial Services Firm

19%

Computer Software Company

15%

Manufacturing Company

10%

Healthcare Company

Company Size

By reviewers

Large Enterprise

Midsize Enterprise

Small Business

Questions from the Community

What do you like most about FireMon?

I like the Security Manager console where we can see any changes that have been made or pull the results of an assess...

See all answers

What is your experience regarding pricing and costs for FireMon?

Comparatively, FireMon has a very good price and is below the general competition in cost. I have not seen any additi...

See all answers

What needs improvement with FireMon?

For one company I work with, I use Fortinet, and FireMon is not able to understand the zones that Fortinet uses. Part...

See all answers

What do you like most about ManageEngine Firewall Analyzer?

The most valuable feature of the solution is that it is a very user-friendly tool compared to other solutions.

See all answers

What is your experience regarding pricing and costs for ManageEngine Firewall Analyzer?

I know that the price of the products is flexible. There have been different types of products, like professional and...

See all answers

What needs improvement with ManageEngine Firewall Analyzer?

What is happening in sometimes, if any issues found in the tool, ManageEngine takes time to provide a proper fix, but...

See all answers

What needs improvement with Tufin SecureCloud?

Tufin Orchestration Suite ( /products/tufin-orchestration-suite-reviews ) is not commonly used in Thailand due to a l...

See all answers

What is your primary use case for Tufin SecureCloud?

I have primarily used Skybox and AlgoSec ( /products/algosec-reviews ). I have also interacted with FireMon for compi...

See all answers

What advice do you have for others considering Tufin SecureCloud?

There is potential for improvement in explaining the analytics in the dashboard for Tufin Orchestration Suite. Tufin ...

See all answers

Comparisons

AlgoSec vs FireMon Security Manager

Compared 37% of the time

Skybox Security Suite vs FireMon Security Manager

Compared 9% of the time

Palo Alto Networks Panorama vs FireMon Security Manager

Compared 4% of the time

RedSeal vs FireMon Security Manager

Compared 3% of the time

More FireMon Security Manager Competitors

AlgoSec vs ManageEngine Firewall Analyzer

Compared 41% of the time

Skybox Security Suite vs ManageEngine Firewall Analyzer

Compared 11% of the time

Palo Alto Networks Panorama vs ManageEngine Firewall Analyzer

Compared 7% of the time

More ManageEngine Firewall Analyzer Competitors

AlgoSec vs Tufin Orchestration Suite

Compared 35% of the time

Skybox Security Suite vs Tufin Orchestration Suite

Compared 16% of the time

Palo Alto Networks Panorama vs Tufin Orchestration Suite

Compared 5% of the time

Illumio vs Tufin Orchestration Suite

Compared 2% of the time

Opinnate vs Tufin Orchestration Suite

Compared 2% of the time

More Tufin Orchestration Suite Competitors

Product Reports

Buyer's Guide

FireMon Security Manager

May 2025

Download FireMon Security Manager product report

Buyer's Guide

Firewall Security Management

May 2025

Download ManageEngine Firewall Analyzer product report

Buyer's Guide

Tufin Orchestration Suite

May 2025

Download Tufin Orchestration Suite product report

Also Known As

No data available

Tufin SecureCloud

Overview

The increasing complexity of networks, driven by the constant influx of new devices, applications, and cloud services, presents a daunting challenge for managing firewall policies and rules. A typical enterprise environment has millions of rules, and just one simple misconfiguration can lead to devastating consequences like compliance violations, outages, and data breaches.

FireMon’s Security Manager is a purpose-built network security policy management (NSPM) platform that automates the management of firewall and cloud security policies to eliminate policy-related risk, accurately and quickly change rules, and meet internal and external compliance requirements.

Reduce Risk Manage risk with real-time visibility and control
Manage Change Avoid misconfigurations, accelerate business, and improve security
Enforce and Maintain Compliance Avoid violations, avoid risk, and avoid fines

FireMon

ManageEngine Firewall Analyzer is an agent less log analytics and configuration management software that helps network administrators to centrally collect, archive, analyze their security device logs and generate forensic reports out of it.

Real-time event response system and Integrated Compliance Management module of Firewall Analyzer automates your end point security monitoring, network bandwidth monitoring and security & compliance auditing. Firewall Analyzer eases your Device Configuration Management by providing out-of-the-box reports and alerts for configuration changes. Firewall Analyzer is vendor-agnostic and supports almost all open source and commercial network firewalls like Check Point, Cisco, Juniper, Fortinet, Snort, Squid Project, SonicWALL, Palo Alto and more, IDS/IPS, VPNs, Proxies and other related security devices.

ManageEngine

Tufin enables organizations to automate their security policy visibility, risk management, provisioning and compliance across their multi-vendor, hybrid environment. Customers gain visibility and control across their network, ensure continuous compliance with security standards and embed security enforcement into workflows and development pipelines.

Tufin

Sample Customers

Convey, MGM Resorts International, Southwest Airlines, Alkami, Costco, Aetna, IBM, Verizon, Wells Fargo

WFP, NYC.gov, Sony Pictures, Franklin Security Bank, ITC INFOTECH

3M, AT&T, Blue Cross Blue Shield, BNP Parabas, ConocoPhillips, Deutsche Bank, GE, IBM, Pfizer, United States Postal Service

Buyer's Guide

Firewall Security Management

May 2025

Download Free Report

Find out what your peers are saying about AlgoSec, Tufin, FireMon and others in Firewall Security Management. Updated: May 2025.

DOWNLOAD NOW

855,156 professionals have used our research since 2012.