RedSeal vs Tufin Orchestration Suite comparison

"The Vulnerability and Risk Management feature is valuable to us for keeping the security posture up-to-date and conducting regular continuous audits."

"RedSeal integrates the network and gives us a visual or graphical overview of our network. If an organization is geographically dispersed, for instance, with one office in Canada and one office in the Philippines, the whole network, including all devices, is integrated into RedSeal, and you can see from where the traffic is going in and out."

"RedSeal has different modules, such as the Analyzer module, which can be leveraged."

"If you want to understand your network environment as it relates to configuration issues, host/node vulnerabilities and firewall configurations, then I highly recommend that RedSeal be considered."

"The most valuable feature of the product to me is being able to ask what-if questions about traffic flows, which is a great ability to have for security and incident response."

"This is the only solution in the world that gives you a digital resilience score."

"RedSeal integrates the network and gives us a visual or graphical overview of our network; if an organization is geographically dispersed, for instance, with one office in Canada and one office in the Philippines, the whole network, including all devices, is integrated into RedSeal, and you can see from where the traffic is going in and out."

"The most valuable features are network mapping and configuration."

"The biggest benefit of this is that it allows us to see how security functions as a hole."

"The automation because it is saving a lot of work, time, and effort required to do all of our manual work. The change impact analysis is pretty good, and with the automation, it takes care of a lot of things which we would be doing manually."

"You can easily scale the solution if you need to."

"The most valuable feature is the compliance check and the recommendations that it makes."

"The automation piece is the most valuable feature: having SecureChange make the change on the firewalls, instead of my having to go manually make the changes on the vendor product."

"The solution is quite scalable."

"It provides a comprehensive overview of what our network looks like in terms of what is allowed and what is not, then how the traffic' is flowing with the Network Topology Map."

"I also have AlgoSec, and it seems to be much more complicated."

"The dashboard should be improved to make correlating data easier to do."

"One of the areas of concern is the GUI. It is important to our customers that the GUI looks beautiful. It's a Java Client, so you have a Java dependency."

"The dashboard should be improved to make correlating data easier to do."

"Sometimes, it required us to refresh the configuration. When we integrated any of the configurations into the device, sometimes, it could not detect the exact picture of that device. So, we had to reset the device to see that if it was giving true-positive results or false-positive results. In some cases, we were not able to get true-positive results. There was some kind of bug in that version. Its interface is not user-friendly and needs to be improved. It takes time to understand the interface and various options. Skybox has quite a user-friendly interface. They could provide a feature for compliance audit policy if it is already not there. A compliance audit policy ensures that all configurations are based on the best practices standards, such as CIS benchmarks standard or other similar standards. It provides visibility about whether your device configuration is based on best practices or not. Usually, such a feature is provided by other solutions such as Meteor or Tenable Nessus."

"There is room for improvement regarding customization and automation of reports."

"Although we are talking about a very robust platform, I would like to see the Windows compatible VM version come back."

"The network mapping/visualization could be improved significantly."

"There is room for improvement in integrating the OT security part and the private 5G security part in RedSeal."

"I would really like to see a new UI for SecureChange. SecureTrack 2.0 has quite an improvement in the UI and it flows more smoothly. The current SecureTrack and SecureChange are a little blocky, and sometimes loading a tab or a page is required to refresh information. Whereas in SecureTrack 2.0, they're starting to improve on that."

"It works really well when you have a single-vendor solution but it's just not as intuitive if you have back-to-back firewalls or you have a complex topology."

"Sometimes it's very difficult to get the ideal revenue out of this tool. It's expensive."

"We have a PS module that we have been developing since we started working with Tufin. It was around two years ago and still isn’t finalized."

"I would like to see better report integration in this solution."

"At least in our environment, the dynamic learning of the topology needs improvement."

"It needs more compatibility with older firewalls."

"My only complaint is that I would like to be able to export data to different formats."

"The pricing is based on the number of endpoints and devices, and we have seen it range from mid-five figures to low six figures."

"There are ways to deploy the license to different types of firewall. However, if we decide to change the physical brand of the firewall, we need to go back to Tufin and modify the licensing. This is a hassle."

"There is a permanent license for devices, but it's not relative to a device itself. Once you purchase 10 licenses for virtual appliances or virtual context, you can put them into different virtual firewalls, but you can reuse these licenses for other devices if you don't need them for the old ones."

"Our licensing fees are more than $100,000 USD per year."

"The licensing costs are around $250,000 to $300,000."

"The solution has helped us to reduce the time it takes to make changes. With Tufin, it takes ten to 15 minutes. Before, it was 30 minutes or more."

"We are seeing ROI in terms of having SecureApp."

"For us, the pricing was six out of ten, with ten being the most expensive and one being the cheapest."

"Tufin and AlgoSec were pretty much in the competitive price range, but this one provided us better integration into the Check Point environment."