Tufin Room for Improvement

Arturo Morante
Network Architect at a transportation company with 10,001+ employees
The visibility that Tufin provides us with is improvable. The interface is like a 1990s kind of thing. It's a little ugly. There are many things that you cannot tweak, little things like the column width and how you display the information. You end up exporting everything to an Excel file and doing your work there. They tried to put too much stuff on the screen. It's a little difficult to find what we want. It's a design issue, it's not a functionality issue. The web interface is really like going back in time 20 years. You have to move columns back and forth and make them big to see the whole text in them. If you hover over a name, it won't show the content. You have to click on it and open it. It's a bit cumbersome. The documentation site is horrible as well. It has a tree structure, and you really get lost quite easily. If you have the patience to browse through that hell of documentation, you will find what you need, but it is hell to browse and search. The information is there, it's just difficult to filter and search it. Documentation is one thing they can improve on. View full review »
Network/Security Engineer at a leisure / travel company with 51-200 employees
I have gone over compliance issues in Tufin, but compliance is one of the things which might not be that clear in Tufin. It just shows the configuration. That is one of the things they have to work on. It is one of the constraints, in my opinion. The topology is good but they could work on it and get something better out of it. If we talk about the complexity of getting more nodes over Tufin, Tomcat or web services become flat. This is one of the constraints that I have seen. The web services are not that stable. This has to be checked and taken care of. View full review »
Syahrul Fitri
Specialist in Network Security Operations Support at a financial services firm with 10,001+ employees
There is room for improvement in the speed of Tufin. It is using so many of my VM resources and yet it is still a bit slow. They need to improve how they do their database indexing. That is the main fault of Tufin right now for us. It's slow. Even though we are allocating 64 gigs of RAM, we still have to wait for a few minutes for a single report to be generated. Otherwise, it would be a perfect tool. View full review »
Technical Director at a tech services company with 201-500 employees
The key area for improvement is the integration to F5. One of the things that we encountered with another customer is that there were some limitations when we tried to migrate policies from F5 into Tufin. Half of the network is F5 and there were a couple of other firewalls and they're trying to centrally manage them. There were issues in terms of managing the policies for F5. It's not as seamless as it should be. Documentation to help users integrate to an F5-type of environment would be great, so that users would understand and know the limitations, rather than having to go through a PoC and then realize that it's just not suitable for integrating F5 products. View full review »
Mohd Majmi Mohamad
Regional OSH at Pos Malaysia Berhad
I work on the network and security sides. The network visibility side needs improvement. I need to be able to see what the configuration changes are inside. On the firewall side, there are no visibility issues. Also, I'm not sure if it integrates with Riverbed. View full review »
Manager at a manufacturing company with 10,001+ employees
* I would like to see them get rid of the REST APIs and use something more modern. * I would also like to see them do more cloud integration within the Tufin Orchestration Suite, not within a SaaS solution. * I would like them to move their community support off of Google and onto something more long-term. View full review »
Samuel Taxis
Information Security Engineer at a tech company with 1,001-5,000 employees
We don't have any issues with it, but the reports could be easier to read and more customizable. Also, capturing some of the different versions, and being able to dig through them could be a bit better. View full review »
John Fulater
Security Engineering at a financial services firm with 10,001+ employees
We were just talking to them about usage for the F5 platform. They will not be going after specific environments, but a more OpenAPI. They will have other companies write it, etc. It's a little different than I had expected. View full review »
Network Security at a transportation company with 10,001+ employees
* The hardest piece is getting the matrix built. * Room for improvement includes how we are pulling the routing cables and getting SNMP enabled. * Tufin could provide a train for running its reports and showing people how to use them. View full review »
Shawn Babinyecz
Cyber Security Engineer at a healthcare company with 10,001+ employees
I would like the following additional features: * Easier integration with more automation. * Ability to get better results from rule-based requests. * Ability to do some policy browsing and find out where they're hitting, specifically. * Ability to pull hit count reports more easily. View full review »
Security Engineer at Allegiant Air
I would like to see more expansion into the cloud and documentation needs improvement. When I try to do something new in the product, the documentation is no help. Something's written there, but it's not enough to help you do what you want to do. We would like more examples and use cases. The cloud is fairly new to Tufin. We have AWS. Their first steps into providing audits on the cloud have been really helpful, but we ourselves don't know how we're going to manage the cloud. One of the features that we didn't like is the controlling of the security groups. We can read them but there's no way to change them or to really control them through Tufin. That would be a nice addition. We are currently working on a bunch of automation to include Tufin. We need security group management (security group modification for Cisco devices). That is what we need from Tufin going forward. We can't go live with the total automation because there are pieces missing, e.g., you cannot update the service group. View full review »
Consultant at Sirius Computer Solutions
The change workflow process is flexible and customizable to some extent, but there is room for improvement. In some cases, we've found it difficult to get the exact thing which we were looking for. Then, we end up having to go and do the thing manually. I would like them to have more focus on the whole compliance across the globe, like PCI DSS. These things keep on updating very frequently. If they can be on top of it and keep updating more frequently, getting more updates, that would be something good. View full review »
Security Engineer at a manufacturing company with 10,001+ employees
The change impact analysis doesn't even get close to actually solving our problems. I am not impressed with it. The solution's cloud-native security features are lackluster. They need to catch up to where the industry is at. Our engineers still require quite a bit of manual digging to find the data that they need. It would be nice if the product would allow more flexibility around that and the workflow to present more data to correct this. There are tons of things that the solution needs. They just need to prioritize them and get some of their customers satisfied. View full review »
Senior Adviser Cyber Security at a comms service provider with 10,001+ employees
I would rate their reports as a four out of ten. I don't like the way that they are shown. It is too hard to export and send them to our clients. We are switching to AlgoSec. It's a corporate decision. There's probably room for improvement. View full review »
Salvador Teran
Network Security at a tech services company with 5,001-10,000 employees
I would like to simplify the reports, and maybe have another view besides the charts. Possibly they could be more graphical. I would like to see them continue improving the versions. View full review »
Senior Information Security Architect at First Citizens Bank
We like the change impact analysis capabilities quite a bit. The only weakness is that the reporting is a bit clunky. We would like to have the reporting be better. Right now, it is being used retroactively. There was talk with the rep this morning that they can do this proactively. In other words, we see the policy, and if it's not needed, then it can be removed, or add new policies, as needed. View full review »
Senior Network Engineer at a financial services firm with 1,001-5,000 employees
I'm looking for the backup change. I want a predefined backup plan. View full review »
Professional Services Engineer at a tech services company
I couldn't get it to work in the lab, even with help, on multiple occasions, from one of Tufin's engineers. It was set up in my private lab per all their instructions, and I gave them control of the system. However, they were unable to make it install the policies to Check Point in an automated fashion. So, I unfortunately gave up on the proof of concept at that point. View full review »
Senior Consulting Manager at a tech services company with 10,001+ employees
I don't get the full visibility. There are a lot of improvements which can be done in terms of visibility. We have had challenges implementing the change workflow process. We were trying to do and end-to-end automation part and standard services, like Active Directory, through a couple of customers and internal applications. We had challenges that we couldn't overcome, even with help. We are still trying to achieve this. Change management is something which is currently difficult. It should work seamlessly, not have too many integration points. It should be simple. View full review »
Security Analyst at a government with 1,001-5,000 employees
We had some issues initially with the initial reporting and alerting system. While the visibility was pretty good initially, we have had issues with configuring and reporting. I would like a better reporting feature and automatic alerting based upon rule changes. Our engineers still have plenty of manual processes to work with. View full review »
Network Security at a insurance company with 1,001-5,000 employees
There are features that we haven't used, and we need to understand them first. View full review »
Security Architect at a manufacturing company with 10,001+ employees
It does not natively support all of the Check Point functions, which is a big deal. The solution doesn't recognize traffic and impede it. View full review »
IT Manager at a financial services firm with 10,001+ employees
I would like to see an improved reporting model that can be flexible for us to generate our own reports. The data is already there. View full review »
Marko Martin
Technical Team Lead at Paragon
I would like an improved reporting module which can be flexible (custom reports) and allow us to generate our own reports, because the data is already there. View full review »
Network Engineer at a tech services company with 11-50 employees
It needs better reporting with more graphics and more pie charts, so management can understand details. The reports that are done now are full of data and management would like to have an image to help understand, right away, what the reports are saying. View full review »
IT Security Professional at a pharma/biotech company with 10,001+ employees
It could be a little more intuitive. I haven't used it a lot, but it gives me the info I need, I just have to find it. View full review »
Valentino Kusmic
Owner at a tech services company with 1-10 employees
It would be great to add a link to Visio to create shapes directly from Tufin, as it has the configuration. View full review »
Network Engineer at a tech services company with 11-50 employees
This solution would benefit from an improved reporting functionality with graphing so that reports can be presented to management. View full review »
Carlo Gardener
Security Engineer with 1,001-5,000 employees
I feel that the user interface is a bit dated. The product version updates should be automated, and the reports could be a bit cleaner. View full review »

Sign Up with Email