Chart Key
Average Rating
Average rating based on reviews
Views
Number of total page views
Comparisons
Number of times compared to another product
Reviews
Total number of reviews on IT Central Station
Followers
Number of followers on IT Central Station
The total ranking of a product, represented by the bar length, is based on a weighted aggregate score. The score is calculated as follows: The product with the highest count in each area gets the highest available score. (20 points for Reviews; 16 points for Views, Comparisons, and Followers.) Every other product gets assigned points based on its total in proportion to the #1 product in that area. For example, if a product has 80% of the number of reviews compared to the product with the most reviews then the product's score for reviews would be 20% (weighting factor) * 80% = 16. For Average Rating, the maximum score is 32 points awarded linearly based on our rating scale of 1-10. If a product has fewer than ten reviews, the point contribution for Average Rating is reduced (one-third reduction in points for products with 5-9 reviews; two-thirds reduction for products with fewer than five reviews). Reviews that are more than 24 months old, as well as those written by resellers, are completely excluded from the ranking algorithm.
Most Views
From IT Central Station visitors
Most Followed
By IT Central Station users
Most Compared
From IT Central Station visitors

Firewall Security Management Reviews

Read top reviews of Firewall Security Management solutions from the IT Central Station community:
Your trust is our top concern, so companies can't alter or remove reviews.
Skybox Security
Reseller
Director, Security Architecture at a tech services company with 51-200 employees
May 23 2018

What is most valuable?

The Vulnerability Management module is among the ones we talk about the most and the one that customers are biting off on quite a bit. Skybox, in general, has quite a few features that are particularly useful to large clients, but their... more»

How has it helped my organization?

Specifically, in the Vulnerability Management piece, vulnerability management products are very noisy and they provide this arbitrary score called the CVSS that rates the criticality of the vulnerability. How bad would it be if somebody were... more»

What needs improvement?

The only place where Skybox has room for improvement, and they're working on releasing this, it's just a slow-go, is the UI. The user interface has historically been via a locally installed thick client. They are moving to a web-based console... more»
Skybox Security
Consultant
Sr. Consultant at a tech services company with 1,001-5,000 employees
Feb 12 2018

What is most valuable?

For us, it's more important for our firewalls, to maintain the configuration compliance, to look at duplication of rules; clean up functionalities on the firewall and compliance of the firewall. That's where it's most important. We're still... more»

How has it helped my organization?

It's given us more visibility in terms of what are the kinds of configurations that are on these devices, and how many of these are stale rules. So it's helped greatly in terms of cleaning up of rules, for sure. And it has definitely given a... more»

What needs improvement?

The primary room for improvement would be to enable a web interface, which is not something which is there in the product. This is supposed to have come a year, a year and a half ago, but still has failed to come out. It still needs a client... more»
Find out what your peers are saying about Tufin, AlgoSec, FireMon and others in Firewall Security Management.
279,484 professionals have used our research since 2012.
FireMon
Real User
Sr. Systems and Network Engineer at a recruiting/HR firm with 1,001-5,000 employees
Mar 08 2017

What is most valuable?

The most valuable feature is more or less the ability to look for the shadowed-based rules or rules that are being used, and also for change management, i.e., getting alerts from the system. This helps us to determine who is making the... more»

How has it helped my organization?

It's kind of a two-fold type thing for us. We were in the middle of a project, where we were migrating from one set of firewalls that were old to a newer set. So, this tool has allowed us to go through and identify rules that we could get rid... more»

What needs improvement?

So far, we're not too much into the product yet. However, we're not really liking the web interface. We enjoy the so-called fat client a lot better because it just gives a bit more of the opportunities to work with the software faster,... more»
FireMon
Real User
User at a financial services firm with 1,001-5,000 employees
Mar 02 2017

What is most valuable?

We use the forwarding capabilities because we don't have another way to report on the firewall. We use it for cleanup and also for our biannual firewall review. Pretty much that's the big reason that we use FireMon.

How has it helped my organization?

The time that it takes for us to do the review: Previous to FireMon, we would have to go through the firewall pretty much manually, every line. This took an incredible amount of time. With the FireMon product, we did notice a significant... more»

What needs improvement?

We've had issues with backups. We almost lost our database at one point. It would be nice to be able to back up the backup configuration to a network share or some other function. The only way that we know how to do it right now is to do a... more»
FireMon
Real User
Network Support Systems Manager at a retailer with 1,001-5,000 employees
Mar 20 2017

What is most valuable?

* The ability to look for shadow-based rules * The ability to look for rules that are being used * Change management * Gets alerts from the system

How has it helped my organization?

* The ability for spotting the shadow-based rules helps us to eliminate overlapping rules. These may not otherwise be needed or may be under-used. * Helps us to identify those items and gives us the ability to go back and audit the firewalls.... more»

What needs improvement?

So far, we're not too much into the product. * We don't quite like the web interface. * We enjoy the so-called Fact Client a lot better because it just gives a bit more of the opportunities to work with the software faster. There's been a... more»
Tufin
Real User
Staff Specialist at a financial services firm with 1,001-5,000 employees
Aug 17 2016

What is most valuable?

The way we've set up our policies are pretty unique in what they do, so there's not a lot of compare between them. But, historic is really important. We look at them and we say what is and what isn't important. We run through the compliance... more»

How has it helped my organization?

We perform a lot of compares that show what was and what is now in our rule sets. In case there are issues or when somebody says, "Hey, this was working but now it doesn't," or, "Oh, I'm pretty sure that was in there and you must have removed... more»

What needs improvement?

We’ve asked them how to shorten the length of the change reports for global rules. They're going to try to allow us to select whether the global rule is reporting, or they're going to tell us how to do it a different way. We just brought it... more»
FireMon
Consultant
Network Security Engineer at a tech company with 1,001-5,000 employees
Jan 19 2017

What is most valuable?

The most valuable feature is security management because it allows us to look inside the firewall and see things that the firewall doesn't report. For some of the things the firewall applications lack, we're able to gain insight with the... more»

How has it helped my organization?

For me, specifically, I use it for a lot of firewall migrations. We can see rule usage. On a project that I was on, we saw the rules on the migration. We pulled the rules out that weren't being used, and then we could take rules that were... more»

What needs improvement?

One area with room for improvement for me is doing the updates. We have to download it from User Center and then put it unto the machine through FTP, or something like that. I would rather just go to the GUI and hit the Update button, and it... more»
Tufin
Real User
Consulting Information Security Engineer at HCA
Aug 17 2016

What is most valuable?

The biggest thing that we have been using is the automated reporting. I work on a very specific portion of our network enclaving strategy. For the initial ones we’re working on, I get a big report every Monday that has a full listing of... more»

How has it helped my organization?

We've used some of the rules recommendation modules. You can give it a certain data feed and it will recommend a rule set to accommodate that. That's the other tool that has been helpful for us. Our biggest problem is that we have a very... more»

What needs improvement?

I haven't seen where they've gotten recently with the whole zone policy matrix that they showed us a year or so ago, but to me that's going to be one of the big things, it's going to drive us. There was a feature they were working on that... more»
Palo Alto Networks
Real User
Sr. Systems Analyst at a manufacturing company with 5,001-10,000 employees
Jun 14 2017

What is most valuable?

Panorama: Provides a central management capability for all of the firewalls. It has the ability to manage the devices in groups based on their use. We use the firewalls in two primary functions and the ability to provide management of the... more»

How has it helped my organization?

I can’t say that it has significantly improved the functions of the organization over the firewalls that we were previously using. The addition of a good central management capability has helped improve the management of the firewalls, but... more»

What needs improvement?

Panorama: The ability to add scheduled jobs would be a significant improvement. Panorama has the ability to push out OS updates, but it would be nice to be able to schedule those updates so not to affect the site during normal business hours.... more»
Tufin
Real User
Network Engineer with 1,001-5,000 employees
Jun 24 2016

What is most valuable?

We purchased Tufin for the rule based analysis, so that when we did a Check Point migration from the earlier versions everything was OK. We now have rule based analysis, and we can move in, see unused rules, and try to optimize the rule base. Tufin enabled us to clean out the rule base pre-migration. There's no point in migrating old and unused rules and objects... more»

What needs improvement?

SecureChange has been a bit of a challenge. It's been a long time coming, and I guess improvement is also needed in their relationship with the customer to get the initial functions of it working. It's more making the move towards SecureChange which possibly isn't down to them, it's probably down to our relationship with our reseller and nailing each other down.... more»
AlgoSec
Consultant
Security Consultant at Securelink
Nov 13 2016

What do you think of AlgoSec?

Good and bad experience - A case study of the use of AlgoSec FireFlow. The Good: ·         Cut turnaround time on firewall rule changes from weeks to days. ·         Improved network visibility via policy discovery, map and traffic simulations. ·         Increased accuracy of firewall changes with improved network security. ·         Highly improved traceability and accountability in the firewall change process. ·         It is easy to customise AlgoSec FireFlow to a quality system. The Bad: ...
FireMon
Real User
Information Security Officer at a university with 10,001+ employees
Apr 09 2017

What is most valuable?

The ability to audit our firewall rule base is my favorite feature. It allows us to determine which rules can be removed and it helps us reduce our security footprint.

How has it helped my organization?

Over the past two years, we have been able to identify a bunch of rules that were orphaned and no longer have any need. These rules were exposing our organization to undue risk associated with devices being exposed to the internet that... more»

What needs improvement?

What's funny is that if I had been asked eight months ago about areas with room for improvement, I would have said the product in general needed to be improved. It wasn't web-based. It was client-based and it was just kind of clunky. In the... more»
Tufin
Real User
Global Network Security Specialist at a pharma/biotech company with 1,001-5,000 employees
Jan 16 2017

What is most valuable?

Following installation, we mentioned to the SE what ports were on the rule already, and he responded that those were the right ports. So immediately, Tufin already saved us work. And there was already traffic to the destination of a requested... more»

How has it helped my organization?

From the very beginning, Tufin has kept our rule set compact so that we don't have to keep stacking up rule after rule. We still have to analyze and find rules that are too open, but it helps use make the right rules in the right places. It's... more»

What needs improvement?

I'd like to see code provisioning.
AlgoSec
Consultant
Security and Network Architect at a tech services company with 1,001-5,000 employees
Aug 31 2016

What is most valuable?

With a network like ours - more than 100 routing points with around 6 VRF on each - traffic simulation query is one of the most valuable feature on AFA. For FireFlow, workflow customization and active change are the best features. In... more»

How has it helped my organization?

This product allowed us to identify unused rules more easily and doing this simplifies policies in our firewall. We now have documentation of our application with objects sync with real configuration. Our approval in change management has... more»

What needs improvement?

A lot of areas have room for improvement!! This product is still young and in constant development. Interaction with a lot of vendors generates a lot of firewall options (specifically, a timer on services, application control, and so on...).... more»
FireMon
Real User
3rd Line Senior Engineer (Security) at a comms service provider with 1,001-5,000 employees
Mar 08 2017

What is most valuable?

The security policy manager: We run reports regularly for the customer to show unused tools and unused objects, and to clean up the firewall policy.

How has it helped my organization?

Our firewall policies - we work under the standard ITIL framework - and project managers are very good at adding rules to allow their projects to work. However, they're not so good at coming back when the project is finished or the solution... more»

What needs improvement?

I basically came on board to do the upgrade, which I've done. So, in the old product, we were able to get things out of the CSV file format and that allows you to then manipulate it, but now it's PDF mainly. Beforehand, we were able to take... more»
FireMon
Real User
Enterprise Security Architect at a insurance company with 1,001-5,000 employees
Jan 19 2017

What is most valuable?

Holistically, the product is well thought out. The normalization of the rule sets across different firewall platforms is all valuable to us. You can't really separate it out; for me, you can’t.

How has it helped my organization?

I can mention high-level stuff. Basically, it gives us visibility that we were lacking; having everything being able to be viewed in one pane of glass. Instead of having to go jumping all over the place into the different platforms, you can... more»

What needs improvement?

I can mention a ton of areas with room for improvement, but from a high-level standpoint, I just don't think version 8 was ready for prime time, yet. They're still working on it. There are still major swaths of the tool that need attention.... more»
Tufin
Real User
Security Manager at a financial services firm with 1,001-5,000 employees
Jul 21 2016

What is most valuable?

* The comparison of what changed. * I also like being able to use the historical data - did this access exist on this date a week ago, two weeks ago, etc. Because I'll have a customer who's like, "Hey, our traffic isn't working anymore. It... more»

How has it helped my organization?

We're currently using SecureTrack. We've deployed SecureChange, it's currently essentially at this point in a deaf status. But from SecureTrack, one of the most useful tools that I've had as well is the usage reports. Whether it's zero usage... more»

What needs improvement?

We're in talks with sales about them writing code to integrate with some of our different tools, so that's nice. I can't really think of any features that either don't exist or we haven't already requested. We've asked for integration with... more»
FireMon
Real User
Technology Engineer at a financial services firm with 501-1,000 employees
Feb 26 2017

What is most valuable?

Currently, the change management controls for monitoring the firewall configuration changes is the only feature that we really use, at this time.

How has it helped my organization?

With the change control functionality, if somebody was to go in and make a rule change on the firewall, it's configured to send a notification as soon as those changes have been made. If this happens outside of a change window, we can track... more»

What needs improvement?

We just updated to the latest version, so I haven't had a chance to play with the enhancements from what we were previously using. What I was looking for in the previous version was better capability of adding change control numbers manually... more»
Tufin
Real User
IT Security Engineer at a energy/utilities company with 1,001-5,000 employees
Jul 12 2016

What is most valuable?

Tufin gives you the ability see what changes have been made and who made them, as well as pinpoint what has changed so if there is an issue you can easily review it. I also like that if there is a new request that's coming in, you have the... more»

How has it helped my organization?

We use reports a lot for cleaning up, which is part of our regulatory requirement. You need to review the policies for any old reports, used objects or used services. That's basically what draws the purchase of this product. I also like the... more»

What needs improvement?

The ability to search could be improved, and it would be helpful to be able to display more than a hundred results on a search or share when you do the workflow with multiple people at the user level on your same team. If you have a team of... more»
Tufin
Real User
Network Lead - Security Architecture at a retailer with 1,001-5,000 employees
Aug 03 2016

What is most valuable?

The biggest value for me is the ease of implementation. I'm newer to the company, only been there a year, but the fact that I could could win and recommend this product within six hours of getting the license installed shows that there's... more»

How has it helped my organization?

I've been trying to clean up the firewall policies that I inherited from different iterations across topology changes -- from Cisco to Juniper to where we are now -- that have never been cleaned up. We're not publicly traded, so there's not a... more»

What needs improvement?

I'd like to see more work done on the topology side. Although the tool has gotten progressively better, topology still needs work. If it could be improved, that would really make the tool much more powerful. You can then have non-firewall... more»
Find out what your peers are saying about Tufin, AlgoSec, FireMon and others in Firewall Security Management.
279,484 professionals have used our research since 2012.
222
IT Security Consultant and Platform Architect
PMP, ITIL, FMSE. Veteran technology and operations executive with a strong hands-on technical program management background; former USAF combat flight Instructor EWO, STO Chief, and Cyber Crew Commander. Provides thought leadership and influences the direction of technical and business... more>>
1,153
Hands-on IT professional with 18 years of experience, 16 of which are specific to information security. Extensive, executive level and down, customer facing outside sales experience. Highly evolved presentation and interpersonal skills. A team leader with strong analytical, management,... more>>
243
Principal Security Consultant
15 years of experience in Information and Network Security in Enterprises. I am a B.E. Electronics and certified as: CCNA, MCP, CCNP, CWNA, CCIE written (R&S and Security), CISSP certified.
1,001
Freelance System Security Consultant
Someone who just wants to learn about security, cooking and creativity. Because with creativity, can make life more colorful Some collection of my little experiment about security (Indonesian version) : http://curve-sec.blogspot.com/ Some collection of our article about security... more>>
736
Independent Information Security Consultant, Writer, Professional Speaker, and Expert Witness
I am an independent information security consultant, expert witness, professional speaker and author with over 26 years of experience in IT - the last 20 of which I've dedicated to information security. I have appeared on CNN as an information security expert and have been quoted in the Wall... more>>
164
Senior IT Security Consultant
Network Security is fun! :-) Started of my security career with Clavister in 2003, from there have worked with a wide range of vendors like CheckPoint, Juniper, BlueCoat and f5. I have a big understanding of networking in general and network security in particular. During my years in the... more>>
272
Security Consultant
I am 53 year old, living just north of Copenhagen. I have worked with IT-security for more than 20 years with focus on all aspects from strategy, design, implementation and operations. I have further more 5 Years experience in the Telecommunication business. In my role today as Security... more>>

Sign Up with Email