Tufin Reviews

Filter by:Reset all filters
industry
Loading...
Filter Unavailable
Company Size
Loading...
Filter Unavailable
Job Level
Loading...
Filter Unavailable
rating
Loading...
Filter Unavailable
John Fulater
Real User
Security Engineering at a financial services firm with 10,001+ employees
Featured Review

What is most valuable?

The reporting is very good and provides in-depth knowledge for Check Point. We can write the rules as we see them. We can review rules and do searches. It has its own database which pulls all the information in regularly. This is very nice, and it is a good product for us. I like the change impact… more»

How has it helped my organization?

The solution's visibility is excellent for Check Point. There's a new feature that validates standards. It allows the checks and balances against it, so it doesn't even go forward. It just says, "You're not right. Do it again." We just got done with major audits. Tufin was able to provide… more»

What needs improvement?

We were just talking to them about usage for the F5 platform. They will not be going after specific environments, but a more OpenAPI. They will have other companies write it, etc. It's a little different than I had expected.

What other advice do I have?

Buy Tufin because it works! I love the product. It's been a great product to work with. The people are great, and the support is awesome. I have had no downside out of it. We're just getting started on the change workflow. So, we're learning it, and it's working well. It helps with our review… more»
Arturo Morante
Real User
Network Architect at a transportation company with 10,001+ employees
Apr 04 2019

What is most valuable?

SecureChange is the most interesting part. It all comes down to having the user request firewall access and SecureChange, based on workflows, takes care of it, sending two or three emails to the… more»

How has it helped my organization?

With path analysis, you can specify a source, a destination, and a port and it will tell you whether it's blocked or not, and where; which firewall is doing the blocking or the allowing, or whatever… more»

What needs improvement?

The visibility that Tufin provides us with is improvable. The interface is like a 1990s kind of thing. It's a little ugly. There are many things that you cannot tweak, little things like the column… more»

What's my experience with pricing, setup cost, and licensing?

It's not that expensive, except for Security Groups. For us, just the Security Groups were about half of the total price. The total was about €500,000 a year, of which €200,000 was for Security… more»

What other advice do I have?

Don't bother with the web interface, calm down, don't worry, everything will be fine. They will improve it. The rest of it, I don't have any issues. They're technically prepared, the tool does its… more»

Which other solutions did I evaluate?

We could only test AlgoSec for a little while. Our group is part of a larger group of products. When we were doing our PoC for AlgoSec, we were told to stop. The decision was made to move to Tufin… more»
Real User
Network/Security Engineer at a leisure / travel company with 51-200 employees
May 06 2019

What is most valuable?

The topology and the config backup that we see for devices are key features we get from Tufin. The change workflow process is flexible and customizable. We went through a lot of difficulties while… more»

How has it helped my organization?

In terms of the change impact analysis capabilities of this solution, we get a lot of CNR queues and it has saved a lot of time when making changes. And the analysis tells us that we have made a… more»

What needs improvement?

I have gone over compliance issues in Tufin, but compliance is one of the things which might not be that clear in Tufin. It just shows the configuration. That is one of the things they have to work… more»

What's my experience with pricing, setup cost, and licensing?

I was involved with the pricing at the start. But then management took over that issue. In terms of affordability, this company is using it, so it seems they are fine with it. We just provide… more»

If you previously used a different solution, which one did you use and why did you switch?

We did not have a previous solution. We were moving towards automation and we wanted something that would save time in doing firewall queues and creating firewall rules. We were looking for a good… more»

What other advice do I have?

My advice would depend on what kind of implementation and what kind of environment you have. If you are looking for automation and auditing you should think about this solution. Talk to the technical… more»
Find out what your peers are saying about Tufin, AlgoSec, FireMon and others in Firewall Security Management. Updated: June 2019.
352,760 professionals have used our research since 2012.
Syahrul Fitri
Real User
Specialist in Network Security Operations Support at a financial services firm with 10,001+ employees
Mar 18 2019

What is most valuable?

We are still using only one-third of the functions that Tufin has, but SecureTrack is among the most valuable. The most valuable function is the SecureChange where it is… more»

How has it helped my organization?

In our environment we have two data centers which have the same IP address for service in both. This means that in data center A, server X's IP address is the same as… more»

What needs improvement?

There is room for improvement in the speed of Tufin. It is using so many of my VM resources and yet it is still a bit slow. They need to improve how they do their database… more»

What's my experience with pricing, setup cost, and licensing?

The current licensing scheme is quite confusing but it is clearer than the old one. If you have one MDS you just buy the MDS license and the gateway license. That's most… more»

If you previously used a different solution, which one did you use and why did you switch?

This solution is the first of its kind in our bank.

What other advice do I have?

If you are looking at a large environment and a large number of policies, you really need Tufin to help you manage all the rules. We have 25 policies, and each policy has… more»

Which other solutions did I evaluate?

The decision was made before I joined the organization. I don't know if they looked at competitors or not. Currently, we are looking at AlgoSec, if it can replace Tufin or… more»
Tch32Dr8392
Real User
Technical Director at a tech services company with 201-500 employees
Mar 11 2019

What is most valuable?

The policy overview is valuable.

How has it helped my organization?

The key, convincing element that made our customer go with Tufin is that they have the ability to centrally monitor and view all changes that have been made in the… more»

What needs improvement?

The key area for improvement is the integration to F5. One of the things that we encountered with another customer is that there were some limitations when we tried to… more»

What's my experience with pricing, setup cost, and licensing?

Pricing played a big part here. We didn't present AlgoSec or FireMon. We got good support from Tufin directly. We managed to position it with an effective price for the… more»

If you previously used a different solution, which one did you use and why did you switch?

We didn't use a previous solution, this is our main solution.

What other advice do I have?

The first priority is to evaluate how expensive your firewall family is. If you have, for example, F5 then you would probably have similar problems to what we encountered… more»

Which other solutions did I evaluate?

We evaluated Tufin together with FireMon and AlgoSec.
Mohd Majmi Mohamad
Real User
Regional OSH at Pos Malaysia Berhad
Jun 06 2019

What is most valuable?

The goal was policy management and Tufin's policy management features met our requirements. It allowed us to crosscheck policies. I like the fact that Tufin was able to integrate with our firewalls… more»

How has it helped my organization?

There was no issue with slowness, especially when it came to pulling the data in real-time. Tufin was able to automatically check if a change request would violate any security policy rules. During… more»

What needs improvement?

I work on the network and security sides. The network visibility side needs improvement. I need to be able to see what the configuration changes are inside. On the firewall side, there are no… more»

What's my experience with pricing, setup cost, and licensing?

There is no issue with the pricing because we used a VM. That kept the cost low, as compared to an appliance. The licensing cost quote met our budget.

What other advice do I have?

In terms of advice, it depends on what a user's needs are. For us, we only considered Tufin for the security and the network parts, especially the network mapping. I need to see the hop-by-hop, from… more»

Which other solutions did I evaluate?

We have done other PoCs with AlgoSec and FireMon. But as we compared Tufin with them I preferred Tufin rather than AlgoSec. They were basically the same, but then Tufin came out with a lot of changes… more»
Real User
Manager at a manufacturing company with 10,001+ employees
Mar 04 2019

What is most valuable?

The ease of use is the most valuable feature. The change workflow process is flexible and customizable. We have one guy who has never logged into Tufin ever in his life. He sits down and in 30 minutes… more»

How has it helped my organization?

We use Tufin to automatically check if a change request will violate any security policy rules. One of the things we want to do is to have a blacklist/whitelist policy. A blacklist of things that can… more»

What needs improvement?

* I would like to see them get rid of the REST APIs and use something more modern. * I would also like to see them do more cloud integration within the Tufin Orchestration Suite, not within a SaaS… more»

If you previously used a different solution, which one did you use and why did you switch?

We switched from AlgoSec because they had horrible customer support, and difficult change management and processes.

What other advice do I have?

I would rate it a seven out of ten. I would advise someone considering this type of solution to not listen to the sales teams among the competitors. They all throw each other under the bus and a lot… more»

Which other solutions did I evaluate?

We compared AlgoSec, Tufin, and Skybox side-by-side. Originally, the team chose Skybox. They threw in what a lot of other groups had wanted, like the network team, security team, and DevOps team. When… more»
Samuel Taxis
Real User
Information Security Engineer at a tech company with 1,001-5,000 employees
Mar 04 2019

What is most valuable?

The historical reporting is the most useful feature that I use the most often. For what we use it for (change auditing), the visibility works great.

How has it helped my organization?

My team uses it heavily to audit the changes made by junior engineers, going back and figuring out what they messed up, and correcting their mistakes. We generate reports for customer compliance and… more»

What needs improvement?

We don't have any issues with it, but the reports could be easier to read and more customizable. Also, capturing some of the different versions, and being able to dig through them could be a bit… more»

If you previously used a different solution, which one did you use and why did you switch?

We had a bunch of issues with junior engineers causing problems and people not knowing what was changed or what happened. We needed a solution that produced very easy to understand and quantifiable… more»

What other advice do I have?

I would rate it a seven out of ten mainly because it does everything really well. In general, it still does what it's supposed to do, and we don't have any issues with it. I would advise someone… more»

Which other solutions did I evaluate?

It has been a few years since I've looked at anything else.
Real User
Network Security at a transportation company with 10,001+ employees
Mar 03 2019

What is most valuable?

* The Orchestration * The way that users can access it directly. * The change impact analysis capabilities of this solution are good.

How has it helped my organization?

The visibility is very good. We have managers who are overseeing it, and they are approving things through it. The whole process is flexible and customizable. We are building the matrix, then we're putting in exceptions. We have to add manual exceptions into it, and they have to come to us first… more»

What needs improvement?

* The hardest piece is getting the matrix built. * Room for improvement includes how we are pulling the routing cables and getting SNMP enabled. * Tufin could provide a train for running its reports and showing people how to use them.

What other advice do I have?

It is a good solution, somewhat easy to implement, and gives you a lot of information. It takes time to learn all the little nuances of it. I don't think we're using cloud native security quite yet.
See 22 More Tufin Reviews

Articles

User Assessments By Topic About Tufin

Find out what your peers are saying about Tufin, AlgoSec, FireMon and others in Firewall Security Management. Updated: June 2019.
352,760 professionals have used our research since 2012.

Tufin Questions

Tufin Projects By Members

What is Tufin?

Tufin Orchestration Suite is a comprehensive solution for network security management providing visibility, change tracking, analysis and auditing for firewall policies, network devices and cloud platforms. It also provides automatic application connectivity and firewall change management. It assures a tight security posture and regulatory compliance across all enterprise platforms.

Tufin customers

SIX Group Services AG, Telenor Norway, Swisscom

Highlights
We are able to discover firewall rules that are too broad and widen the security footprint.
Valuable features include a central pane of management for all the firewalls and the ability to do queries on the rules and understand in which files the rules are configured.
The designer gives the ability to know where to add a rule, or if the rule is already in place.
The visibility is very good. We have managers who are overseeing it, and they are approving things through it.
We find it to be flexible. If we have a change that needs to be done, it will go ahead and do it for all our devices, regardless of the manufacturer that we have associated with it.
The product streamlines our change management process.
The product is good at auditing the changes that we make in our environment.
See more »
BUYER'S GUIDE
Download our free Firewall Security Management Report and find out what your peers are saying about Tufin, AlgoSec, FireMon, and more!
Sign Up with Email