We performed a comparison between AlgoSec and FireMon Security Manager based on real PeerSpot user reviews.
Find out in this report how the two Firewall Security Management solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI."We use it for global firewall rules management to ensure global policies are applied to all regional firewalls, provide auditing and compliance."
"We now process FCRs much faster, which helps us to deliver faster and implement reworks at a quicker rate."
"We see the value of BusinessFlow for organisations involved in digital transformation projects migrating to public/private/hybrid cloud models."
"It is very useful for PCI DSS compliance."
"It gives control and visibility to the end users."
"It detects if the requested network and ports are getting blocked by the network or firewalls by a simple query, which helps to identify the network blocking firewalls in the topology."
"The most valuable features are the network map, risk analysis, and tickets for firewall changes."
"The technical services personnel are very confident and provide good assistance."
"The Security Manager part of FireMon... gives me an eye on everything that's out there, everything that I cannot see. Because I'm not a network admin, I cannot go to a firewall itself, but at least I have FireMon so that I can go in and view everything that I want to view. And I can eliminate whatever I see that is wrong,"
"The most valuable feature is the Firewall reviews for our company compliance."
"Vendor agnostic when it comes to integrating with other product."
"The unused objects is another nice feature, where it digs a little bit deeper into comparing the logs that it sees versus the configurations that it sees... The unused objects feature will go through in a pretty detailed way and show us which ones aren't being used. Or, if they are used, it will show us how often they're used."
"I like the Security Manager console where we can see any changes that have been made or pull the results of an assessment and control the policies that we implement."
"The most valuable feature is the reporting capability because everything that we do is a result of our being able to query a report, based on our environment and our PCI compliance efforts."
"Policy test, access path analysis, and change reports."
"The most valuable feature is that everything is recorded in the historical logs, including the firewall rules, headcounts, object-level usage, and the rule documentation. The rule certification details are also there, which means that someone can be held accountable for a specific firewall rule."
"Algosec does not support vendors like Sophos, SonicWall, Forecepoint, and so on."
"Creating more intuitive menus could be helpful, especially for first-time users."
"Since COVID-19, a number of the technical support team members have been working from home or remotely. So, we haven't gotten support people right when we need them. Sometimes, it takes a couple of hours or even days for us to get that instant support that we used to get."
"Our experience with support has been inconsistent. Sometimes, support is fast and clean; other times, not so much. Occasionally, they have taken a while to respond or provided an inadequate workaround instead of a solution."
"Releasing hot fixes or patches is late compared to other security products."
"AlgoSec license usage is handled differently between firewall vendors. It may be a bit challenging to properly size the purchase of a new license - especially if a client is running multiple vendor firewalls in the environment."
"The GUI has not been upgraded for a long time and could use updating."
"AlgoSec integrates with most of the leading firewall vendors, but one issue is that AlgoSec doesn't support Sophos and Forcepoint. AlgoSec competitors, like FireMon, support Forcepoint."
"I think that having a more open system and providing documentation for it would be helpful for users like us. We are pretty adept and can navigate through the Linux software that the on-premises FireMon is based on. It would help us in the long run."
"Its reporting can be improved. I am the only one who works a lot with it, and I am having problems in terms of reporting. In the case of Palo Alto, I'm okay with it, but with some of the Cisco devices, such as routers, when I provide the reports to other teams for review, they always say that the hit count is incorrect. So, I was struggling for a long time to work with them. When working with other teams, they have a lot of questions about reporting, such as how it reports, and we are still struggling with that."
"When it comes to real-time compliance management, something that is missing is alerting on certain, predefined controls. It would be good to have a predefined set of controls which, if not complied with in a newly set up rule, would create an alert for us. That is something that is missing, out-of-the-box."
"A phone app would be nice. This is the reason why it is not perfect yet."
"FireMon could be easier to use and flexibility regarding reporting could be improved."
"Policy Planner requirements section is good, but could use some improvement to allow flexibility to enter different types of requests (modifying an existing policy, object or service group, for example) in a structured task format that can be auto-verified."
"Some of the things that you want to do in FireMon are not exactly straightforward, like creating certain reports or controls. Some of the functions could be a little more user-friendly, such as creating certain filters."
"We are looking for more integration with SIEM and other tools."
AlgoSec is ranked 1st in Firewall Security Management with 173 reviews while FireMon Security Manager is ranked 4th in Firewall Security Management with 53 reviews. AlgoSec is rated 9.0, while FireMon Security Manager is rated 8.2. The top reviewer of AlgoSec writes "Gives us the ability to dig down into details and work at a level above the skills that we already have". On the other hand, the top reviewer of FireMon Security Manager writes "Makes compliance much easier compared to doing it manually, and automates policy changes across environments". AlgoSec is most compared with Tufin Orchestration Suite, Skybox Security Suite, Palo Alto Networks Panorama, ManageEngine Firewall Analyzer and Fortinet FortiManager, whereas FireMon Security Manager is most compared with Tufin Orchestration Suite, Skybox Security Suite, Palo Alto Networks Panorama, ManageEngine Firewall Analyzer and RedSeal. See our AlgoSec vs. FireMon Security Manager report.
See our list of best Firewall Security Management vendors.
We monitor all Firewall Security Management reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.
Thank you, Sunil and Carlo, for your insightful responses.
I really appreciate that and will investigate further.
Best regards,
John
It’s been too long since I evaluated AlgoSec to give some solid feedback here. I can say that mapping in FireMon is terrible if you have a complicated network, otherwise, it works pretty well.
FireMon performance- make sure you get the best server, you can break them out and put certain roles on different boxes to get a lot of expansion possibilities though it might not be necessary this depends heavily on the size of your configs. If you have 1,000 firewalls with 100 rules each no problem but a handful of firewalls with 900k+ rules can become problematic.
We have not pulled MPLS configs into the system but their protocol support (FireMon) seems top notch.
DR, well you can distribute the environment all over the place so it’s really up to you with Firemon how robust your DR is. I’ve never had a failure requiring a massive restore, even our older servers running their pre-web UI version is still running fine.
Unfortunately we chose Tufin over both those products, sorry I cannot give you a comparison on either. For us, Tufin simplifies the needs we have for Risks/Cleanup/Violations in our FW policies.
We also leverage compliance policy for best practices. You can also take advantage of the reporting functionally which suites your environment or infrastructure such as:
- New Revision
- Advance Change
- FW Modul Change
- Object Change
- Expired Rules
- Rule and Object Usage
- Policy Analysis
- Security Risk
- Rule Documentation.