Tufin Orchestration Suite and Snyk offer robust security solutions but cater to different aspects of security management. Tufin excels in network security compliance, while Snyk focuses on code security and vulnerabilities in open-source libraries. Users appreciate Tufin's advanced policy automation and integration capabilities, but Snyk's comprehensive vulnerability detection and developer-friendly tools provide considerable value.
Features: Tufin Orchestration Suite is praised for its extensive policy automation, integration with various firewalls, and compliance management. Snyk stands out with strong vulnerability scanning, integration with developer workflows, and detailed security insights directly in development tools.
Room for Improvement: Users suggest Tufin Orchestration Suite could improve in areas like more intuitive navigation and reduced complexity in setup. For Snyk, users desire enhancements in expanding language support and more comprehensive reports.
Ease of Deployment and Customer Service: Tufin Orchestration Suite has a demanding deployment process that could benefit from simplification, though its customer service is highly rated. Snyk offers a seamless and fast deployment experience with solid customer support.
Pricing and ROI: Tufin Orchestration Suite is considered more expensive with higher setup costs but offers significant long-term ROI through enhanced security policies. Snyk, while less costly upfront, also provides excellent ROI by integrating security into development processes.
The Orchestration Suite saves time when implementing rules.
Our long-standing association has ensured smooth communication, resulting in favorable support experiences and satisfactory issue resolution.
Their response time aligns with their SLA commitments.
In recent years, they have stopped providing specialized engineering support.
The support team is effective; they connect to the network quickly and help resolve any issues that arise.
The team is eager to help in fixing issues.
Snyk allows for scaling across large organizations, accommodating tens of thousands of applications and over 60,000 repositories.
One key feature we are currently examining with Veracode is AIVSS (Artificial Intelligence VSS), which is an extension of CVSS to cover use cases or top 10 LLM findings during code scanning.
It lacks the ability to select branches on its Web UI, forcing users to rely on CLI or CI/CD for that functionality.
The inclusion of AI to remove false positives would be beneficial.
The analytics features of Tufin Orchestration Suite are challenging to use and require technical expertise, which is a concern as there is not much knowledge in this field in Thailand.
Issues can arise in larger enterprises, particularly concerning policy-based forwarding and NAT traffic.
The design needs improvement, particularly in recognizing target devices and target files.
After negotiations, we received a special package with a good price point.
Snyk is recognized as the cheapest option we have evaluated.
FireMon and Skybox are considered more cost-effective.
The pricing of Orchestration Suite is high, which is a point for improvement.
Tufin and AlgoSec are at the same level in terms of pricing.
Snyk helps detect vulnerabilities before code moves to production, allowing for integration with DevOps and providing a shift-left advantage by identifying and fixing bugs before deployment.
Our integration of Snyk into GitHub allows us to automatically scan codebases and identify issues, which has improved efficiency.
The best feature of Snyk is the integration with our ticketing system, which is Jira.
AlgoSec adds more value with its vulnerability control, which benefits organizations by reducing expenses associated with audits.
New employees can quickly grasp the various IPs, devices, and the network's logical and physical layout within a short period.
It offers automation capabilities that are very helpful, especially for network security orchestration and applying policies.
| Product | Market Share (%) |
|---|---|
| Snyk | 7.2% |
| SonarQube Server (formerly SonarQube) | 22.4% |
| Checkmarx One | 10.3% |
| Other | 60.1% |
| Product | Market Share (%) |
|---|---|
| Tufin Orchestration Suite | 22.8% |
| AlgoSec | 22.6% |
| FireMon Security Manager | 17.9% |
| Other | 36.699999999999996% |
| Company Size | Count |
|---|---|
| Small Business | 20 |
| Midsize Enterprise | 8 |
| Large Enterprise | 20 |
| Company Size | Count |
|---|---|
| Small Business | 29 |
| Midsize Enterprise | 13 |
| Large Enterprise | 152 |
Snyk's AI Trust Platform empowers developers to innovate securely in AI-driven environments, ensuring rapid and secure software development with enhanced policy governance.
Snyk’s platform integrates AI-ready engines across the software development lifecycle, offering broad coverage with high speed and accuracy essential for fast-paced coding environments. AI-driven features include visibility, prioritization, and tailored security policies that enable proactive threat prevention and quick remediation. By focusing on LLM engineering and AI code analysis, Snyk supports secure and productive development processes. The platform's partnerships, including GenAI code assistants, enhance AI application security by addressing new threats and code velocity challenges.
What are the key features of Snyk?Snyk is implemented across industries focusing on agile development and DevSecOps, enhancing software delivery speed and security. It is widely used for continuous monitoring and adherence to security and licensing standards, especially in environments relying on Docker image security and CI/CD pipeline integration.
Tufin enables organizations to automate their security policy visibility, risk management, provisioning and compliance across their multi-vendor, hybrid environment. Customers gain visibility and control across their network, ensure continuous compliance with security standards and embed security enforcement into workflows and development pipelines.
We monitor all Application Security Tools reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.
