FireMon Security Manager vs Tufin Orchestration Suite comparison

FireMon and Tufin are both solutions in the Firewall Security Management category. FireMon is ranked #3 with an average rating of 8.0, while Tufin is ranked #2 with an average rating of 8.0. FireMon holds a 16.6% mindshare in Firewall Security Management, compared to Tufin’s 22.2% mindshare. Additionally, 87% of FireMon users are willing to recommend the solution, compared to 91% of Tufin users who would recommend it.

FireMon Security Manager

Read 56 FireMon Security Manager reviews

3,880 Views
3,069 Comparison Views

87% willing to recommend

Tufin Orchestration Suite

Read 184 Tufin Orchestration Suite reviews

6,552 Views
3,910 Comparison Views

91% willing to recommend

FireMon Security Manager

Tufin Orchestration Suite

Comparison Buyer's Guide

Download the report

Executive SummaryUpdated on Apr 20, 2025

Tufin Orchestration Suite and FireMon Security Manager are robust solutions in the field of network security and automation. Tufin appears to have the upper hand in providing comprehensive policy management and automation, whereas FireMon is highly valued for its real-time monitoring and risk analysis capabilities.

Features: Tufin Orchestration Suite offers centralized policy management, automation of workflows, and proactive compliance auditing through SecureTrack and SecureChange. FireMon Security Manager excels in real-time monitoring, identification of redundant rules, and detailed risk analysis, allowing integration across various security devices.

Room for Improvement: Users suggest that Tufin could enhance its user interface and expand support for multi-vendor environments. Improvements in report functionalities and system speed are desirable. FireMon could enhance its update process, support for additional device types, and improve the intuitiveness of its GUI while integrating better with emerging technologies like SDN.

Ease of Deployment and Customer Service: Both Tufin and FireMon are predominantly deployed on-premises with hybrid and cloud options available. Tufin is praised for its responsive technical support, while FireMon's customer service is recognized for its effectiveness and expertise, though some feel it could be more streamlined.

Pricing and ROI: Tufin is considered expensive, but users often justify its pricing due to comprehensive capabilities and ROI through workflow efficiencies. FireMon offers competitive pricing and a structured licensing model, perceived as more cost-effective, with both solutions providing significant ROI by improving efficiency in managing security tasks.

To learn more, read our detailed FireMon Security Manager vs. Tufin Orchestration Suite Report (Updated: April 2025).

Buyer's Guide

FireMon Security Manager vs. Tufin Orchestration Suite

April 2025

Download the complete report

Helped 851,604 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Categories and Ranking

FireMon Security Manager

Ranking in Firewall Security Management

3rd

Average Rating

8.2

Reviews Sentiment

7.5

Number of Reviews

Ranking in other categories

No ranking in other categories

Tufin Orchestration Suite

Ranking in Firewall Security Management

2nd

Average Rating

8.0

Reviews Sentiment

7.2

Number of Reviews

184

Ranking in other categories

No ranking in other categories

Mindshare comparison

As of May 2025, in the Firewall Security Management category, the mindshare of FireMon Security Manager is 16.6%, up from 16.2% compared to the previous year. The mindshare of Tufin Orchestration Suite is 22.2%, up from 20.2% compared to the previous year. It is calculated based on PeerSpot user engagement data.

Firewall Security Management

Featured Reviews

Ganesh-Khutwad

Senior Network Specialist at Tech Mahindra Limited

Rapid policy insights with robust dashboards and cross-vendor automation

FireMon Security Manager is excellent for real-time compliance management. It allows us to quickly retrieve any policy needed for testing and easily analyze it for loopholes. If a loophole exists, FireMon provides comprehensive details within the policy manager. It alerts us to firewall rule additions or changes that violate compliance policies. It supports various firewall platforms, including Checkpoint, Zscaler, Fortinet, Cisco, and AWS, and provides centralized management for all configured policies through a single console. FireMon Security Manager provides many features, like whether my firewall is compatible with required standards such as NTP and SNMP. Each compliance included in our RFPs is shown in the UI of FireMon. It gives robust and clear dashboards, making it easier to understand risks because the policies have ratings showing usage, and the number of hit attacks. It streamlines our compliance reporting processes by providing comprehensive risk and compliance assessments. It offers a range of features, including verification of firewall compatibility with protocols like NTP and SNMP, and detection of signal charges. FireMon effectively addresses all compliance requirements outlined in our RFPs. For instance, it can determine if firewalls or proxies within a stack are configured in Secure Mode or Active-Active mode. FireMon Security Manager enables us to generate reports on all these aspects, ensuring thorough compliance monitoring and documentation. FireMon Security Manager is robust and can help automate firewall policy changes across large multi-vendor enterprise environments. FireMon Security Manager helps automate firewall policy changes across various environments, including on-premises, cloud, hybrid, SASE, and SD-WAN. It also simplifies cleaning up firewall rules in our environment. The time required to accurately create, approve, and deploy firewall policy rules has been reduced. Tasks that took 30 minutes can now be completed in just five minutes using FireMon. FireMon provides immediate visibility into our policies through a robust and clear dashboard, making it easy to identify errors or misconfigurations based on the policy rating.

Read full review

MithatBulut

Network Security Engineer at TD SYNNEX

New employees can quickly grasp the various IPs, devices, and the network's logical and physical

Tufin is primarily used to orchestrate and manage network traffic and firewall devices. It is specifically useful for implementing firewall policies and handling requests from clients that require policy updates or changes Tufin simplifies understanding network topology. New employees can quickly…

Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Pros

"Its user-friendly interface allows for easy viewing and searching of network policies, including proxies, all on one console."

"The ease of use is the most valuable feature. There are a lot of products out there, but the ability to navigate through and use Firemon is very good."

"FireMon Security Manager is a fast and intelligent device that delivers results in under ten seconds, even with thousands of policies."

"I've been using the reports to see what is going on, and that is a helpful feature. We can track down unused rules, which helps with compliance. We can see rules that have not been used or that are duplicates or overly permissive."

"The most valuable feature is the Firewall reviews for our company compliance."

"Overall, I would rate this solution a nine out of ten."

"The firewall assessment feature is great."

"The most valuable feature is that everything is recorded in the historical logs, including the firewall rules, headcounts, object-level usage, and the rule documentation. The rule certification details are also there, which means that someone can be held accountable for a specific firewall rule."

More FireMon Security Manager pros

"We can get reports with Tufin at anytime. We can have automated reports, even with security and compliance."

"Our customer has the ability to centrally monitor and view all changes that have been made in the network, and they are able to revert any problems that they encounter, if somebody has made a problematic change."

"Tufin allows our say junior guys to learn how to view policies. It gives them a tool that will help them consolidate and optimize."

"The Automatic Policy Generator saves time because we are able to identify the required policy when a client doesn't know what he needs."

"We just got done with major audits. Tufin was able to provide information to give back to people, and say, "Hey, this is what I need to do, and what we're doing.""

"In the past, we would do certain things because of private knowledge of people's own understanding of the network. We don't have to rely on just that piece of it, because of the topology. We now know which firewalls come into play."

"All the basic functions work well."

"We were hit by the NotPetya attack. Therefore, our whole company and all its sites were down for several months. So, you don't have an attack like that and not need something like Tufin. Other companies can prevent these attacks, or at least slow them down, by having this type of a tool. We will never go back."

More Tufin Orchestration Suite pros

Cons

"Its reporting can be improved. I am the only one who works a lot with it, and I am having problems in terms of reporting. In the case of Palo Alto, I'm okay with it, but with some of the Cisco devices, such as routers, when I provide the reports to other teams for review, they always say that the hit count is incorrect. So, I was struggling for a long time to work with them. When working with other teams, they have a lot of questions about reporting, such as how it reports, and we are still struggling with that."

"Some of the things that you want to do in FireMon are not exactly straightforward, like creating certain reports or controls. Some of the functions could be a little more user-friendly, such as creating certain filters."

"The advanced features are complex in setting up the rules."

"I ran a report and FireMon suggested that certain tools were not used. When I removed them, while it didn't bring our environment down completely, a lot of our environment started malfunctioning. Our backup system did not work, nor did other things that involve internal and external communication. We are not comfortable with what it did."

"The current health and monitoring of the devices is atrocious... Imagine you have a list of 200 devices, and you can grade each of those devices as either green, yellow, or red. However, there might be three different reasons for you to go to red, or eight different reasons to go to yellow, and all of those things could be combined... Out of all those categories, I only find one or two of them that are, perhaps, pertinent."

"FireMon could be easier to use and flexibility regarding reporting could be improved."

"The issue for me started with Fortinet not being able to see things correctly. It lost its appeal in terms of what it could do for me from a security standpoint, so I do not pay as much attention to it."

"Our firewalls have multiple paths through them and FireMon falls short a little bit because it's not Palo Alto-centric. I don't think FireMon has kept up with where Palo Alto is at. They started out being Check Point-centric for years and they've never really fully embraced the nuances others, like Palo Alto or Fortinet, have. They don't handle a lot of the capabilities and attributes that Palo Alto does yet. They're working on it. They're getting there."

More FireMon Security Manager cons

"My worry with Tufin is that it cannot connect to Fortinet, which is what I want to do."

"Our project is running on Riverbed for SDN. I don't know if Tufin can integrate with Riverbed. Other than that, I have no issues with this product."

"Lacks ability to create a Terraform that would enable deployment without manual steps."

"There are things that could be explained a little better for somebody brand new to this system, which could be helpful, especially if it was in real-time while you were working in the system. Having the ability in real-time to be able to understand search query suggestions would be helpful."

"The change workflow process is getting better. I wish it was a little more customizable. Right now, my biggest issue is that it wants to optimize everything we put in. Sometimes, we need a rule to be more readable, and we want it to go in a specific way. Sometimes, it's difficult to get Tufin to accept that. It wants to optimize and reduce the number of ACLs. On the compliance side, sometimes you just want more ACLs, so it's more readable for an auditor."

"I would like to see visibility into the FW features like IPS/Content Filter policies, the same way it does for FW rules/policies."

"I would like to see API access into every aspect of Tufin."

"The network part of the solution could be improved. It's too hard because of the Tufin licensing model for the routing devices."

More Tufin Orchestration Suite cons

Pricing and Cost Advice

"We don't license all of the devices in our network, so it does not provide us with a comprehensive visibility of all devices in a hybrid network at this time."

"FireMon is cheaper than AlgoSec."

"Relative to what it offers, the price is fair."

"We pay for it yearly."

"The pricing is very good, very straightforward. It also came in cheaper than AlgoSec and Tufin."

"The pricing was very good during our initial year, but they increased it this year a little bit. The price is okay. It is not cheap, but it is still average."

"Pricing model seems fair."

"Pricing is reasonable."

More FireMon Security Manager pricing and cost advice

"This solution helped us to reduce the time it takes to make changes. We used to spend up to an hour to do a change, and now, it's around five minutes."

"For us, the pricing was six out of ten, with ten being the most expensive and one being the cheapest."

"Tufin makes things a little easier. It lessens the amount of manual work which we have to do. It has a lot of benefits in terms of revenues, profits, employee costs, and operational costs. We have already seen return on investment."

"There is no issue with the pricing because we used a VM. That kept the cost low, as compared to an appliance."

"We have seen ROI in operational aspects, in terms of how long it takes to resolve incidences which arise."

"Licensing is available in both perpetual and subscription models, and it appears to be good for our scalable environments."

"Our evaluation showed that Tufin's features were on par with AlgoSec, but Tufin was the better financial choice."

"We are seeing ROI in terms of having SecureApp."

More Tufin Orchestration Suite pricing and cost advice

See which vendors are best for you

Use our free recommendation engine to learn which Firewall Security Management solutions are best for your needs.

See recommendations

851,604 professionals have used our research since 2012.

Top Industries

By visitors reading reviews

Computer Software Company

17%

Financial Services Firm

16%

Manufacturing Company

10%

Healthcare Company

Financial Services Firm

19%

Computer Software Company

14%

Manufacturing Company

10%

Retailer

Company Size

By reviewers

Large Enterprise

Midsize Enterprise

Small Business

Questions from the Community

What do you like most about FireMon?

I like the Security Manager console where we can see any changes that have been made or pull the results of an assessment and control the policies that we implement.

See all answers

What is your experience regarding pricing and costs for FireMon?

Comparatively, FireMon has a very good price and is below the general competition in cost. I have not seen any additional fees beyond the general contract fees for the usage I have. So, I have not ...

See all answers

What needs improvement with FireMon?

For one company I work with, I use Fortinet, and FireMon is not able to understand the zones that Fortinet uses. Part of that compliance piece does not provide me with the necessary information. An...

See all answers

What do you like most about Tufin SecureCloud?

The most valuable feature of Tufin is security auditing. We are able to check the rules and compliance of the company, for example, what is allowed or not. We are able to check the rules over diffe...

See all answers

What needs improvement with Tufin SecureCloud?

Tufin Orchestration Suite ( /products/tufin-orchestration-suite-reviews ) is not commonly used in Thailand due to a lack of local support, and many customers are switching to AlgoSec or other vendo...

See all answers

What is your primary use case for Tufin SecureCloud?

I have primarily used Skybox and AlgoSec ( /products/algosec-reviews ). I have also interacted with FireMon for compiling. However, I am not currently working with ACA, and I don't have any project...

See all answers

Comparisons

AlgoSec vs FireMon Security Manager

Compared 38% of the time

Skybox Security Suite vs FireMon Security Manager

Compared 10% of the time

Palo Alto Networks Panorama vs FireMon Security Manager

Compared 4% of the time

ManageEngine Firewall Analyzer vs FireMon Security Manager

Compared 3% of the time

RedSeal vs FireMon Security Manager

Compared 3% of the time

More FireMon Security Manager Competitors

AlgoSec vs Tufin Orchestration Suite

Compared 36% of the time

Skybox Security Suite vs Tufin Orchestration Suite

Compared 17% of the time

Palo Alto Networks Panorama vs Tufin Orchestration Suite

Compared 6% of the time

ManageEngine Firewall Analyzer vs Tufin Orchestration Suite

Compared 3% of the time

Illumio vs Tufin Orchestration Suite

Compared 2% of the time

More Tufin Orchestration Suite Competitors

Product Reports

Buyer's Guide

FireMon Security Manager

May 2025

Download FireMon Security Manager product report

Buyer's Guide

Tufin Orchestration Suite

April 2025

Download Tufin Orchestration Suite product report

Also Known As

No data available

Tufin SecureCloud

Overview

The increasing complexity of networks, driven by the constant influx of new devices, applications, and cloud services, presents a daunting challenge for managing firewall policies and rules. A typical enterprise environment has millions of rules, and just one simple misconfiguration can lead to devastating consequences like compliance violations, outages, and data breaches.

FireMon’s Security Manager is a purpose-built network security policy management (NSPM) platform that automates the management of firewall and cloud security policies to eliminate policy-related risk, accurately and quickly change rules, and meet internal and external compliance requirements.

Reduce Risk Manage risk with real-time visibility and control
Manage Change Avoid misconfigurations, accelerate business, and improve security
Enforce and Maintain Compliance Avoid violations, avoid risk, and avoid fines

FireMon

Tufin enables organizations to automate their security policy visibility, risk management, provisioning and compliance across their multi-vendor, hybrid environment. Customers gain visibility and control across their network, ensure continuous compliance with security standards and embed security enforcement into workflows and development pipelines.

Tufin

Sample Customers

Convey, MGM Resorts International, Southwest Airlines, Alkami, Costco, Aetna, IBM, Verizon, Wells Fargo

3M, AT&T, Blue Cross Blue Shield, BNP Parabas, ConocoPhillips, Deutsche Bank, GE, IBM, Pfizer, United States Postal Service

Buyer's Guide

FireMon Security Manager vs. Tufin Orchestration Suite

April 2025

Free Report: FireMon Security Manager vs. Tufin Orchestration Suite

Find out what your peers are saying about FireMon Security Manager vs. Tufin Orchestration Suite and other solutions. Updated: April 2025.

DOWNLOAD NOW

851,604 professionals have used our research since 2012.

See our FireMon Security Manager vs. Tufin Orchestration Suite report.

See our list of best Firewall Security Management vendors.

We monitor all Firewall Security Management reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.