AWS CloudTrail vs. Cisco TrustSec vs. Tufin Orchestration Suite

Tufin Orchestration Suite

Overview
Product	Rating	Most Used By	Product Summary	Starting Price
AWS CloudTrail	Score 9.1 out of 10	N/A	AWS CloudTrail is a service that enables governance, compliance, operational auditing, and risk auditing of an AWS account. With CloudTrail, users can log, continuously monitor, and retain account activity related to actions across AWS infrastructure. CloudTrail provides event history of AWS account activity, including actions taken through the AWS Management Console, AWS SDKs, command line tools, and other AWS services. This event history simplifies security analysis, resource change tracking,…	N/A
Cisco TrustSec	Score 7.2 out of 10	N/A	N/A	N/A
Tufin Orchestration Suite	Score 8.7 out of 10	N/A	Israeli company Tufin offers a firewall security management offering via the Tufin Orchestration Suite, including SecureApp for managing network connectivity, SecureChange network change automation, and SecureTrack multi-vendor and next-generation firewall management.	N/A

Pricing

AWS CloudTrail

Cisco TrustSec

Tufin Orchestration Suite

Editions & Modules

No answers on this topic

Offerings

Pricing Offerings
AWS CloudTrail	Cisco TrustSec	Tufin Orchestration Suite
Free Trial
Yes	No	No
Free/Freemium Version
Yes	No	No
Premium Consulting/Integration Services
Yes	No	No

Entry-level Setup Fee

No setup fee

Additional Details

You can view, filter, and download the most recent 90 days of your account activity for all management events in supported AWS services free of charge. You can set up a trail that delivers a single copy of management events in each region free of charge. Once a CloudTrail trail is set up, Amazon S3 charges apply based on your usage. You will be charged for any data events or additional copies of management events recorded in that region. In addition, you can choose CloudTrail Insights by enabling Insights events in your trails. CloudTrail Insights analyzes write management events, and you are charged based on the number of events that are analyzed in that region.

—

More Pricing Information

Community Pulse
	AWS CloudTrail	Cisco TrustSec	Tufin Orchestration Suite

Features

AWS CloudTrail

Cisco TrustSec

Tufin Orchestration Suite

Firewall Security Management

Comparison of Firewall Security Management features of Product A and Product B
	AWS CloudTrail - Ratings	Cisco TrustSec - Ratings	Tufin Orchestration Suite 8.2 2 Ratings 3% above category average
Policy planning and rule management	00 Ratings	00 Ratings	9.32 Ratings
Automated Policy Orchestration	00 Ratings	00 Ratings	7.92 Ratings
Device Discovery	00 Ratings	00 Ratings	6.92 Ratings
Policy Compliance Auditing	00 Ratings	00 Ratings	8.62 Ratings
Attack Path Simulation Testing	00 Ratings	00 Ratings	5.62 Ratings
Anomalous Event or Behavior Deviation	00 Ratings	00 Ratings	9.01 Ratings
Vulnerability Scans	00 Ratings	00 Ratings	9.01 Ratings
Firewall Rule Cleanup	00 Ratings	00 Ratings	9.32 Ratings

Best Alternatives
	AWS CloudTrail	Cisco TrustSec	Tufin Orchestration Suite
Small Businesses	Armor Score 6.0 out of 10	Armor Score 6.0 out of 10	No answers on this topic
Medium-sized Companies	Druva Security Cloud Score 9.4 out of 10	Druva Security Cloud Score 9.4 out of 10	Palo Alto Panorama Score 8.7 out of 10
Enterprises	Druva Security Cloud Score 9.4 out of 10	Druva Security Cloud Score 9.4 out of 10	ServiceNow IT Operations Management Score 8.6 out of 10
All Alternatives	View all alternatives	View all alternatives	View all alternatives

User Ratings
	AWS CloudTrail	Cisco TrustSec	Tufin Orchestration Suite
Likelihood to Recommend	8.0 (4 ratings)	9.0 (1 ratings)	7.3 (4 ratings)

User Testimonials
	AWS CloudTrail	Cisco TrustSec	Tufin Orchestration Suite
Likelihood to Recommend	Amazon AWS It is necessary to enable [AWS] Cloudtrail when using AWS in a production environment, otherwise you will not have any idea what is happening within your accounts. Third party monitoring applications will all require [AWS] CloudTrail to be enabled as well. I would not recommend it solely as a monitoring tool, to get the most out of it you must send the logs elsewhere. Either to Cloudwatch logs or a third party product. Incentivized Verified User Anonymous Read full review	Cisco Control access to critical enterprise resources by business role, device type, and location, so policy changes can be made without redesigning the network. Easily manage access control and segmentation while maintaining compliance. Create and manage policies in an easy-to-use matrix. Reduce the need for costly network re-architecture by automating firewall rules and access control list (ACL) administration. Incentivized Verified User Anonymous Read full review	Tufin Well suited scenarios - 1) Firewall Policy / Ruleset management 2) Where all the products are from Tufin like TOS ST, SC, SecureApp etc 3) Where customer focuses on ruleset compliance - USP violations, and other features Less suited - 1) Agnostic/distributed environment - Tough with integrate with 3rd party like CyberArk 2) FW recertification processes / exception process when complex process is included Incentivized Verified User Anonymous Read full review
Pros	Amazon AWS API Log User activity tracking Real-time alerts Incentivized AS Anton Smyslov Product Owner Read full review	Cisco Reduce operational expenses by simplifying network segmentation and defining security groups based on business roles, not IP addresses. Limit the impact of a data breach by quickly isolating and containing threats using technology already in your network. Incentivized Verified User Anonymous Read full review	Tufin Firewall management Compliance reports Unused rules and optimization Policy Automation Incentivized Binita Kharbanda Shift Supervisor Read full review
Cons	Amazon AWS [In my experience] Cost can easily get out of control with multiple trails on full logging Logs can be difficult to decipher Incentivized Verified User Anonymous Read full review	Cisco Help and solutions if needed, support Incentivized Verified User Anonymous Read full review	Tufin Palo Alto Networks Integration Better/more user friendly api for integration with ticketing systems Web UI structure is not user-friendly Incentivized Alex Waitkus, CISSP-ISSAP, OSCP Security Architect Read full review
Alternatives Considered	Amazon AWS I think in the end, CloudTrail has more features and you can dive deeper inside the logs so it depends on your usage and what you expect in the end to make the right choice, I would say that both tools are really useful and bring a lot of benefits to I.T. companies. Incentivized Verified User Anonymous Read full review	Cisco No answers on this topic	Tufin 1) Fairly okay overall but definitely needs improvement overall Vs the other products available in the market like Palo Alto XSOAR 2) Cost wise okay at the beginning but when client demands add-ons/ more features/customization tailored to their needs, Tufin Orchestration Suite recommends RFE / custom costs/development costs 3) USP feature is cool to use overall Vs FireMon 4) Tufin ProServ needs to buckle-up/Support compared to other competitors in the market Incentivized Verified User Anonymous Read full review
Return on Investment	Amazon AWS Allows us to investigate any strange api actions Increases security Audit trail of changes made in AWS Incentivized Verified User Anonymous Read full review	Cisco Reduction in IT operational costs Incentivized Verified User Anonymous Read full review	Tufin I think if you correctly configure your SIEM, you don't need Tufin. You can correlate a lot of things for firewalls. Incentivized Verified User Anonymous Read full review
ScreenShots	AWS CloudTrail Screenshots