Skybox Security Suite Reviews

Auditing firewall changes on a weekly basis. We use the Network and the Firewall modules. Firewall as I said, and we use the Network and Firewall for PCI compliance reporting.

It has automated things. What was a manual process is now just running a report and delivering it to the people who have to mitigate the issues. A better workflow.

It's the firewall change audit every week. Also, being able to track firewall ACL usage, so that we can produce semiannual reports on ACL usage and on shadowed and redundant rules on the firewall.

It's tough to say, because the areas of improvement, I understand the difficulty. For example, they pull configs from thousands of types of devices, and it's difficult for them to stay on top of when vendors change the way their commands work. If anything, it would be staying on top of the collector scripts, but I understand that's a very tough challenge.

We had an issue one time, but it was related to a major release upgrade. But that happens every now and then with vendors. 

We've had no need to scale it.

 Excellent. They're right on top of it. Very reactive.

Straightforward.

The product's pricing is excellent value.

In terms of licensing, make sure you understand your network components, all your hops through your network, thoroughly, before you decide on the total cost. If you want to do point-to-point flow analysis and such, you need to have the configuration of all the devices in between point A and point B. A lot of people don't realize all their network components until they start using this product.

We evaluated FireMon versus Skybox when we selected Skybox - they were really the two that were best at doing automated reporting for PCI. It was a compliance issue. We thought Skybox really fit our needs best.

Other than what I said - ensuring that you have a really good understanding of all the network components that you have to ingest configurations from - definitely take it out for a proof of concept for 30 days. There are a lot of features in here that we don't use, Change Management and stuff like that, that you want to take a look at and see if they fit your needs.

I would say the reason I can't go higher than eight out of 10 is that their major release announcements aren't always straightforward. You usually discover that there is a new major release when going to their website and you discover it on your own. So they're not really good at major release announcements. 

We use the firewall assurance and the network assurance when we use change manager to check any changes in our firewall. We also use FortiGate's firewall for all our company. For six months, until 2020, we used the vulnerability control module to analyze our infrastructure.

For one of my customers, we used firewall assurance, network assurance and change manager - three modules. We optimized the firewall appliance and rules for one of the Ukrainian banks.

Skybox Security Suite is a great, strong solution. But you need a good engineer with high-level technical skills. For businesses it is a great solution - you look at the pie chart and understand everything. But if we talk about technical expertise, you need one or two technical expertise guys on your team to support this platform. You need to check, understand and discuss all cases and events, analyze these events, and make changes in your infrastructure. In terms of the technical aspect, it's good. For businesses, it is great.

The features that I have found most valuable with Skybox Security Suite, and this is because I work on the security side, are the firewall assurance, the change manager and the vulnerability control. These three features are the most impressive from Skybox Security.

In terms of the firewall rules, compliance, and vulnerability control, I need to understand what changes were provided from my IT team. I need to understand how these changes impact our compliance. I need to understand this to make decisions.

In terms of the vulnerability control, we need to understand how changes in our infrastructure impact the security in our company, such as having an open port to LinkedIn or Facebook. This could be very bad for the cybersecurity in our company, because some hackers or some non-loyal employees could make a lot of trouble.

So we need to understand how our changes impact the cybersecurity of our company. And Skybox Security is one of greatest solutions for this because you can see the firewall and the network infrastructure and you understand what's happening and how it could impact your cybersecurity.

In terms of what could be improved, I would say support for Cisco Firepower. This is one of the biggest segments in the Ukraine market. Many customers use Cisco Firepower. It is not a good solution for me, but it make sense. The second feature that could be improved is a deeper integration with Palo Alto. One of my customers uses Palo Alto and during the trial period with Skybox Security, we had some issues because when the IT administrator used the rules Skybox Security didn't understand. But it's not really a problem with Skybox Security. This was a problem for the company who used these stupid rules.

I have been using Skybox Security Suite for the last 15 months. 

In terms of stability, humans write the code. So any solution will have some issues. So yeah, we have one or two issues, but for me, Skybox Security support is one of quicker supports in the world. I am familiar with support from Symantec and from Microsoft, these are bad support-wise. I also know about the support from McAfee and SolarWinds. For me, SolarWinds, Skybox and FireEye have quick, good support.

Support is good for me.

The initial setup with Skybox Security is hard. You need one or two strong security engineers on your team. We have that. One of my colleagues has great experience as a cybersecurity engineer officer. So we deployed, but during deployment we asked the Skybox team for support. You need to understand what you are doing and why you are doing it.

We use an NFR, not for resale, license because we have a strong relationship with Skybox Security. But Skybox Security sent me yearly support for the license, not monthly.

Skybox Security has good pricing.

If you need something like Skybox, you would pay more money than for a cybersecurity platform, because you need FireMon for firewalls. For firewalls, you would need a subscription to Cisco Tetration, for example, or for something else. These are more expensive solutions in collaboration. So if you want to save money and save time, use Skybox Security.

I would absolutely recommend using Skybox Security.

If you need to check compliance and to understand how your IT teams work, use Skybox Security. If you need understand, like a clear glass of water, how your IT infrastructure works, use Skybox.

Tenable or Qualys or Rapid7 vulnerability controls in your infrastructure could be installed for vulnerability scans. But they don't know what kind of attack could be used or what vector of attack could be used. If you use Skybox you will see the impact, all the issues with your infrastructure and your configuration, and you can quickly change the situation to be more protected from outside and inside attacks.

On a scale of one to ten, I would give Skybox Security an eight.

I am impressed with the tool's change management, firewall and network assurance. 

The solution needs improvement in firewall configuration checks. I would also like to see more configuration checks for Forcepoint and for other non-supported firewalls. 

I have been using the product for three years. 

My company has 20 users for the product. 

I would rate the solution's setup a ten out of ten and is straightforward. The product's deployment takes one week to complete. 

I would rate the tool's pricing an eight out of ten. 

I would rate the product a ten out of ten. 

Skybox Security Suite is used for security assessments. They have a central part of the security solution that aggregates assets and layers. It's an all-around solution for the security posture.

The most valuable features of Skybox Security Suite are all the modules that are provided, such as vulnerability assessments and network, and firewall assessments.

Skybox Security Suite can improve the change management module. It is the one part of the tool that is used with the firewall devices and you have a change management module that is used to record changes of all firewalls in the company. It's not compatible with all brands, this is where they can improve the solution.

I have been using Skybox Security Suite for three years.

Skybox Security Suite is stable.

The scalability of the Skybox Security Suite is good. You can put as many collectors that you need. We have three or four large installations and we didn't have any major issues.

We used the technical support from Skybox Security Suite two or three times. We had some problems with calling from Italy and this individual was really great about the technical support. He had a deep knowledge of the complete solutions. We have great support from him.

I rate the support from Skybox Security Suite a five out of five.

Positive

The initial setup of Skybox Security Suite is straightforward. If you buy a virtual appliance, it's already set up. You only need to add layer three devices and the other sources for all the assets in the company. The documentation is easy to follow and useful.

The price of the Skybox Security Suite can be expensive.

I have evaluated other solutions.

I would recommend others to try Skybox Security Suite before purchasing it because it replaces a couple of solutions from different vendors. If you have this all-in-one solution for that part of firewalls, network devices, and assets, all in one place, you can simulate the attack vector before you made the changes to the system. I would advise that your enterprise company purchase the solution because if you want to add the assets and they are the most costly, it's not an inexpensive solution. If you want to monitor firewalls and network devices, then the cost is reasonable.

I rate Skybox Security Suite a nine out of ten.

Skybox Security Suite does not have much competition but there other ones that are available are lacking features. This is the most complete solution available.

The primary use of this solution is as a firewall and for cybersecurity.

We are a solution provider and this is one of the security solutions that we implement for our customers.

Our customers have not had any complaints about the Skybox Security Suite.

The most valuable features are Firewall Assurance and Vulnerability Control.

This solution is easy to use.

This device has support for 130 vendors.

The most recent update was not tested with all of the vendors before it was released, so some of the features are misbehaving.

I have been using Skybox Security Suite for about six months.

Our customers have not faced any issues with stability.

We have not had to contact technical support.

The initial setup is easy.

We have an in-house team to deploy this solution. We have four or five engineers who can deploy and perform maintenance.

The price is not expensive.

This solution is pretty good. Our customers have found that Skybox has a lot of good features and I don't expect that any of them will be changing to another product.

I would rate this solution a nine out of ten.

The use case is firewall rule lifecycle management.

This is something we are on the way to doing.

Network path analysis is the most valuable feature. There is a lot of work in my team to support internal and external customers, to answer their questions and difficulties with connectivity that doesn’t work. Mostly, the problem is missing orders. So if the customer can do the network path analysis for himself, the customer is able to write the request for the missing connectivity, without any support from my team.

Aside from Firewall Assurance, we are using Network Assurance and Change Manager for an overview of the whole network and for documenting requests and the recertification of the ruleset. 

At the moment we have a lot of work in implementing the tool in our workflow, so we are not looking for new features. But this could change in the next six to 12 months.

We have had some issues implementing the tool, but we are in contact with Professional Services to fix them.

No issues with scalability at the moment.

We are still in project mode, and we have direct contact.

No previous solution.

It was not so straightforward, but we bought onsite support from Skybox Professional Services.

The pricing is high, and the licensing model needs more flexibility.

In my case it was important to know the workflow, and then to look for a tool that could support this workflow to make it easier.

We use it for change management control and firewall policy management.This helps is keeping the compliance is Check

When we are adding new users to the network it has an impact on the security posture of the organization. So we use this product to do analysis, what kind of impact it will have on the security. What are the particular applications which may be required in terms of access controls, what are the changes, what are the policies we should put on the firewall? And in case we need to have a temporary policy, we can then revert back to the original one. All of these things have really helped us improve the security and network systems.

Change Manager is most important because of the impact on each other of a network change or a firewall change. We want to understand this and to know, beforehand, what the impact of a change will be. We are a large network so that is a very important tool. It's the most important one to use.

We really need to see how it can help us with cloud connectivity. It's there but I think it could give us a far better visualization.

It's a stable product.

We've had no issues with scalability.

Technical support is not something which I would rate very high. Support is available but they need to ensure that they bring in their local team to give us support. I wouldn't say that it is bad, but it's not top-notch.

We were not using any solution before this one.

The initial setup was complex, a little complex, but I think that is what the product entails. There was good documentation available on site from Skybox.

Pricing is on the higher side.

In terms of licensing, you should buy the complete suite rather than buying only the Change Manager. I think Change Manager with Vulnerability Control is something that would be interesting to look at.

We did evaluate other products, including Tufin, but we chose this one.

Anyone implementing this product should bring together the teams which have security and network understanding, as a part of the project and, of course, they should look into the product properly before they implement it.

I rate this product at about seven out of ten. The product is good but pricing and technical support are the ones which take marks off.

Skybox Security Suite is a major security services provider that offers penetration testing and network standard services for some of our customers. We were able to use it and support their tactics. It helps us better understand complicated situations.

We have been able to generate reliable results with Skybox Security Suite. Getting a hold of this information from customers and our business competitors is often difficult to do within our customers' timelines.

It has a good policy management feature and can provide customers with good quality outputs. 

The price is costly, and I hope they can reduce the cost.

We have been using Skybox Security Suite for about six months.

Technical support is pretty good, but it could be better.

The initial setup was pretty straightforward. It didn't take us much time to deploy it and start using it.

We deployed it in-house within five working days. They provided us with a manual and some guides, and we were able to do it.

It's expensive.

On a scale from one to ten, I would give Skybox Security Suite a nine.