Skybox Security Suite Room for Improvement

Regional Sales Engineer at RedSeal, Inc.

The Network Assurance, which helps to create the network model, is not so rich. It tells you the best part, and it gives you the alternate routes that are available based on the configuration and the routing table, but it doesn't give you the analytics. One of the issues with security is that if the network model is incorrect then no matter what I add on top of it, it's going to be of no use. Network modeling is the foundation for vulnerability management, test management, firewall management, and change management.

The focus on risk analytics is not very good and should be improved. It relies on the CVSS (Common Vulnerability Security Score), which gives you a vulnerability score based on the standard. The difficulty with this is that sometimes, risks are based on critical assets, and these can differ between environments. My critical assets, for example, may be different than those of my customers. As such, it doesn't give you a fully-fledged risk score. On top of this, it doesn't give you the flexibility to configure a set of weights to adjust the criticality of the assets, the users, and the entities within the infrastructure.

Another area where Skybox lacks is the calculation for combinations and permutations of traffic from each interface. For example, in RedSeal, if traffic comes in from one interface and doesn't go out the desired interface, you can see what is vulnerable, what the vulnerability is, what is exposed, what is exploitable, whether it is subject to an insider threat or an outside threat, what the criticality is, and so on. It is all related to network modeling and seeing what happens when an interface goes down. In general, it needs to be enhanced.

They have to improve their integration with vulnerability management tools. It is good with some products, such as Tenable, but not really good with Rapid7.

Technical support can be improved in some regards because certain teams are better than others.

There is no dashboard for ISR compliance or NESA compliance.

View full review »
TZ
Business Consultant. at a tech services company with 11-50 employees

In terms of what could be improved, I would say support for Cisco Firepower. This is one of the biggest segments in the Ukraine market. Many customers use Cisco Firepower. It is not a good solution for me, but it make sense. The second feature that could be improved is a deeper integration with Palo Alto. One of my customers uses Palo Alto and during the trial period with Skybox Security, we had some issues because when the IT administrator used the rules Skybox Security didn't understand. But it's not really a problem with Skybox Security. This was a problem for the company who used these stupid rules.

View full review »
AB
Chief Information Security Officer at a financial services firm with 1,001-5,000 employees

The pricing is too high. 

Other competitors provide a solution that rebuilds holes from scratch and rebuilds configurations on all the holes. Skybox does not offer this capability. It's something they should add to their list of features.

The support could be improved. 

The implementation process could be a lot faster and much less complex.

The search functionality could be better. There's no way to exclude items from your search criteria, for example.

They need to find a way to revamp the firewalls in a professional way. They need to figure out a proper implementation strategy for the firewalls.

View full review »
Learn what your peers think about Skybox Security Suite. Get advice and tips from experienced pros sharing their opinions. Updated: May 2021.
511,607 professionals have used our research since 2012.
AP
Information Security Officer at Sony Corporation of America

The solution was quite technical. It would be easier to manage if the solution was more specific about certain aspects and provided more advisory around how to use it effectively. It would help users a lot if they were more clear about everything.

The solution requires more integration in terms of automation features.

It would be great to have proxies, IDs, IPs, firewalls, certain network centers, etc. on the solution. If more of that can be looked at or reviewed from a Skybox standpoint it would be helpful. The solution needs to expand its scope.

View full review »
PG
Asst. Manager Finance at a insurance company with 5,001-10,000 employees

We are not using the solution and rely on customer feedback. If the customer does not provide any, then we can't recommend what could be better.

If they have had any kind of issues, then we are able to know and have it perform better.

View full review »
MT
Enterprise Architect - Information Security at a transportation company with 5,001-10,000 employees

The solution needs more detailed reporting. In Skybox the reporting is good, but it could be improved.

The solution needs to add more automation and orchestration capabilities. Those features would make the solution much stronger.

View full review »
Product specialist at Rah Infotech Pvt Ltd

The most recent update was not tested with all of the vendors before it was released, so some of the features are misbehaving.

View full review »
CV
Pre-sales Engineer with 1-10 employees

Honestly, I love this solution. As of now, although I have a minimum amount of experience with this solution, Skybox has been great.

View full review »
Channel Manager at Digit Labs

The price is costly, and I hope they can reduce the cost.

View full review »
KS
Security Engineer at a comms service provider with 51-200 employees

The cloud site could be better. They should provide some use cases to help users.

View full review »
Learn what your peers think about Skybox Security Suite. Get advice and tips from experienced pros sharing their opinions. Updated: May 2021.
511,607 professionals have used our research since 2012.