Tufin Orca Room for Improvement

Ignitius Molepo
Senior IP Network Defense at a comms service provider with 10,001+ employees
One area in which I need it to improve is that I need it to accommodate all the files and all the tools. For example, when I buy the firewall management tool, I want it to manage the firewall of every firewall I use across my organization. If I'm going to depend on only one vendor, and it looks likes a vendor or a catered tool, it can't help on any vendor to scan the technology and give the auditing compliance. This is something they can improve from their side. The second thing I need is that if Tufin comes and deploys their solutions on my premises, I would like to have full support from them. Unfortunately, I didn't have their full support. So what worried me is that whenever the box is no longer working, then I'm no longer going to be able to see my compliance. I know I'm not going to charge whoever is not complying on my premises. To sum up, the two main negative points with Tufin Orca are the absence of full support and that accommodation of files and tools is not provided in a good way. Additionally, what Tufin should include in the next release is the ability to see the logical bullets points. In my case, I wanted to see the physical report because when things tripped and went wrong we needed to start fixing it on the physical side. So I would like to have the physical tool policy before we can have the looks side. But on the looks side it was very good. We need to filter up to it regarding the beneficiaries in the policies. So it was very good on that side of the data, but when I'm using it as a firewall manager, and then find the firewall is down, I need to see it on the Tufin. Also, I need the capability for Tufin to start alerting me whenever there is a change on the firewall. I can say that we didn't know about that function on Tufin and when we try to communicate with the Tufin guys, they are not able to assist us on that. So we end up having someone go to our firewall and start to make a change, and we end up not having the right thing and not being able to manage our firewall accordingly. The main point of using the same tool as a firewall manager is to have the daily health check of the box. View full review »
reviewer1288842
Security Operation Engineer at a security firm with 201-500 employees
In the next release I would like to see better migration in the Cloud because that will allow more visibility in the network. View full review »
Ignitius Molepo
Senior IP Network Defense at a comms service provider with 10,001+ employees
My worry with Tufin is that it cannot connect to Fortinet, which is what I want to do. In order for this solution to be useful, it needs to be able to manage every type of firewall that I come across in my organization. I do not want to be tied to one vendor. Integration with all types of firewalls and related tools is necessary. When Tufin deploys solutions on-premises then they should provide full support, but this was not the case in my organization. The implementation, including integration with other solutions, is complex and should be simplified. I want to see the physical topology of the network in order to help with troubleshooting. I would like Tufin to alert me whenever there is a change in the firewall. View full review »
Find out what your peers are saying about Tufin, Palo Alto Networks, Tigera and others in Container Security. Updated: November 2020.
448,896 professionals have used our research since 2012.