AlgoSec Room for Improvement

reviewer1098015
Network Security Engineer/Architect at a tech services company with 1,001-5,000 employees
In our case it would be very important to improve support to Dell switches and also some Juniper switches, which we have a lot of in our company network. This has been our difficulty for the full automation on the Fireflow. If all our network devices were Cisco I'm sure we would have the network map complete very easily and the full automation working with much less effort. We already asked Algosec for the support of the switches we have that are not natively supported for the future versions and we expect that we are lucky enough for them to be supported on the next releases, although there are some ways of working around non-natively supported switches to complete the network map. View full review »
Sergi
Service Delivery Manager at Schneider Electric
What the technical teams report to me is that the network maps are a concern and should be improved. It would be easier if the network maps could be updated using the GUI portal instead of from the OS. This would benefit the operations teams working daily with this tool. In the end, we are striving to improve efficiency, and taking into account that Operations are really under pressure from SLAs to keep support ticket queues clean, and with the least amount of backfill possible, it is key to get better tools that make it easier and faster to update the network maps. View full review »
NetAdm81724
Network Administrator at City of Calgary
We love all the features of this device. It can be a bit expensive for small companies but they also have a VM model for that. It seems that AlgoSec created a VSYS (Virtual system) for each virtual router name, even though our firewall has only a single VSYS. We are ok to work with this, but if this can be fixed in a future release then that will be great. View full review »
Learn what your peers think about AlgoSec. Get advice and tips from experienced pros sharing their opinions. Updated: January 2021.
455,536 professionals have used our research since 2012.
Amit Gumber
Senior Manager at HCL Technologies
We are running multiple hybrid cloud solutions, working with cloud providers, and looking for API integrations with cloud and related interoperability. Sometimes, when we are trying to delete or disable any rule, it takes more time than expected. Sometimes, the web browser has issues with slowness. It can be worked out with a click or two. View full review »
Ricardo Fernandes
Resp. Area de Segurança at REN
AlgoBot should be more developed by adding more features to the chat. We will be integrating with Cisco ACI soon. Hopefully, new features with this integration will be developed as well in terms of automation. I came across a difficulty recently with a BGP enabled firewall that had a large number of routes. This wasn't directly supported due to a 3000 rule per firewall limit. View full review »
Riyas Mohammed
User
This product could be improved in several ways, including: * More device support - such as barracuda devices * An automated rollback process and options in active push. when we do a active push Algosec takes a policy backup for recovery purpose. if we did any change using active push from Algosec and if the customer wanted to rollback the particular configuration, better if Algosec able provide automated rollback process through AFF rather creating a manual a ticket. * Software-defined WAN integration and support * Application-aware policy identification and optimization - now a days most of NGFW are creating applications (such as Salesforce, Skype for business etc..) aware policies using their application database. normally destination object will be these applications and not the legacy objects that we created in firewall. if Algosec able to understand these application it will be good move for future market. View full review »
reviewer1175712
User at a energy/utilities company with 10,001+ employees
Support for Layer 7 policies, including User-ID and threat profiles with Palo Alto firewalls, has been a pain point from us. We would like to include the additional info specifically because we believe it changes the riskiness of the rule if it is only set for a specific user or a group of users. For example, if we have what looks like an "allow all" to a certain /24 network, but for only one user, we would give that a different score than if no user was identified. View full review »
Jeffrey Cherpeski
MITP-2 at State of Nevada Department of Administration Message
I can't think of specific improvements. If anything, the product has been improving in usefulness constantly. View full review »
Nicholas Maurel
Digital Security Specialist at Derivco
There are areas where auditing rule changes are not accurate. It is important to be accurate when using rule changes, as users need to be accountable for their changes; however, I cannot trust AlgoSec when rule changes come through on reports as they reflect incorrectly. I have taken this up with support and have never really had a resolution for this. I would like to see enhanced dashboards or build meaningful reports for executive consumption. AlgoSec is a fantastic product, and I would like to see more "granular" breakdowns of traffic on IPT traffic analysis for source and destination, as the way it does it currently does not allow me to self problems for rules with ANY in the destination. View full review »
reviewer1449453
Managed Security Services Product Manager at a comms service provider with 10,001+ employees
AlgoSec can probably do better at introducing features for the cloud firewall scenarios. This is something that will probably help customers. It needs a hybrid scenario that includes private cloud, public cloud, and on-prem things. If a feature could cover all three different types of deployment, that could probably make it even more desirable for clients. View full review »
MarcelTe
IT Technical Consultant at Schneider Electric
There are a few things that we have already raised to AlgoSec in order to improve the tool. First, as the highest volume in our network is SaaS traffic, we need to secure this connection. To secure SaaS traffic there are a few vendors such as Palo Alto and Zscaler, but AlgoSec is not yet able to push rules onto these clouds. It’s in the roadmap but this is something that blocks our whole design. The network map design is not very useful for the administrator as the information displayed is not user-friendly. View full review »
reviewer1433391
Network and Security Engineer at Inmarsat
Nothing comes to mind in terms of things that need to be improved. In terms of additional features in the next release, more integration with SD-WAN would be valuable. I would also like to see more integration with Cloud security products and services but overall, the product compatibility and integration with multi-vendor and differing platforms/environments is pretty comprehensive. That said, with the fast-moving nature of SD-wan and Cloud Security, product features and enhancements will need to keep pace because clearly, Cloud Security is where the industry will be focusing. View full review »
MarkG
IT Security Manager at a sports company with 10,001+ employees
In my opinion, the user should be granted more flexibility to choose exactly which devices per CMA should be analyzed. The process to replace a decommissioned device with a new device is not straightforward. With the upgrade to CheckPoint R80.xx we have started to see some issues, although this version was already some time on the market, hence I was surprised that there was no full compatibility achieved. Nevertheless, working with support and professional services solved our problems. View full review »
Paulo Ataides
Senior Information Technology Security Analyst at a integrator with 1,001-5,000 employees
I would like to see support more technologies, but I know that AlgoSec is always in the process of evolution. Perhaps a better financial option would allow customers to choose the complete solution. In an environment that is very large, with many firewalls and routers, it is sometimes impossible to buy all of the licenses. This makes the AFF solution impossible. View full review »
Sahanawaz khan
Sr Platform Owner at Emirates NBD
AlgoSec should explore integrating more multi-vendor platforms and should be looking towards ready infrastructure for providing Infrastructure as service (IAAS) on any cloud platforms as the trend and technology is gradually moving from In House platforms to Cloud platforms. Algosec should also be exploring the integration with the open source firewalls as well. The GUI features of Algosec solution should be more flexible to use and adopt. View full review »
Paltxe
Network Engineer at Schneider Electric
It would be very helpful to have a direct link to the relevant firewall policy embedded within reports when there are warnings or risks indicated. Regardless of how serious the risk is, we could jump to the policy with a single click. In this way, the administration would be much easier and we would not have to be changing the screen every time we want to look at or modify something in our firewall. I understand that they are third-party software packages that can achieve this, but it would be more comfortable to have it integrated. View full review »
TiagoCerqueira
Network and Security Engineer at Euronext Technologies
The product is severely lacking in vendor support. They claim to support some devices, but when you dig deeper, it is only basic support, with enterprise-grade features for those devices being unsupported. This is a big deal for us, as several sections of our network are not fully supported which, in turn, does not allow us to fully automate rule creation. Moreover, we cannot perform end to end connectivity checks. One such feature is the lack of VRRP support on devices other than Cisco or Juniper, which causes the software to interpret a non-existent router as the next hop for a particular flow (the VIP address of the VRRP). View full review »
Srdjan
Senior Technical and Integration Designer / Center of Excellence / Europe & Indonesia at Ahold Delhaize
All of the search options needed are there but the search menu could be a bit more intuitive. In other words, I can perform any search I want without any problems but combining different search parameters can sometimes be a problem. Creating more intuitive menus could be helpful, especially for the first-time users. For example, it would be useful to be able to save searches with complex structure so they can be easily reused with simple change of parameter. Also, "contain" criteria sometimes misses just like ability to search using any value in basic search box, instead of reaching out to Advanced search (it would be great if simple typing IP address, or Project ID in basic search box lists all rules containing such a value). View full review »
Renato Marques Dos Reis Paula
Senior Security Analyst at Compugraf
I would like an analysis to be created for user group rules (Check Point - identity awareness). Current versions of AlgoSec do not perform analysis of Identity awareness (Check Point). It would be important for the user to be able to request a rule by an access role group and then AlgoSec would create this rule automatically in the firewall. An improvement in tool performance would be important. Environments with many devices need a lot of hardware resources to avoid slowdowns. Memory consumption of the server is very high. View full review »
reviewer1340760
Network & Collaboration Engineer at Btg Pactual S.A.
The product should support more vendors with the same in-depth analysis that it already is providing. This would give more reasons to for other companies to adopt it and make us preserve the investment in case we change the running environment. View full review »
reviewer1432929
Network Security Engineer III at Choctaw Nation of Oklahoma
This is a tough one because it has a lot of good features. I think that the rate of false positives can be improved. I would like a FireFlow or packet-tracer-like capability at a lower licensing level. I liked the additional capabilities for an analyst or lower-level network admin or service desk tech to be able to check the rules to see if there is something blocking the traffic. However, I was not able to get the licensing approved above just FA. I like the training available as it is very informative, but, I wish it was just available from YouTube and I could easily play it from my cell phone without additional logins. View full review »
reviewer1126863
User with 10,001+ employees
The user interface is better than some competitors, but it is starting to get old. Space is not always fully used, especially for the risk and compliance part. As example today, Excel file should be used to deal with network segment definition and risk matrix, it is hard to do it directly from user interface and there is no way to organize, order a set of test. Priority should be to improve the user interface for the risk and compliance part, making it more responsive and user-friendly. View full review »
NetworkAdmin
Network Engineer at Ti Automotive
The GUI has not been upgraded for a long time and could use updating. View full review »
Tim Wackenhuth
IT Security Engineer III at Paychex, Inc.
I would like to see more object-based reports on groups and object usage. When cleaning up old rules, it is easy to disable the rule and then delete after a while. Trying to find unused groups or used objects in groups gets a little harder and I would like to see an easier view into those objects. View full review »
Nick Rose
Network Manager at iPSL
* The maps are a little clunky and could be made easier with some automatic layout technology which assists in spacing out the devices for easier viewing. View full review »
Sergio Vieira
Security Architect, InfoSec at Euronext
The reporting component of AlgoSec Firewall Analyzer is something that, in my view, has room for improvement. It will be welcome in a future version the possibility of having greater granularity, for example when defining the information that we want to see in the reports, to define customized reports by group / user and to make a scheduled sent of the reports. Being more specific, in our use case for operational teams the report to send would only be the summary of changes of all the rules of a day by Firewall. Focused, without adding unnecessary information. Other use case is for GRC teams. The report to send should only be the summary of risk changes of a week or a month, per Firewall. Again focused, without adding unnecessary information. View full review »
reviewer1114632
User at a transportation company with 10,001+ employees
Some UI experience is a little clunky (for e.g. MAPS module) and could be made more user-friendly. We experienced some initial challenges with technical support, although this considerably improved once the teams got to know one another. The API support isn't as versatile as we would like it to be. It needs more integration. View full review »
Sunil Kumar.
User at Maple Leaf Foods
There is huge scope for improvement in the level of support, especially around the issue of resolution time. That is the only negative point I find in the solution. I hope you guys will work on it and improve your resolution time which will help customers to keep their AlgoSec device healthy. View full review »
reviewer1275342
IP network expert at a comms service provider with 201-500 employees
I would like to be able to see what objects have the same IP, but different names in different firewalls. Since the system is able to show all of the objects for the integrated devices, it can be confusing if one particular object (eg. IP address/host) has different names in different firewalls. View full review »
reviewer1173033
DevOps Engineer at a tech company with 10,001+ employees
* AlgoSec support needs improvement, and support needs training to better understand customer issues. ( Support team repeatedly fails to understand the customer issues, Response to the support ticket based on the severity is very poor, support team responses to severity 1 or 2 tickets are very very slow. Customer support representative need training on how to handle severity 1 or 2 tickets) * Integration with other appliances needs improvement. ( AlgoSec integration with other ticketing systems like Service Manager / Service now is not good, It needs to have better integration with ticketing systems like Service Now and Atlassian JIRA) * Documentation needs improvement. ( There is lack of documentation integration with other ticketing systems like HP service manager, Rest APIs, SOAP) * There are limited sets of Python API calls, so they need to add more features in the API. * The FireFlow template does not allow the user to perform external actions like sending an email or triggering a specific action. It needs improvement there. View full review »
Julian Santos
User at a wireless company with 10,001+ employees
I believe Active Change needs to be improved because not all products are supported, and some functions cannot be implemented by Active Change either. Technical support needs to find solutions more quickly. Active Change could implement routes in Firewalls, it should also be able to perform the creation of APP control and URL filter rules. View full review »
reviewer1278546
Senior Network Engineer at a energy/utilities company with 1,001-5,000 employees
There are sometimes issues with the Risky Rules reports where the number of hits is registering zero, but we know that this is incorrect because we have checked the rules and see that they are indeed registering traffic. Sometimes the Trust setting on Firewall rules is changing to trusted by itself. View full review »
reviewer1068567
User
There is room for improvement in the rollback process. What we would like to see in the future is related to support. For integration with newly supported devices, we require a proper support matrix with an escalation process. View full review »
Alberto Selma Tamarit
Senior Networking Engineer at Schneider Electric
It would be nice to have a good tool for network map discovery in the GUI to make it more user-friendly. I would also like to be able to check and modify network maps in a graphical and more intuitive way. This will improve our network overview for new deployments and troubleshooting. An API to connect to Palo Alto Prisma and Zscaler to be used after SD-WAN deployment would be a helpful feature. We have discussed this with AlgoSec and are hoping to see it in the near future. View full review »
Mustafa Karanfil
Network Security Engineer at Türkiye İş Bankası
Cisco Firepower device support is limited in our AlgoSec system and I think AlgoSec can improve in that area. For example, in FireFlow we can easily track using the ticketing system to integrated Check Point devices. However, with Cisco Firepower devices, we couldn't integrate with them. View full review »
reviewer1028451
User
AlgoSec is my favorite tool because it does what it is designed to do and it does it well. The service I've received from their support teams is second to none. They have always successfully answered my questions and solved my problems. So, it is difficult to improve a solid solution but, not everything is perfect. Having executive type reporting capabilities which explain the security posture and scoring to provide to executive management would be a nice feature to add. Reports can be printed, but an executive summary report would be an improvement. View full review »
reviewer1242069
User at a sports company with 1,001-5,000 employees
I would be nice to have a good tool for network map discovery in the GUI to make it more user friendly and be able to check and modify network maps in graphical and more intuitive way . This will improve our network overview for new deployments and troubleshooting. View full review »
Arieh Shalem
Director of Information Security Operations at First Quality Enterprises
I would like to see Bi-Directional API support in order to integrate with SOAR platforms that provide SOC automation and IRR. Integration with CISO dashboards would be an improvement. It would be nice to have support for IaaS, CASB, and DLP tools, which will allow full life cycle management of security incidents. It would be nice to have an out of the box "best practices recommendation" with the relevant "what-ifs". View full review »
Idan Malei
Global Network and Security Team Leader at Ormat Technologies, Inc.
The pricing structure is not good because there is no difference between a Data Center firewall for a small branch. The pricing for smaller installations should be lowered because sometimes there is just no ROI to add AlgoSec to the small branch offices with only 10 rules. View full review »
reviewer1335075
Network Security Engineer at Chubb
A vulnerability management module might be interesting, though not integrated with a third-party vendor. It should be an AlgoSec VM module. I would like some server integration for vulnerability management. Some PDF reports are not so good. E.g., the graphics and reports are not so good. Sometimes, we need to create graphics and reports to compare security ratings across months and groups. View full review »
Security-Architect-Lux
User at POST Luxembourg
The production needs to be smarter and maybe have some AI capabilities to provide better firewall optimization and workflow integration. View full review »
reviewer1109571
User at a retailer with 10,001+ employees
AlgoSec now has cloud products that they are rolling out. This is the next space for which everyone is dedicating more resources. We would like to see them utilize the cloud to help with performance improvement, and with various processes needed on a daily basis. We have two remote agents that help with daily processing and would like to integrate more power from the cloud to be as flexible as possible. View full review »
MarcelKocybik
Key-Account-Manager at DATAKOM Gesellschaft für Datenkommunikation mbH
It is always possible to improve the product. We would like to have a kind of "Time Capsule" to be able to restore to a certain state from a backup. We would like to have a BSI Compliance Report for Germany. Interfaces are worked on continuously, and small firewall manufacturers such as Sophos should still be included as standard. View full review »
reviewer1000023
User with 10,001+ employees
Although I'm very satisfied with the product, one of the ways of improving the product could lie, perhaps, in the acceleration of the analysis process and especially in the section — traffic simulation query. Another improvement would be the support of an orchestration of different firewalls in a heterogeneous environment, mainly at the level of the management of the objects so as to have a homogeneous nomenclature. View full review »
reviewer1113381
User at a manufacturing company with 10,001+ employees
The reporting portion is weaker than other competitors, although this is good enough to utilize in our environments. Enhanced integration via API (typically, this is only known by few AlgoSec users). The user interface could be a little more user-friendly. Other competitors have more of a dashboard look and feel. With AlgoSec, you have to launch new windows to see rule usage reports. It can be a little bit difficult when trying to find more information. View full review »
Andre Santiago
Senior Consultant at Deloitte Portugal
The network mapping interface could be improved in the next version. In a complex landscape, with several nodes/equipment, it can be somewhat more difficult to properly visualize the network map. It requires several zoom-in and zoom-out operations, and it is not so visually appealing. Nevertheless, it is still a valuable feature and was highly used by my team. View full review »
reviewer1017186
User
The product or service could be improved by orchestration or automation that will help in changing the rule sets on the firewalls based on the detected used services/ports and IP addresses. View full review »
reviewer1120656
Information Security Specialist with 10,001+ employees
For the most part, this AlgoSec tool does meet our needs. If I was to think of any improvements I think the main one that stands out to me is confidence in future proofing. A good example is that we are looking at various SOAR which we'd like it to be fully compatible with (but not entirely convinced it is yet). Lastly, I have also heard a few qualms about the technical support and that it could be improved. However, this doesn't detract from the value the tool brings to our business. View full review »
reviewer1112223
User at a manufacturing company with 10,001+ employees
We have a complaint about the compliance check, in that sometimes we want to keep rules rather than merge them. View full review »
reviewer1003116
User
The versioning is a bit weird. We used to use version 2017 which is quite current, but it looks like it is a 2017 version. As far as I know, they want to have this changed soon. Nevertheless, this is something which definitely needs to be improved. View full review »
Joby George Cherian
User
The product has a lot of great features already. However, I would like the reporting to be more customizable, as per user and auditing needs. View full review »
Noel Noguera
Technical Director at Keystone Solutions, Inc.
Based on the conference I just attended, it is improving by Algosec opening their API more. This allows us as a systems integrator to give more value to our clients. We will be able to integrate more things that do not come out of the box. View full review »
reviewer1006992
User at a tech services company with 10,001+ employees
I think that AlgoSec could improve the application by improving the treatment speed. If AlgoSec could make few seconds less to analyze research, theses few seconds will be used by my team to be more efficient. I mean, in the Traffic Simulation Query, it will be wonderful if Algosec could find a way to make the research faster than now. In fact, we are often waiting arround 1,30 min to see the results. Maybe something can be done to make this reasearch faster? View full review »
Olivier Beytrison
System Architect at HES-SO//Fribourg
We use the "rules change notification" feature to inform the different firewall managers when someone made a change. The actual change comes in a PDF file attached to the e-mail, while it would be faster to have it directly embedded in the notification mail. Depending on your network topology, the traffic simulator might have some hard time tracing the traffic path between your devices correctly. This has already been improved in the past but could still be enhanced. View full review »
Bogi Wicaksono
System Engineer at Dimension Data
The MAP has a persistent issue with a firewall that is using a double BVI (Bridge Virtual Interface). In this configuration, it cannot give the correct and proper topology, so the traffic simulation query cannot run properly between the source and destination. View full review »
reviewer1112214
User with 10,001+ employees
The risk matrix implementation is not easy from an Excel file, so it would be nice to have a solution for creating it directly within the web interface. This would be an improvement. View full review »
reviewer1115961
User
In terms of integrations, we would like to see a greater number with the upcoming and next-generation tools (i.e. SOAR and a selection of other SIEMs). This has been a problem for us, as we are going through the process of enhancing our security and some of the products we are looking at are lacking built-in support (integration). View full review »
AndyWodzien
Network Engineer at WPPI Energy
The only thing I had slight issues with is the web UI which is a bit tricky to navigate. It can be difficult to find what you're looking for without having to click around for a bit, but once you get to know where things are, it's not bad. View full review »
reviewer989748
Security Analyst at a financial services firm with 201-500 employees
* The font size on the Changes Summary Report is very small when reading the print out copy. * AlgoSec can look at ways to include a change management workflow process or integrate with third-party ticketing solutions. * Explore ways to detect unused port numbers per firewall rules. View full review »
Ketan Khambe
Technical Presales Engineer at Exclusive Networks
I would like to suggest that cloud visibility feature is provided in the next release. We would be able to understand how traffic flows from the source to destination. View full review »
Florian_1276251
Network Expert at a integrator with 1,001-5,000 employees
They can make some improvements to the user interface because it can be slow at times. View full review »
reviewer1019766
User at a manufacturing company with 10,001+ employees
Ability to manage more diversity of equipment, as well as simplify the management of the various workflows. View full review »
Mark Grady
Lead - Security Infrastructure Consultant at TSYS
The tech support and ticketing system could use some improvement and need more of a personal touch. View full review »
reviewer1278324
Cyber Security PreSales Engineer at a comms service provider with 10,001+ employees
The UX control panel is in need of improvement. View full review »
Mahmoud Hashem
Technical Manager at Global Technologies for Trading and Contracting
I would like an intelligent tuner where it could help update rules with the application ID. View full review »
Henrique F. Caires Clemente
Software Developer at Vivo (Telefônica Brasil)
I would like to seem improvements in performance and software stability. View full review »
Damien GEANTY
Senior Cyber Security Specialist at Richemont
This solution would be improved if it were able to compare configurations and provide recommendations. For example, suggest cluster members. View full review »
Learn what your peers think about AlgoSec. Get advice and tips from experienced pros sharing their opinions. Updated: January 2021.
455,536 professionals have used our research since 2012.