Compare AlgoSec vs. Tufin

AlgoSec is ranked 1st in Firewall Security Management with 69 reviews while Tufin is ranked 2nd in Firewall Security Management with 75 reviews. AlgoSec is rated 9.2, while Tufin is rated 8.0. The top reviewer of AlgoSec writes "Reduces our workload and generates reports that facilitate auditing". On the other hand, the top reviewer of Tufin writes "SecureChange feature enables firewall rule automation, but Security Groups are pricey". AlgoSec is most compared with Tufin, FireMon and Skybox Security Suite, whereas Tufin is most compared with AlgoSec, FireMon and Skybox Security Suite. See our AlgoSec vs. Tufin report.
You must select at least 2 products to compare!
AlgoSec Logo
20,289 views|10,574 comparisons
Tufin Logo
Read 75 Tufin reviews.
20,114 views|10,847 comparisons
Most Helpful Review
Find out what your peers are saying about AlgoSec vs. Tufin and other solutions. Updated: September 2019.
365,820 professionals have used our research since 2012.
Quotes From Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

We are moving towards an automated environment so the ability to work with Ansible, ServiceNow, and Palo Alto gives us the ability to automate our firewall policy creation. And it does so in a manner where we do not have to worry about a policy being created that may put our organization at risk.The Firewall Analyzer helps us achieve our various IT compliance requirements, like ISO-27001.It detects if the requested network and ports are getting blocked by the network or firewalls by a simple query, which helps to identify the network blocking firewalls in the topology.The most valuable feature is that the tool is capable of simplifying firewall management and configuration in an automated fashion.This Appliance gives you the full Network MAP, which is obtainable from the Routing table.With the solution, we can uncover bottlenecks, streamline, and clean up our firewall rules.It assists us in network security reviews and audits.Breaking down a rule to specify used objects within groups and protocols has proven invaluable for us because we are able to narrow exposure to potential threats, and more generally, areas in which we are exposed.

Read more »

The filtering of lots of criteria is very valuable.The Automatic Policy Generator saves time because we are able to identify the required policy when a client doesn't know what he needs.The automated reporting on a regular basis is helping us to be compliant with legal requirements.Tufin assists us in maintaining a robust view of our internal network topology.This solution has helped us to meet our compliance mandates. We implemented the Unified Security Policy (USP). This helped enforce what compliance requirements that we had. We have mitigated and remediated issues that have been brought forth due to that USP showing us issues.It's hard to pick the most valuable feature. All of them are valuable, they're all critical for us... ChangeTrack obviously has a lot of very good features, like the risk analysis, the USP, and the Policy Browser.The Topology Map, which feeds into our SecureChange - the latter being an automation platform - there's a lot of synergy between the two.In our current environment, the most valuable feature from Tufin is their Network Map.

Read more »

The process to replace a decommissioned device with a new device is not straightforward.Support for Layer 7 policies, including User-ID and threat profiles with Palo Alto firewalls, has been a pain point from us. We would like to include the additional info specifically because we believe it changes the riskiness of the rule if it is only set for a specific user or a group of users.There is huge scope for improvement in the level of support, especially around the issue of resolution time. That is the only negative point I find in the solution.The FireFlow template does not allow the user to perform external actions like sending an email or triggering a specific action.In a complex landscape, with several nodes/equipment, it can be somewhat more difficult to properly visualize the network map.It seems that AlgoSec created a VSYS (Virtual system) for each virtual router name, even though our firewall has only a single VSYS.We would like to have a kind of "Time Capsule" to be able to restore to a certain state from a backup.Priority should be to improve the user interface for the risk and compliance part, making it more responsive and user-friendly.

Read more »

I would like to see more configuration options on next-generation firewalls, defining possible standards for devices.I would like to see better report integration in this solution.I would like to see the setup of the Unified Security Policy simplified.The product should integrate with the UTM features.The metrics need improvement. They need more consistency or understanding of automation, along lines of customization of automation.Tufin has come a long way when it comes to visibility. What we would like to see is a little bit more on the discovery level, network discovery, which Tufin does not have today.More API integration with third-party platforms is something that we would definitely like to see in upcoming releases.The biggest area where I see a need for improvement is some of the documentation and training stuff. It does a really good job of hitting the big concepts, but it needs like another layer deeper of actually getting into some of the details of how to do some of the things. Conceptually, I understand how the product works, but now how do I start building stuff and integrating it into my environment.

Read more »

Pricing and Cost Advice
The pricing for this solution seems to be reasonable for the functionality.AlgoSec is not much more expensive compared to other products available in the market.The price is high but the support is extremely poor, so keep that in mind before choosing this product.It seems we have recovered our money on this appliance, so it is money well spent.The price is adapted to the product's utilization for each company.My advice is that you must do a POC and show value.The pricing for this solution is not cheap, but we get good value for what we pay.The licensing is very easy to set up, with flexible licensing methods such as subscription and perpetual.

Read more »

I suggest talking with Tufin about the flexibility of the pricing structure.I suggest talking with Tufin about the flexibility of the pricing structure.The licensing costs are a significant amount of money.I'm saving 20 man-hours a week, so I am seeing some ROI.The cost is pretty high. It's close to seven figures.For us it's around $40,000 or so.Licensing is on a customer by customer basis.The seller of Tufin, when I wanted the solution, was very flexible because the cost on the lease was very high in Latin America. So, he was able to reduce the cost.

Read more »

Use our free recommendation engine to learn which Firewall Security Management solutions are best for your needs.
365,820 professionals have used our research since 2012.
Answers from the Community
Miriam Tover

Tufin has the below limitations
Tufin had problems with VRFs and didn't understand a negated address object in a Fortinet firewall.

When choosing Firewall Management Software consider this:
The best thing to do upfront is to work out what's taking up time today:
· Evaluating and validating requests (garbage in = garbage out)
· Translating validated requirements into technical implementation plans (traversing multiple firewalls, NAT, router ACLs, etc)
· Dealing with a broad range of products and/or a requirement to do different things in different ways
· Policy risk evaluation (who decides what is/isn't allowed, how and why)
· Human sign-off / change control
· Executing an understood change plan
· Validating an understood change plan.

08 August 19
Average Words per Review
Avg. Rating
Average Words per Review
Avg. Rating
Top Comparisons
Compared 57% of the time.
Compared 18% of the time.
Compared 16% of the time.
Compared 53% of the time.
Compared 31% of the time.
Compared 10% of the time.
AlgoSec simplifies, automates and orchestrates security policy management to enable enterprise organizations and service providers to manage security at the speed of business. Over 1,500 of the world’s leading organizations, including 20 of the Fortune 50, rely on AlgoSec to optimize their network security policy throughout its lifecycle, to accelerate application delivery while ensuring security and compliance. AlgoSec is committed to the success of each and every customer, and provides the industry’s only money-back guarantee.

Tufin Orchestration Suite is a comprehensive solution for network security management providing visibility, change tracking, analysis and auditing for firewall policies, network devices and cloud platforms. It also provides automatic application connectivity and firewall change management. It assures a tight security posture and regulatory compliance across all enterprise platforms.

Learn more about AlgoSec
See it in Action

Schedule Your Tufin Demo Now

Sample Customers
NASDAQ, Oracle, T-Mobile, Chevron, AT&T, BP, Intel, Skype, Microsoft, VolkswagenSIX Group Services AG, Telenor Norway, Swisscom
Top Industries
Financial Services Firm33%
Energy/Utilities Company13%
Manufacturing Company9%
Insurance Company7%
Financial Services Firm26%
Software R&D Company12%
Manufacturing Company9%
Comms Service Provider9%
Financial Services Firm27%
Comms Service Provider9%
Healthcare Company8%
Transportation Company7%
Financial Services Firm23%
Software R&D Company19%
Comms Service Provider13%
Healthcare Company7%
Company Size
Small Business7%
Midsize Enterprise14%
Large Enterprise79%
Small Business5%
Midsize Enterprise26%
Large Enterprise69%
Small Business12%
Midsize Enterprise6%
Large Enterprise83%
Small Business11%
Large Enterprise89%
Find out what your peers are saying about AlgoSec vs. Tufin and other solutions. Updated: September 2019.
365,820 professionals have used our research since 2012.
We monitor all Firewall Security Management reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.
Sign Up with Email