Skybox offers everything regarding reporting. You can quickly see what to do with your infrastructure, and it also checks compliance, telling you if you meet certain standards or PCI datasets. It's a very good tool for compliance.

For us, it is an excellent solution, but I will rate it nine out of ten because there is always room for improvement.

Overall, I would rate the solution a nine out of ten. There is room for improvement in the technical support. 

Before implementation, I would advise the engineer to know why the customer is seeking this solution and what best practices should be chosen to ensure the customer can achieve their desired outcome.

I can recommend the solution to those who plan to use it.

I rate the overall product a nine out of ten.

It is important to talk with experts to determine if this is the right solution for your company. If you go to a car dealership, you might have a certain budget and can only afford a small Volkswagen Golf. But you might be persuaded to go with a top brand and bigger package. 

An expert will first analyze needs or use cases and then engage with other teams required for configuration like network teams or third-party IT providers. If all teams are not on board but the solution is purchased, you might spend several months negotiating with those teams to get what you need. During this time, the company is wasting money because the solution is not able to do anything. 

Experts will first create a design for the organization and solution. How will it be used? Who are the stakeholders? How will we obtain the necessary configuration files? Where will it be hosted? Who will operate it? The information creates a business case and informs a purchasing decision. It is important that companies follow this structure rather than advice like, "This is a really good tool so you should buy it now and figure it out later."

The tool is very useful but not marketed widely because it is a niche product. Other tools like FortiGate market widely and many companies are certified to design, implement, and manage it.

I rate the solution an eight out of ten only because it is not for small or medium-sized businesses but rather for large enterprises with specific compliance needs. 

I rate this solution a seven out of ten. I would recommend other companies be very clear in their objectives before choosing this solution. They must be very clear about their expectations if they are looking for compliance, reporting, and other modules. In addition, some of the features we need aren't included in the solution, such as cloud security, cloud firewalls, and cloud security groups.

It is important to understand your company's needs. Jumping in and implementing all functionality or modules is not advised because they might not be needed.

Additionally, module implementation is complex because you must meet corporate compliance requirements for library management, network maps, and network security.

Take a step-by-step approach and try modules before purchasing them. Understand your needs and see if modules match them. 

I rate the solution an eight out of ten. 

Skybox is a full-feature product that comes with different modules like firewall and network assurance, network mapping, and a vulnerability control module. It's a very, very good solution for medium and large companies. I would advise anyone thinking of implementing Skybox to use a professional team to do the integration. I would rate Skybox seven out of ten.

The implementation of Skybox is straightforward and you can integrate and get the logs and compliance reporting.

The integration might be a little tricky and may need tweaking.

Overall, I give Skybox Security Suite a seven out of ten.

I believe it is a management contract. I believe that such solutions should not be handled on-premise, and we must obtain a proper support contract with SLAs from the service provider. When we do install it on-premises, we have no support, no feedback, and no commitment, except to extend the contract.

We are both customers and a partner with Skybox Security Suite.

I would rate Skybox Security Suite a five out of ten.

We have deployed this solution for our clients and have not received any complaints.

I would definitely recommend this solution to others.

I would rate Skybox Security Suite a ten out of ten.

I would definitely recommend this solution. If you have a complex network with more than 20 firewalls, it is better to go with this solution. It might not be suitable if you have only four or five firewalls, but when the network is complex, or you are managing a data center with a lot of security challenges, I would recommend this solution.

I would rate this solution a nine out of 10.

We're just a customer. We're not a partner or reseller of the solution.

I'd rate the solution seven out of ten.

I'd recommend those considering the solution to also look at Tufin and AlgoSec. I'd advise anyone considering any of these three options to compare them together and request a detailed proof of concept.

In general, I'd recommend the product. 

The only piece of advice I would have is, feed it all of the data sources. Skybox can take in a lot of information; structured, unstructured. It has a ton of integration partners. Even if you don't know if you'll need to use them all, just integrate everything you can into Skybox as a centralized platform, because it does quite a bit more, the more data you feed it. You increase its capabilities when you give it more data sources to look at.

I'd rate Skybox at 10 out of 10. I'm the Director of Security Architecture, so I'm very customer-facing and senior when it comes to product management and security architecture development. I tend to develop a baseline of programs whose capabilities I feel every organization should have. The ability to appropriately prioritize vulnerabilities inside the environment, and then to have visibility into the traffic and rule sets of an organization, are two of the top capabilities that I recommend. Skybox is the only one that does both of those in a single platform.

When I go into an organization, especially larger ones that are 5,000 or 10,000-plus employees, the first things I'm looking for are: How are you doing your vulnerability scanning and what visibility do you have in your firewall traffic? Typically, the answer to both of those is, "We don't have a lot there," and Skybox is one of the first things I'll recommend because it's almost imperative to get operational efficiencies. Firewalls are very basic. Firewalls are the front line against inbound traffic. If you don't have something like Skybox inline, able to see what's going on with your traffic flows, you can't appropriately implement those firewalls. So Skybox is typically one of my first three recommended products for just about every client I step in front of.

I would recommend others to try Skybox Security Suite before purchasing it because it replaces a couple of solutions from different vendors. If you have this all-in-one solution for that part of firewalls, network devices, and assets, all in one place, you can simulate the attack vector before you made the changes to the system. I would advise that your enterprise company purchase the solution because if you want to add the assets and they are the most costly, it's not an inexpensive solution. If you want to monitor firewalls and network devices, then the cost is reasonable.

I rate Skybox Security Suite a nine out of ten.

Skybox Security Suite does not have much competition but there other ones that are available are lacking features. This is the most complete solution available.

I'd advise other companies to scan the solution from time to time and be mindful of it. It's also important to make sure the services of the tool are enabled for the actions a company will need to handle or monitor.

I'd rate the solution seven out of ten.

I rate Skybox Security Suite a six out of ten.

I would rate the product a ten out of ten. 

We're just a customer.

The latest version is 11, however, I am currently one version behind.

For small and medium-sized environments, this may not be the best solution, due to the cost involved. However, if you are an enterprise-level company, this might work well for you.

Overall, I would rate the solution nine out of ten.

If you choose Skybox, then I would say spend a lot of time making sure that your network and your IT segment and all your devices and scope are properly documented. Make sure everybody fully understands how each of your networks are interconnected and exactly how your deployment happens. Because without that documentation, you will have a real hard time even explaining to a Professional Services guy how this needs to be set up. Because, like I said, this is not something which is straightforward.

It does need some time, especially in an enterprise environment where you're primarily using an RFC 1918, which is a private address space. Most of the time you will see that address space being used across different LAN communication technologies, so you will see a lot of conflict. You might see a lot of duplication. That is where the real problems start. So I would rather spend more time analyzing the whole setup, sitting and making sure it's well documented, before even getting into documentation. That's what I would tell the prospective buyers of Skybox.

Right now, based on my experience of having gone through, of having used it for the last one-and-a-half to two years, I would rate it about a seven out of 10. The reason for that is because of the lack of a web interface which is a big no-no for most companies. In today's world, nobody wants to use a fixed client to manage a security appliance. And the second one is because of the complexity of the whole setup itself. Otherwise, the product in itself is fairly good.

I really like the product. I do not have the experience with its competitors, either in function or pricing. It is a very useful tool, especially for those who do not have access to the devices they are monitoring. Because of separation of duties, you often do not have access to the firewalls or network devices. This type of tool does a great job of reaching into those other devices producing risk recommendations, compliance recommendations, and a single plane of glass to do your queries, so you can find where these rules might exist.

Other than what I said - ensuring that you have a really good understanding of all the network components that you have to ingest configurations from - definitely take it out for a proof of concept for 30 days. There are a lot of features in here that we don't use, Change Management and stuff like that, that you want to take a look at and see if they fit your needs.

I would say the reason I can't go higher than eight out of 10 is that their major release announcements aren't always straightforward. You usually discover that there is a new major release when going to their website and you discover it on your own. So they're not really good at major release announcements. 

I would absolutely recommend using Skybox Security.

If you need to check compliance and to understand how your IT teams work, use Skybox Security. If you need understand, like a clear glass of water, how your IT infrastructure works, use Skybox.

Tenable or Qualys or Rapid7 vulnerability controls in your infrastructure could be installed for vulnerability scans. But they don't know what kind of attack could be used or what vector of attack could be used. If you use Skybox you will see the impact, all the issues with your infrastructure and your configuration, and you can quickly change the situation to be more protected from outside and inside attacks.

On a scale of one to ten, I would give Skybox Security an eight.

On a scale from one to ten, I would give Skybox Security Suite a nine.

• Determine what your needs are.
• Buy only the products you need, when you need them.
• Make sure that your sales engineer goes over best practices with you so that you do it right the first time.

Anyone implementing this product should bring together the teams which have security and network understanding, as a part of the project and, of course, they should look into the product properly before they implement it.

I rate this product at about seven out of ten. The product is good but pricing and technical support are the ones which take marks off.

In my case it was important to know the workflow, and then to look for a tool that could support this workflow to make it easier.

This solution is pretty good. Our customers have found that Skybox has a lot of good features and I don't expect that any of them will be changing to another product.

I would rate this solution a nine out of ten.

Educate other IT teams about its value.

Skybox is a great solution; I would absolutely recommend it to others. Overall, on a scale from one to ten, I would give this solution a rating of nine.

Involve network, security, and operations at the same table for smooth project startup.

Check product compatibility. In our case, during implementation, we realised approximately 30 devices were not supported by the Skybox platform.

My advice to anybody who is implementing this product is to make sure that they utilize it. The usage of it should be mandated for the NOC and SOC. They should use a single dashboard to take care of all of your infrastructure components.

When a Skybox representative visits to discuss this solution, it is important to discuss the use cases properly. Have a good project plan and it is also very important to have the right partner. They should be certified, trained, and involved at all stages.

Overall, it is a pretty good product. When you use it, you will see the benefit of it.

I would rate this solution a seven out of ten.

On a scale from one to ten, I would give Skybox Security Suite a seven.

I rate the overall product a seven out of ten.