FireMon Security Manager vs Tufin Orchestration Suite comparison

FireMon and Tufin are both solutions in the Firewall Security Management category. FireMon is ranked #4 with an average rating of 8.0, while Tufin is ranked #2 with an average rating of 8.0. FireMon holds a 17.8% mindshare in Firewall Security Management, compared to Tufin’s 22.6% mindshare. Additionally, 87% of FireMon users are willing to recommend the solution, compared to 91% of Tufin users who would recommend it.

FireMon Security Manager

Read 56 FireMon Security Manager reviews

3,429 Views
3,326 Comparison Views

87% willing to recommend

Tufin Orchestration Suite

Read 184 Tufin Orchestration Suite reviews

6,055 Views
5,631 Comparison Views

91% willing to recommend

FireMon Security Manager

Tufin Orchestration Suite

Comparison Buyer's Guide

Download the report

Executive SummaryUpdated on Jul 27, 2025

Tufin Orchestration Suite and FireMon Security Manager compete in the network security management space. FireMon seems to have the upper hand due to its proactive security intelligence and better real-time compliance management.

Features: Tufin Orchestration Suite offers comprehensive rule management and automation with its SecureTrack and SecureChange modules, providing users with unified security management, compliance testing, and extensive analysis for rule and network modifications. FireMon Security Manager, on the other hand, is recognized for robust policy optimization, rule cleanup capabilities, and its ability to work seamlessly across multiple platforms with strong real-time compliance management and security intelligence.

Room for Improvement: Tufin users are looking for improved cloud integration, enhanced automation, and better user interface design for increased usability. They also point out the need for comprehensive multi-vendor support and internal process efficiencies. FireMon users desire improved support for specific vendor devices and configurations, especially in proactive security intelligence and ease of use. Reporting functionalities and clearer licensing models need enhancement for both products.

Ease of Deployment and Customer Service: Tufin Orchestration Suite supports versatile deployment options, including on-premises, hybrid, and cloud environments. Customer service is generally well-regarded, although response times vary. FireMon Security Manager also offers a range of deployment environments and is praised for comprehensive customer support, though consistency in response times could be improved for both products.

Pricing and ROI: Tufin Orchestration Suite is noted for its high cost, presenting a barrier for small to medium-sized businesses, yet users report a significant ROI due to reduced manual effort and faster change times. FireMon Security Manager, while also expensive, is seen as providing good value with flexible pricing models perceived as more competitive than Tufin's. Both products offer ROI benefits through enhanced efficiency in rule management processes.

To learn more, read our detailed FireMon Security Manager vs. Tufin Orchestration Suite Report (Updated: September 2025).

Buyer's Guide

FireMon Security Manager vs. Tufin Orchestration Suite

September 2025

Download the complete report

Helped 867,676 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Categories and Ranking

FireMon Security Manager

Ranking in Firewall Security Management

4th

Average Rating

8.2

Reviews Sentiment

7.5

Number of Reviews

Ranking in other categories

No ranking in other categories

Tufin Orchestration Suite

Ranking in Firewall Security Management

2nd

Average Rating

8.0

Reviews Sentiment

7.2

Number of Reviews

184

Ranking in other categories

No ranking in other categories

Mindshare comparison

As of September 2025, in the Firewall Security Management category, the mindshare of FireMon Security Manager is 17.8%, up from 15.8% compared to the previous year. The mindshare of Tufin Orchestration Suite is 22.6%, up from 20.9% compared to the previous year. It is calculated based on PeerSpot user engagement data.

Firewall Security Management Market Share Distribution
Product	Market Share (%)
Tufin Orchestration Suite	22.6%
FireMon Security Manager	17.8%
Other	59.599999999999994%

Firewall Security Management

Featured Reviews

Ganesh-Khutwad

Senior Network Specialist at Tech Mahindra Limited

Rapid policy insights with robust dashboards and cross-vendor automation

FireMon Security Manager is excellent for real-time compliance management. It allows us to quickly retrieve any policy needed for testing and easily analyze it for loopholes. If a loophole exists, FireMon provides comprehensive details within the policy manager. It alerts us to firewall rule additions or changes that violate compliance policies. It supports various firewall platforms, including Checkpoint, Zscaler, Fortinet, Cisco, and AWS, and provides centralized management for all configured policies through a single console. FireMon Security Manager provides many features, like whether my firewall is compatible with required standards such as NTP and SNMP. Each compliance included in our RFPs is shown in the UI of FireMon. It gives robust and clear dashboards, making it easier to understand risks because the policies have ratings showing usage, and the number of hit attacks. It streamlines our compliance reporting processes by providing comprehensive risk and compliance assessments. It offers a range of features, including verification of firewall compatibility with protocols like NTP and SNMP, and detection of signal charges. FireMon effectively addresses all compliance requirements outlined in our RFPs. For instance, it can determine if firewalls or proxies within a stack are configured in Secure Mode or Active-Active mode. FireMon Security Manager enables us to generate reports on all these aspects, ensuring thorough compliance monitoring and documentation. FireMon Security Manager is robust and can help automate firewall policy changes across large multi-vendor enterprise environments. FireMon Security Manager helps automate firewall policy changes across various environments, including on-premises, cloud, hybrid, SASE, and SD-WAN. It also simplifies cleaning up firewall rules in our environment. The time required to accurately create, approve, and deploy firewall policy rules has been reduced. Tasks that took 30 minutes can now be completed in just five minutes using FireMon. FireMon provides immediate visibility into our policies through a robust and clear dashboard, making it easy to identify errors or misconfigurations based on the policy rating.

Read full review

MithatBulut

Network Security Engineer at TD SYNNEX

New employees can quickly grasp the various IPs, devices, and the network's logical and physical

Tufin is primarily used to orchestrate and manage network traffic and firewall devices. It is specifically useful for implementing firewall policies and handling requests from clients that require policy updates or changes Tufin simplifies understanding network topology. New employees can quickly…

Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Pros

"The most valuable feature is that everything is recorded in the historical logs, including the firewall rules, headcounts, object-level usage, and the rule documentation. The rule certification details are also there, which means that someone can be held accountable for a specific firewall rule."

"The unused objects is another nice feature, where it digs a little bit deeper into comparing the logs that it sees versus the configurations that it sees... The unused objects feature will go through in a pretty detailed way and show us which ones aren't being used. Or, if they are used, it will show us how often they're used."

"The most valuable feature for me is its capability for cleanup and managing the complexity of security products."

"Vendor agnostic when it comes to integrating with other product."

"When it comes to real-time compliance management, it is very good because it is able to compare changes in the configuration as well as giving us a timestamp. It also sends email alerts to our environment so we know if someone has made a change on the network. It gives us the whole picture of that change. Whether it is a configuration change or just a small comment, it gives us the before and after snapshot."

"The automation that the platform provides to create tickets reduces human error and more generally, reduces the operational overhead."

"I like the Security Manager console where we can see any changes that have been made or pull the results of an assessment and control the policies that we implement."

"The ease of use is the most valuable feature. There are a lot of products out there, but the ability to navigate through and use Firemon is very good."

More FireMon Security Manager pros

"Comparing the rules and policy browser is valuable to me. It gives me the ability to pull running configs and be able to analyze them without having to go directly into the firewall."

"Our customer has the ability to centrally monitor and view all changes that have been made in the network, and they are able to revert any problems that they encounter, if somebody has made a problematic change."

"We've scaled it to hundreds of firewalls."

"The most valuable feature are role and objects usage for individual objects and app usage."

"The clarity around the auditing provides the most value for us."

"The stability is bulletproof."

"The most valuable features are the Security Risks and Best Practices reporting/Rule base cleanup."

"The solution's most valuable features are its security policy and steps for deployment."

More Tufin Orchestration Suite pros

Cons

"The advanced features are complex in setting up the rules."

"We're working on implementing FireMon with our ticketing system service now. Having that would be an improvement."

"When it comes to real-time compliance management, something that is missing is alerting on certain, predefined controls. It would be good to have a predefined set of controls which, if not complied with in a newly set up rule, would create an alert for us. That is something that is missing, out-of-the-box."

"Some of the core functionality in our environment doesn't seem to work. We will get buggy code releases. They need to work on their Q&A of every code release."

"I think that having a more open system and providing documentation for it would be helpful for users like us. We are pretty adept and can navigate through the Linux software that the on-premises FireMon is based on. It would help us in the long run."

"Policy Planner requirements section is good, but could use some improvement to allow flexibility to enter different types of requests (modifying an existing policy, object or service group, for example) in a structured task format that can be auto-verified."

"It comes as a Linux appliance on a server and we're not a Linux shop, we're more of a Windows shop. It would be great if they could automate or integrate the backups into it and other things through their GUI interface, just to make the management of Linux a little more transparent."

"One area for 7.x customers that needs improvement is the migration. It is an involved process so get ready to spend some time getting your environment back to the way it was."

More FireMon Security Manager cons

"I would like to simplify the reports, and maybe have another view besides the charts. Possibly they could be more graphical."

"The solution does not have automation with other Firewalls."

"My worry with Tufin is that it cannot connect to Fortinet, which is what I want to do."

"Its price is reasonable, but it could be lower. It could have a more effective approach for creating and changing rules. It could provide advice or suggestions for a better understanding of rules and changing the rules. There should be suggestions for the rules that need to be changed to make them less risky."

"Integration for Layer 2 devices could be improved because it requires manual scripting."

"They've got such a large number of APIs, and it is so easy to use their APIs. Effectively, they allow us to use it with anything. The only way to improve it more is by offering support for implementing their APIs into certain hardware or software that we might use. They can provide support for implementing APIs."

"The change workflow process is flexible and customizable to some extent, but there is room for improvement. In some cases, we've found it difficult to get the exact thing which we were looking for. Then, we end up having to go and do the thing manually."

"The two main negative points with Tufin Orca are the absence of full support and that accommodation of files and tools is not provided in a good way."

More Tufin Orchestration Suite cons

Pricing and Cost Advice

"Relative to what it offers, the price is fair."

"Pricing model seems fair."

"Its pricing is good. Compared to others, it is not so expensive."

"It's a good value. From a licensing standpoint... it's very simple to understand, and gives us a good bang for the buck."

"FireMon is very expensive. I think that they charge a premium. In general, they are very pricey. Compared to their competitors, they cost a little more than the other solutions that we evaluated."

"We pay for it yearly."

"The pricing was very good during our initial year, but they increased it this year a little bit. The price is okay. It is not cheap, but it is still average."

"FireMon is cheaper than AlgoSec."

More FireMon Security Manager pricing and cost advice

"I just wrote a purchase order for it. It is a $150,000 a year."

"It's quite an expensive solution."

"The solution has helped us to reduce the time it takes to make changes. With Tufin, it takes ten to 15 minutes. Before, it was 30 minutes or more."

"We are seeing ROI in terms of having SecureApp."

"The price of Tufin could be lower."

"The licensing costs are a significant amount of money."

"There are ways to deploy the license to different types of firewall. However, if we decide to change the physical brand of the firewall, we need to go back to Tufin and modify the licensing. This is a hassle."

"We did look at less expensive solutions than Tufin, but being a corporation, this solution made sense."

More Tufin Orchestration Suite pricing and cost advice

See which vendors are best for you

Use our free recommendation engine to learn which Firewall Security Management solutions are best for your needs.

See recommendations

867,676 professionals have used our research since 2012.

Top Industries

By visitors reading reviews

Computer Software Company

15%

Financial Services Firm

14%

Manufacturing Company

11%

Comms Service Provider

Financial Services Firm

17%

Computer Software Company

13%

Manufacturing Company

11%

Retailer

Company Size

By reviewers

Large Enterprise

Midsize Enterprise

Small Business

By reviewers
Company Size	Count
Small Business	9
Midsize Enterprise	9
Large Enterprise	44

By reviewers
Company Size	Count
Small Business	29
Midsize Enterprise	13
Large Enterprise	152

Questions from the Community

What do you like most about FireMon?

I like the Security Manager console where we can see any changes that have been made or pull the results of an assessment and control the policies that we implement.

See all answers

What is your experience regarding pricing and costs for FireMon?

Comparatively, FireMon has a very good price and is below the general competition in cost. I have not seen any additional fees beyond the general contract fees for the usage I have. So, I have not ...

See all answers

What needs improvement with FireMon?

For one company I work with, I use Fortinet, and FireMon is not able to understand the zones that Fortinet uses. Part of that compliance piece does not provide me with the necessary information. An...

See all answers

What needs improvement with Tufin SecureCloud?

Tufin Orchestration Suite ( /products/tufin-orchestration-suite-reviews ) is not commonly used in Thailand due to a lack of local support, and many customers are switching to AlgoSec or other vendo...

See all answers

What is your primary use case for Tufin SecureCloud?

I have primarily used Skybox and AlgoSec ( /products/algosec-reviews ). I have also interacted with FireMon for compiling. However, I am not currently working with ACA, and I don't have any project...

See all answers

What advice do you have for others considering Tufin SecureCloud?

There is potential for improvement in explaining the analytics in the dashboard for Tufin Orchestration Suite. Tufin Orchestration Suite does provide good monitoring; however, interpreting the grap...

See all answers

Comparisons

AlgoSec vs FireMon Security Manager

Compared 38% of the time

Skybox Security Suite vs FireMon Security Manager

Compared 7% of the time

ManageEngine Firewall Analyzer vs FireMon Security Manager

Compared 4% of the time

RedSeal vs FireMon Security Manager

Compared 3% of the time

Palo Alto Networks Panorama vs FireMon Security Manager

Compared 3% of the time

More FireMon Security Manager Competitors

AlgoSec vs Tufin Orchestration Suite

Compared 36% of the time

Skybox Security Suite vs Tufin Orchestration Suite

Compared 14% of the time

Palo Alto Networks Panorama vs Tufin Orchestration Suite

Compared 4% of the time

ManageEngine Firewall Analyzer vs Tufin Orchestration Suite

Compared 3% of the time

Opinnate vs Tufin Orchestration Suite

Compared 3% of the time

More Tufin Orchestration Suite Competitors

Product Reports

Buyer's Guide

FireMon Security Manager

September 2025

Download FireMon Security Manager product report

Buyer's Guide

Tufin Orchestration Suite

August 2025

Download Tufin Orchestration Suite product report

Also Known As

No data available

Tufin SecureCloud

Overview

The increasing complexity of networks, driven by the constant influx of new devices, applications, and cloud services, presents a daunting challenge for managing firewall policies and rules. A typical enterprise environment has millions of rules, and just one simple misconfiguration can lead to devastating consequences like compliance violations, outages, and data breaches.

FireMon’s Security Manager is a purpose-built network security policy management (NSPM) platform that automates the management of firewall and cloud security policies to eliminate policy-related risk, accurately and quickly change rules, and meet internal and external compliance requirements.

Reduce Risk Manage risk with real-time visibility and control
Manage Change Avoid misconfigurations, accelerate business, and improve security
Enforce and Maintain Compliance Avoid violations, avoid risk, and avoid fines

FireMon

Tufin enables organizations to automate their security policy visibility, risk management, provisioning and compliance across their multi-vendor, hybrid environment. Customers gain visibility and control across their network, ensure continuous compliance with security standards and embed security enforcement into workflows and development pipelines.

Tufin

Sample Customers

Convey, MGM Resorts International, Southwest Airlines, Alkami, Costco, Aetna, IBM, Verizon, Wells Fargo

3M, AT&T, Blue Cross Blue Shield, BNP Parabas, ConocoPhillips, Deutsche Bank, GE, IBM, Pfizer, United States Postal Service

Buyer's Guide

FireMon Security Manager vs. Tufin Orchestration Suite

September 2025

Free Report: FireMon Security Manager vs. Tufin Orchestration Suite

Find out what your peers are saying about FireMon Security Manager vs. Tufin Orchestration Suite and other solutions. Updated: September 2025.

DOWNLOAD NOW

867,676 professionals have used our research since 2012.

See our FireMon Security Manager vs. Tufin Orchestration Suite report.

See our list of best Firewall Security Management vendors.

We monitor all Firewall Security Management reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.