Most Helpful Review
Find out what your peers are saying about AlgoSec vs. Cisco Defense Orchestrator and other solutions. Updated: November 2019.
383,162 professionals have used our research since 2012.
We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
There are some important and really nice features that I want to mention about AlgoSec. The most useful feature is instantaneous AFA reports, that you do not have to wait (at least one week or even more for a more accurate one) to get optimization recommendations about policy as many other vendors.
We are in the process of implementing FireFlow in our daily operation, which will make our lives even easier. The idea is to search the Firewall Analyzer for the equipment between the source and destination, and then automatically jump off to FireFlow and open a ticket. This will then automatically implement what is needed without the need to go into the Firewall itself. This will save us a lot of time and will help us to onboard junior engineers very quickly, getting them up to speed on our network and daily operation in record time.
The automation of the firewall rule deployment, working together with our ticketing system, is the most valuable feature of this solution. The needs as required by a user request are automatically validated and configured in the specified firewalls without any human action.
With this feature, you can directly permit the end-user to request what he/she needs, and if the security policy is respected it can directly be approved and implemented.
The most valuable feature is the reporting, including the policy report and regulatory compliance reports.
The most valuable feature is traffic simulation because, with this function, it has become more practical to know if something is released or blocked in my environment.
FireFlow is the most valuable feature because we changed the way to set up rules on the firewalls.
The most valuable features are the network map, risk analysis, and tickets for firewall changes.
If our server is blocked, this solution shows us why it is blocked and allows us to update the network routing.
The bulk changes feature is definitely the most valuable.
The initial setup was straightforward. We spun up the VM onsite. We generated the key that it needed to talk to the Cloud Orchestrator. After that, as I started adding devices, it was relatively quick and easy.
The ability to see the uptimes on the different VPNs that we have configured for site-to-site.
If we have a firewall go down, I can hop into CDO, pull the latest configuration off and apply it. That's really good. It helps save time.
We have quite a few Active Stone by pairs. If they fail over... I'll see that there's a change on it and I'll have a look. The only change on it is that now this one is the standby, it took over the active role. I can go into that firewall and find out what happened... and troubleshoot based on that. That's pretty cool too.
We use a lot of image upgrades. We take some 20 devices and then we update everything at once, including the policies. We apply policies for groups. For certain groups, like anti-viruses, we send out policies and apply them to every single device. It's really easy and simple.
I like the upgrade feature. That is pretty valuable to me because I have dual ASAs and when I go through CDO it does it for me pretty well. It's all done in the back-end and I don't really have to be involved. I just initiate, pick the image, and I pick when I want it done and it just does it, whether I have a single ASA or have a dual ASA.
To be more specific, when we tried to add some devices on AlgoSec it seemed to be done but when you checked the monitor section, some device was always red. Finally, we could handle this part by installing a new software fix but AlgoSec support was weak when we tried to handle this process.
One important thing they should improve is their support level. We have a lot of trouble with the basic enterprise support level. They are very slow to respond and solve problems.
The interface needs to be more user-friendly for low-profile users so that we can give some kind of access to specific people around the company for self-configuration of specific rules.
It would be easier if the network maps could be updated using the GUI portal instead of from the OS.
Cisco Firepower device support is limited in our AlgoSec system and I think AlgoSec can improve in that area.
I believe Active Change needs to be improved because not all products are supported, and some functions cannot be implemented by Active Change either.
I would like to have AlgoSec update the topology maps from the GUI portal, rather than having to go into the OS.
I would like to seem improvements in performance and software stability.
The dashboard needs to be more customizable to provide better reporting for our network.
It should have more features to manage FirePOWER appliances.
When logging into the device, we sort of had problems with it staying in sync. If somebody made a change onsite, it wouldn't do an automatic sync. It would have to wait, as you would have to do a manual sync up.
I'd like CDO to be the one-stop-shop where we could do all the configurations easily. It would be nice, for ASA upgrades, if we could do them from a central repository and not have to reach out to Cisco. That would be a definite plus.
CDO doesn't have a report, an official report that I can check daily. It has another module called FTD, but it doesn't have that specifically for ASA. In the reporting, there are a lot of things that aren't there. There is also room for improvement in the daily monitoring.
The main thing that would useful for us would the logging and monitoring. I have to check it out, to get the beta, because I don't have access to them... I wanted CDO to be a central place so where I could do everything but right now I don't think that's possible. I really don't want to go back and forth between this and FMC. Maybe the logging portion, when I look at it, will give me some similarities.
I've found dozens of bugs over the year we've been using it. The more I use it for different things, the more problems I find... Most of the problems have to do with the user interface. A lot of thought and work has gone into the back-end component to make the product do what it's intended to do, but the way it is presented for use hasn't gotten nearly as much thought to make it smart and bug-free.
There could be some slight improvements to navigation. In some of the navigation you've got to go back to be able to get into where you need to be once you've made a change. If I make a change, I've then got to go back to submit and send the change.
Pricing and Cost Advice
The pricing of AlgoSec is fair.
The pricing for this solution seems to be reasonable for the functionality.
AlgoSec is not much more expensive compared to other products available in the market.
The price is high but the support is extremely poor, so keep that in mind before choosing this product.
It seems we have recovered our money on this appliance, so it is money well spent.
The price is adapted to the product's utilization for each company.
My advice is that you must do a POC and show value.
The pricing for this solution is not cheap, but we get good value for what we pay.
It is covered under the CIsco Enterprise License Agreement (ELA). So, it is licensed and ours.
After our free trial was done we got a subscription for three years and it was under $3,000 or so. It's part of the EA we already paid for, so I don't know what it would be if it was a la carte.
It's around £500 per unit for a three-year license.
It is about a $100 per year for an ASA 5506 firewall, and from there it keeps going up if you have a bigger box. For example, the 5516 is $200 to $300 per year.
out of 7 in Firewall Security Management
Average Words per Review
out of 7 in Firewall Security Management
Average Words per Review
Compared 57% of the time.
Compared 18% of the time.
Compared 18% of the time.
Compared 45% of the time.
Compared 43% of the time.
Compared 12% of the time.
Also Known As
|AlgoSec simplifies, automates and orchestrates security policy management to enable enterprise organizations and service providers to manage security at the speed of business. Over 1,500 of the world’s leading organizations, including 20 of the Fortune 50, rely on AlgoSec to optimize their network security policy throughout its lifecycle, to accelerate application delivery while ensuring security and compliance. AlgoSec is committed to the success of each and every customer, and provides the industry’s only money-back guarantee.|
Cisco Defense Orchestrator is a cloud based policy management solution to drive simple and consistent security policy across multiple Cisco security platforms.
Learn more about AlgoSec
Learn more about Cisco Defense Orchestrator
|NASDAQ, Oracle, T-Mobile, Chevron, AT&T, BP, Intel, Skype, Microsoft, Volkswagen||Insurance Company of British Columbia, Shawmut|
Financial Services Firm32%
Software R&D Company20%
Financial Services Firm19%
Comms Service Provider10%
No Data Available