Skybox Security Suite Pros and Cons

Skybox Security Suite Pros

Randy Watkins
Director, Security Architecture at a tech services company with 51-200 employees
Skybox allows organizations to reprioritize the vulnerability they attempt to patch and mitigate, based on the contextual awareness of the network.
instead of asking for firewall rules which may or may not be relevant, or could already be there, or could be over-permissioned, Skybox can be used to map out the resources that that application is going to use and provide the exact rules that an application would require to function correctly. If the traffic isn't able to flow for the application, if it's erring out, Skybox can be used to troubleshoot that and say, "All right, where is the traffic being stopped and why, and how do I fix that."
The ability to appropriately prioritize vulnerabilities inside the environment, and then to have visibility into the traffic and rule sets of an organization, are two of the top capabilities that I recommend. Skybox is the only one that does both of those in a single platform.
The way that it's built with three-tier architecture, it makes it very horizontally scalable, so I can have multiple fallbacks. If one machine does fall offline, there are four other machines that are doing the exact same job to pick it up
View full review »
Sharath K
Sr. Consultant at a tech services company with 10,001+ employees
It's given us more visibility in terms of what are the kinds of configurations that are on these devices, and how many of these are stale rules. So it's helped greatly in terms of cleaning up of rules, for sure. And it has definitely given us a more secure way of backing up the configuration on these devices.
View full review »
Informat54af
Information Security Consultant at a insurance company with 1,001-5,000 employees
The most valuable feature is the compliance, whether it's access compliance or the configuration compliance, to make sure that all of our devices are configured as they're supposed to be, to limit access as much possible, to follow least-access guidelines.
View full review »
Find out what your peers are saying about Qualys, Skybox Security, Rapid7 and others in Vulnerability Management. Updated: June 2019.
348,558 professionals have used our research since 2012.
Informatb8c7
Information Security Architect with 201-500 employees
Key features for us include the firewall change audit every week. Also, being able to track firewall ACL usage, so that we can produce semiannual reports on ACL usage and shadowed and redundant rules on the firewall.
View full review »
Vishal Bindra
CEO at a tech services company with 51-200 employees
Change Manager is most important because of the impact on each other of a network change or a firewall change. We want to understand this and to know, beforehand, what the impact of a change will be. We are a large network so that is a very important tool.
View full review »
SeniorIn877a
Senior Information Security Analyst at a energy/utilities company with 501-1,000 employees
Security review is the most important feature, because it offers a single pane of glass to analyze multiple firewalls.
This type of tool does a great job of reaching into those other devices producing risk recommendations, compliance recommendations, and a single plane of glass to do your queries, so you can find where these rules might exist.
View full review »
Gerhard Schwegler
Networks Vice President at a tech services company with 1,001-5,000 employees
Aside from Firewall Assurance, we are using Network Assurance and Change Manager for an overview of the whole network and for documenting requests and the recertification of the ruleset.
View full review »
Lisa Niles
Director of Solutions Integration at a tech services company with 51-200 employees
Correlates logs and threats and prioritizes; provides network maps;p provides change result context and resulting vulnerability.
View full review »
ITSecurid7a6
IT Security Specialist with 10,001+ employees
We use Network Assurance for network visualisation and troubleshooting.
View full review »

Skybox Security Suite Cons

Randy Watkins
Director, Security Architecture at a tech services company with 51-200 employees
The only place where Skybox has room for improvement, and they're working on releasing this, it's just a slow-go, is the UI. The user interface has historically been via a locally installed thick client. They are moving to a web-based console and it's slowly coming out.
View full review »
Sharath K
Sr. Consultant at a tech services company with 10,001+ employees
The primary room for improvement would be to enable a web interface, which is not something which is there in the product. This is supposed to have come a year, a year and a half ago, but still has failed to come out. It still needs a client application to be installed on a workstation to be able to access that server and then run these reports. So I cannot extend that access to anybody. It has to be one administrator all the time. So unlike a web interface, where you can give multiple users simultaneous access and generate the various reports, that isn't a possibility at the moment.
The stability is something that is questionable. I don't know whether it is because of the kind of infrastructure we have or because of the product in itself. We're running it on a virtual machine right now. Maybe once a month, or once in every 45 days, it requires a restart because the application fails to connect. So I have to restart the whole Skybox Manager itself, the Skybox server itself, and then connect to it from our Skybox Manager.
The setup documentation needs a lot of improvement.
View full review »
Informat54af
Information Security Consultant at a insurance company with 1,001-5,000 employees
Reporting. A lot of the reports, out of the box, are limited to a certain number of either configuration violations or access rule violations. So when you first set up a new firewall to be monitored by Skybox, you don't get a real full report. You have to really tweak it to get everything.
I've had issues with licensing where, when they were expiring and I asked for the updated licenses, I would the wrong ones. I think their process needs to be straightened out a little bit - I don't know if they fixed it already, it has been awhile. It wasn't as straightforward as it could have been.
View full review »
Find out what your peers are saying about Qualys, Skybox Security, Rapid7 and others in Vulnerability Management. Updated: June 2019.
348,558 professionals have used our research since 2012.
Informatb8c7
Information Security Architect with 201-500 employees
If anything could be improved it would be staying on top of the collector scripts, but I understand that's a very tough challenge.
View full review »
SeniorIn877a
Senior Information Security Analyst at a energy/utilities company with 501-1,000 employees
The vendor's support is terrible.
View full review »
ITSecurid7a6
IT Security Specialist with 10,001+ employees
During implementation, we realised approximately 30 devices were not supported by the Skybox platform​.
View full review »
Find out what your peers are saying about Qualys, Skybox Security, Rapid7 and others in Vulnerability Management. Updated: June 2019.
348,558 professionals have used our research since 2012.

Sign Up with Email