FireMon Security Manager vs ManageEngine Firewall Analyzer vs Tufin Orchestration Suite comparison

FireMon and ManageEngine are both solutions in the Firewall Security Management category. FireMon is ranked #4 with an average rating of 8.0, while ManageEngine is ranked #11 with an average rating of 9.0. FireMon holds a 17.8% mindshare in Firewall Security Management, compared to ManageEngine’s 3.3% mindshare. Additionally, 87% of FireMon users are willing to recommend the solution, compared to 92% of ManageEngine users who would recommend it.

FireMon Security Manager

Read 56 FireMon Security Manager reviews

3,429 Views
3,326 Comparison Views

87% willing to recommend

ManageEngine Firewall Analyzer

Read 9 ManageEngine Firewall Analyzer reviews

711 Views
704 Comparison Views

92% willing to recommend

Tufin Orchestration Suite

Read 182 Tufin Orchestration Suite reviews

6,055 Views
5,631 Comparison Views

91% willing to recommend

FireMon Security Manager

ManageEngine Firewall Analyzer

Tufin Orchestration Suite

Comparison Buyer's Guide

Download the report

Executive Summary

We performed a comparison between FireMon Security Manager, ManageEngine Firewall Analyzer, and Tufin Orchestration Suite based on real PeerSpot user reviews.

Find out what your peers are saying about AlgoSec, Tufin, Palo Alto Networks and others in Firewall Security Management.

To learn more, read our detailed Firewall Security Management Report (Updated: August 2025).

Buyer's Guide

Firewall Security Management

August 2025

Download the complete report

Helped 868,183 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Mindshare comparison

As of September 2025, in the Firewall Security Management category, the mindshare of FireMon Security Manager is 17.8%, up from 15.8% compared to the previous year. The mindshare of ManageEngine Firewall Analyzer is 3.3%, up from 3.1% compared to the previous year. The mindshare of Tufin Orchestration Suite is 22.6%, up from 20.9% compared to the previous year. It is calculated based on PeerSpot user engagement data.

Firewall Security Management Market Share Distribution
Product	Market Share (%)
Tufin Orchestration Suite	22.6%
FireMon Security Manager	17.8%
ManageEngine Firewall Analyzer	3.3%
Other	56.3%

Firewall Security Management

Featured Reviews

Ganesh-Khutwad

Senior Network Specialist at Tech Mahindra Limited

Rapid policy insights with robust dashboards and cross-vendor automation

FireMon Security Manager is excellent for real-time compliance management. It allows us to quickly retrieve any policy needed for testing and easily analyze it for loopholes. If a loophole exists, FireMon provides comprehensive details within the policy manager. It alerts us to firewall rule additions or changes that violate compliance policies. It supports various firewall platforms, including Checkpoint, Zscaler, Fortinet, Cisco, and AWS, and provides centralized management for all configured policies through a single console. FireMon Security Manager provides many features, like whether my firewall is compatible with required standards such as NTP and SNMP. Each compliance included in our RFPs is shown in the UI of FireMon. It gives robust and clear dashboards, making it easier to understand risks because the policies have ratings showing usage, and the number of hit attacks. It streamlines our compliance reporting processes by providing comprehensive risk and compliance assessments. It offers a range of features, including verification of firewall compatibility with protocols like NTP and SNMP, and detection of signal charges. FireMon effectively addresses all compliance requirements outlined in our RFPs. For instance, it can determine if firewalls or proxies within a stack are configured in Secure Mode or Active-Active mode. FireMon Security Manager enables us to generate reports on all these aspects, ensuring thorough compliance monitoring and documentation. FireMon Security Manager is robust and can help automate firewall policy changes across large multi-vendor enterprise environments. FireMon Security Manager helps automate firewall policy changes across various environments, including on-premises, cloud, hybrid, SASE, and SD-WAN. It also simplifies cleaning up firewall rules in our environment. The time required to accurately create, approve, and deploy firewall policy rules has been reduced. Tasks that took 30 minutes can now be completed in just five minutes using FireMon. FireMon provides immediate visibility into our policies through a robust and clear dashboard, making it easy to identify errors or misconfigurations based on the policy rating.

Read full review

Hoa-Nguyen

Head Of Finance - Digital Venture at a transportation company with 11-50 employees

Implementation supports efficient network management but requires improvement in device handling capacity

The strong points of ManageEngine Firewall Analyzer are many, but I think my favorite feature focuses on the VPN traffic. If I want to manage my policy and optimize it, I find that ManageEngine Firewall Analyzer supports many vendors after Firewall. One aspect I want to improve in ManageEngine Firewall Analyzer is the maximum number of firewalls that can be managed. I learned from the internal support team that one prop server only supports three to five firewalls. I think one prop server can manage a maximum of five because if I have many devices here, the performance of the prop would be very high, considering CPU and RAM usage.

Read full review

MithatBulut

Network Security Engineer at TD SYNNEX

New employees can quickly grasp the various IPs, devices, and the network's logical and physical

Tufin is primarily used to orchestrate and manage network traffic and firewall devices. It is specifically useful for implementing firewall policies and handling requests from clients that require policy updates or changes Tufin simplifies understanding network topology. New employees can quickly…

Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Pros

"Compared to other applications, it is user-friendly. The appearance of the menus and titles is clear and they are easy to follow. Of course, it requires some experience through using it, to go through everything, but it is not very difficult. It is an easy application to use."

"I've been using the reports to see what is going on, and that is a helpful feature. We can track down unused rules, which helps with compliance. We can see rules that have not been used or that are duplicates or overly permissive."

"The most valuable feature is the reporting capability because everything that we do is a result of our being able to query a report, based on our environment and our PCI compliance efforts."

"The automation that the platform provides to create tickets reduces human error and more generally, reduces the operational overhead."

"FireMon Security Manager is a fast and intelligent device that delivers results in under ten seconds, even with thousands of policies."

"Firewall auditing is very important. We also use the solution for rule traffic analysis, traffic flow discovery and hidden/shadow rules within over 100 firewalls spanning five different brands."

"Overall, I would rate this solution a nine out of ten."

"For the cleanup of firewall rules, it performs really well for us. We utilize it in our regular rule cleanup tasks, several times a year. FireMon is our primary tool when doing that, either by going through its out-of-the-box compliance rules or using it to search for certain things in our rules that we want to prune from our firewalls."

More FireMon Security Manager pros

"Firewall Analyzer helps our organization to fulfill the compliance requirement as per ISO 27001, managing the network security effectively."

"The strong points of ManageEngine Firewall Analyzer are many, but I think my favorite feature focuses on the VPN traffic."

"The most valuable feature of the solution is that it is a very user-friendly tool compared to other solutions."

"I found the reporting to be useful because not only can I go back months, but it lists the individual URLs and the time that a particular person visited."

"Firewall Analyzer is easy to work with."

"Overall the solution does a good job."

"The most valuable features of the ManageEngine Firewall Analyzer are the monitoring of the full management of the network elements and the inventory of the infrastructure."

"The most valuable feature is the reporting of our risk poster in our firewall."

"The product is good at auditing the changes that we make in our environment."

"One of the things that came up this week was the ability to decommission a server, which we thought was interesting. We had a workshop recently that talked about all the things that need to be thought about when managing firewalls. People said, "A lot of times, things get forgotten when you are decommissioning a server." E.g., making sure rules are taken away and taking out the rule set. The fact that there is an automated workload for that can be helpful."

"It provides a comprehensive overview of what our network looks like in terms of what is allowed and what is not, then how the traffic' is flowing with the Network Topology Map."

"The designer gives the ability to know where to add a rule, or if the rule is already in place."

"Overall, I would rate Tufin Orchestration Suite eight on a scale of one to ten."

"The technical support is pretty good."

"Tufin simplifies understanding network topology."

More Tufin Orchestration Suite pros

Cons

"The support response time has room for improvement."

"We are looking for more integration with SIEM and other tools."

"I think that having a more open system and providing documentation for it would be helpful for users like us. We are pretty adept and can navigate through the Linux software that the on-premises FireMon is based on. It would help us in the long run."

"FireMon could be easier to use and flexibility regarding reporting could be improved."

"The support response time has room for improvement."

"FireMon could be made more user-friendly when it comes to creating filters or conducting traffic analysis."

"The advanced features are complex in setting up the rules."

"Our firewalls have multiple paths through them and FireMon falls short a little bit because it's not Palo Alto-centric. I don't think FireMon has kept up with where Palo Alto is at. They started out being Check Point-centric for years and they've never really fully embraced the nuances others, like Palo Alto or Fortinet, have. They don't handle a lot of the capabilities and attributes that Palo Alto does yet. They're working on it. They're getting there."

More FireMon Security Manager cons

"It would be awesome if the product could monitor services for applications."

"The stability is so-so. There are always memory issues, but the solution is working great apart from that."

"The solution lacks a lot of features that other products have in the marketplace."

"ManageEngine Firewall Analyzer can improve by having better monitoring of all features from firewalls. We are using Kibana in order to monitor parts that this solution does not record. For example, having more correlation and proactive monitoring in some activity or scenario."

"One aspect I want to improve in ManageEngine Firewall Analyzer is the maximum number of firewalls that can be managed. I learned from the internal support team that one prop server only supports three to five firewalls."

"If there is a need to get some customized report or anything, ManageEngine Firewall Analyzer takes some time."

"I would like to see more expansion into the cloud and documentation needs improvement. When I try to do something new in the product, the documentation is no help. Something's written there, but it's not enough to help you do what you want to do."

"The older version that we have doesn't support some newer firewall vendors."

"The metrics need improvement. They need more consistency or understanding of automation, along lines of customization of automation."

"There were some hiccups here and there with the initial setup."

"With scalability, we are going to run into some issues. We have been talking about converting over to actual hardware as opposed to virtual. Therefore, I don't think we are scalable at this time, especially with the updates coming. I'm told that they're going to need a lot more horsepower to push them."

"The interface is like a 1990s kind of thing. It's a little ugly. There are many things that you cannot tweak, little things like the column width and how you display the information. You end up exporting everything to an Excel file and doing your work there."

"It does not natively support all of the Check Point functions which is a big deal."

"Customizing it can be a little tricky, but that depends on your use cases."

More Tufin Orchestration Suite cons

Pricing and Cost Advice

"Relative to what it offers, the price is fair."

"The pricing is very good, very straightforward. It also came in cheaper than AlgoSec and Tufin."

"We don't license all of the devices in our network, so it does not provide us with a comprehensive visibility of all devices in a hybrid network at this time."

"Regarding additional costs, if you want things like Policy Optimizer, extra features, that's extra."

"It's a good value. From a licensing standpoint... it's very simple to understand, and gives us a good bang for the buck."

"This is an expensive solution. The cost of three modules for three years was approximately one million."

"Pricing model seems fair."

"The pricing was very good during our initial year, but they increased it this year a little bit. The price is okay. It is not cheap, but it is still average."

More FireMon Security Manager pricing and cost advice

"I know that the price of the products is flexible. There have been different types of products, like professional and enterprise-based ones, and depending on the requirements, customers can choose their products."

"Needs to work on pricing."

"ManageEngine Firewall Analyzer is less expensive than some of their competitors, such as Cisco. The price is one of the reasons why we use ManageEngine Firewall Analyzer."

"We haven't purchased the license yet for SecureChange. We do have plans to buy it next year."

"The licensing costs are around $250,000 to $300,000."

"Licensing is on a customer by customer basis."

"I suggest talking with Tufin about the flexibility of the pricing structure."

"It is expensive, but as compared to other players, it's more or less okay. Their pricing is not very transparent. This is my biggest point regarding Tufin. I've never seen a price list or something like that. It's always individual, and in many cases, it's very confusing to know what is the base and what is the price."

"The seller of Tufin, when I wanted the solution, was very flexible because the cost on the lease was very high in Latin America. So, he was able to reduce the cost."

"The price is on the cheaper side."

"This solution helped us to reduce the time it takes to make changes. We used to spend up to an hour to do a change, and now, it's around five minutes."

More Tufin Orchestration Suite pricing and cost advice

See which vendors are best for you

Use our free recommendation engine to learn which Firewall Security Management solutions are best for your needs.

See recommendations

868,183 professionals have used our research since 2012.

Top Industries

By visitors reading reviews

Computer Software Company

15%

Financial Services Firm

14%

Manufacturing Company

11%

Comms Service Provider

Computer Software Company

18%

Healthcare Company

10%

Comms Service Provider

10%

Energy/Utilities Company

Financial Services Firm

17%

Computer Software Company

13%

Manufacturing Company

11%

Retailer

Company Size

By reviewers

Large Enterprise

Midsize Enterprise

Small Business

By reviewers
Company Size	Count
Small Business	9
Midsize Enterprise	9
Large Enterprise	44

By reviewers
Company Size	Count
Small Business	3
Midsize Enterprise	1
Large Enterprise	10

By reviewers
Company Size	Count
Small Business	29
Midsize Enterprise	13
Large Enterprise	152

Questions from the Community

What do you like most about FireMon?

I like the Security Manager console where we can see any changes that have been made or pull the results of an assess...

See all answers

What is your experience regarding pricing and costs for FireMon?

Comparatively, FireMon has a very good price and is below the general competition in cost. I have not seen any additi...

See all answers

What needs improvement with FireMon?

For one company I work with, I use Fortinet, and FireMon is not able to understand the zones that Fortinet uses. Part...

See all answers

What do you like most about ManageEngine Firewall Analyzer?

The most valuable feature of the solution is that it is a very user-friendly tool compared to other solutions.

See all answers

What is your experience regarding pricing and costs for ManageEngine Firewall Analyzer?

The pricing and overall licensing cost of ManageEngine Firewall Analyzer is very cost-effective compared to global co...

See all answers

What needs improvement with ManageEngine Firewall Analyzer?

To improve ManageEngine Firewall Analyzer, they need to implement Zero Touch Provisioning (ZTP) support for firewalls...

See all answers

What needs improvement with Tufin SecureCloud?

Tufin Orchestration Suite ( /products/tufin-orchestration-suite-reviews ) is not commonly used in Thailand due to a l...

See all answers

What is your primary use case for Tufin SecureCloud?

I have primarily used Skybox and AlgoSec ( /products/algosec-reviews ). I have also interacted with FireMon for compi...

See all answers

What advice do you have for others considering Tufin SecureCloud?

There is potential for improvement in explaining the analytics in the dashboard for Tufin Orchestration Suite. Tufin ...

See all answers

Comparisons

AlgoSec vs FireMon Security Manager

Compared 38% of the time

Skybox Security Suite vs FireMon Security Manager

Compared 7% of the time

RedSeal vs FireMon Security Manager

Compared 3% of the time

Palo Alto Networks Panorama vs FireMon Security Manager

Compared 3% of the time

More FireMon Security Manager Competitors

AlgoSec vs ManageEngine Firewall Analyzer

Compared 35% of the time

Palo Alto Networks Panorama vs ManageEngine Firewall Analyzer

Compared 12% of the time

Skybox Security Suite vs ManageEngine Firewall Analyzer

Compared 10% of the time

More ManageEngine Firewall Analyzer Competitors

AlgoSec vs Tufin Orchestration Suite

Compared 35% of the time

Skybox Security Suite vs Tufin Orchestration Suite

Compared 13% of the time

Palo Alto Networks Panorama vs Tufin Orchestration Suite

Compared 4% of the time

Opinnate vs Tufin Orchestration Suite

Compared 2% of the time

RedSeal vs Tufin Orchestration Suite

Compared 2% of the time

More Tufin Orchestration Suite Competitors

Product Reports

Buyer's Guide

FireMon Security Manager

September 2025

Download FireMon Security Manager product report

Buyer's Guide

ManageEngine Firewall Analyzer

September 2025

Download ManageEngine Firewall Analyzer product report

Buyer's Guide

Tufin Orchestration Suite

August 2025

Download Tufin Orchestration Suite product report

Also Known As

No data available

Tufin SecureCloud

Overview

The increasing complexity of networks, driven by the constant influx of new devices, applications, and cloud services, presents a daunting challenge for managing firewall policies and rules. A typical enterprise environment has millions of rules, and just one simple misconfiguration can lead to devastating consequences like compliance violations, outages, and data breaches.

FireMon’s Security Manager is a purpose-built network security policy management (NSPM) platform that automates the management of firewall and cloud security policies to eliminate policy-related risk, accurately and quickly change rules, and meet internal and external compliance requirements.

Reduce Risk Manage risk with real-time visibility and control
Manage Change Avoid misconfigurations, accelerate business, and improve security
Enforce and Maintain Compliance Avoid violations, avoid risk, and avoid fines

FireMon

ManageEngine Firewall Analyzer is an agent less log analytics and configuration management software that helps network administrators to centrally collect, archive, analyze their security device logs and generate forensic reports out of it.

Real-time event response system and Integrated Compliance Management module of Firewall Analyzer automates your end point security monitoring, network bandwidth monitoring and security & compliance auditing. Firewall Analyzer eases your Device Configuration Management by providing out-of-the-box reports and alerts for configuration changes. Firewall Analyzer is vendor-agnostic and supports almost all open source and commercial network firewalls like Check Point, Cisco, Juniper, Fortinet, Snort, Squid Project, SonicWALL, Palo Alto and more, IDS/IPS, VPNs, Proxies and other related security devices.

ManageEngine

Tufin enables organizations to automate their security policy visibility, risk management, provisioning and compliance across their multi-vendor, hybrid environment. Customers gain visibility and control across their network, ensure continuous compliance with security standards and embed security enforcement into workflows and development pipelines.

Tufin

Sample Customers

Convey, MGM Resorts International, Southwest Airlines, Alkami, Costco, Aetna, IBM, Verizon, Wells Fargo

WFP, NYC.gov, Sony Pictures, Franklin Security Bank, ITC INFOTECH

3M, AT&T, Blue Cross Blue Shield, BNP Parabas, ConocoPhillips, Deutsche Bank, GE, IBM, Pfizer, United States Postal Service

Buyer's Guide

Firewall Security Management

August 2025

Download Free Report

Find out what your peers are saying about AlgoSec, Tufin, Palo Alto Networks and others in Firewall Security Management. Updated: August 2025.

DOWNLOAD NOW

868,183 professionals have used our research since 2012.