Cisco Secure Firewall Management Center (formerly Firepower Management Center) are a firewall policy and intrusion detection appliance management system, providing an administrative nerve center for managing critical Cisco network security solutions. It provides complete and unified management over firewalls, application control, intrusion prevention, URL filtering, and advanced malware protection. Easily go from managing a firewall to controlling applications to investigating and remediating…
N/A
Trellix Endpoint Security ENS
Score 8.3 out of 10
N/A
Trellix Endpoint Security (ENS) solutions apply proactive threat intelligence and defenses across the entire attack lifecycle to keep organizations safer and more resilient.
FMC is feature-rich and user-friendly. Cisco firewalls can run on standalone mode (FDM) but fewer features are supported on FDM. FMC is a must when working with Cisco Firewall. Migration from Cisco ASA to Cisco FTD is easy. There is a tool (FMT) that converts and imports the cisco IOS configuration file to FMC. FMC runs in VM or can be purchased as a physical appliance. The downside is that FMC is not quite fast and has bugs, especially when running in the older version 5x. and 6x.
It provides great web security and will protect your devices against viruses and malware when paired with other security software and hardware. For instance, we have multiple layers of security set up so if McAfee misses something then one of our other barriers will catch the infection or intrusion before it reaches the network. I would not suggest using this product as a standalone agent because I do not think it will be as effective when working by itself. The dashboard also makes it convenient to manage devices, policies, and settings from wherever you are so it's an ideal solution for any IT department to use. I would just suggest using something else as a backup so your network isn't left vulnerable.
Stability when managing firewalls, we're having issues with Firewall 01 and Firewall 02 remaining in sync
Reporting when it comes to access control policy rules - there is no way to export a report of the rules easily. Using a custom Python script on the Cisco forums is the only way to easily export a CSV.
Support for policy and route-based site-to-site VPN was not available until 6.6.0 and later. This forced us to purchase ASAs to bridge that gap.
Dashboard reporting - when clicking a link for more information, nothing displays. Currently working with Cisco on the support case, which has been escalated.
The amount of false detections especially the negative ones needed to be reduced.
It requires more optimization. It tends to make the PCs slower.
It almost doesn't have the ability to heal. This is very important as we need our sensitive data to be recoverable.
It doesn't have any free scanning functionality. Our users using personal machines cannot scan in case of an incident. This could be added like Malwarebytes.
We are very satisfied with SecureX and it's adaptive, active nature in protecting or data and systems. It's easy to administer, update, review notifications and update when necessary. Cisco's security practice fits into our needs and continues to evolve as global cyber events change. SecureX is easy to migrate to new cisco gear as we upgrade to newer models when supports ends on older gear. Enabling fast ROI during these capital expenditure projects.
Overall usability is an eight for me because it is easy to manage the firewall policies and monitor the devices' health. The configurations are all done in the GUI which makes it more convenient and hassle free. You can also see the devices' health and the progress of the task thru its taskbar.
Since moving to Cisco secure management center from firepower management center we've had no application issues, outages or any other problems. It's always been there for us and always provides us the necessary protection and notification when we need it. Been very happy with all of our Cisco systems over our tenure to date.
We have the direct support of the manufacturer through its service channels, the attention is 24/7, and the response time is acceptable. The support for this tool is almost nil. It all depends on the level of implementation is carried out so that it can fail and request collaboration. Anyway, the manufacturer backs the entire Cisco Firepower Management Center (FMC series appliances) solution.
The support of product was very good when we initially implemented the solution. We were getting fats replies and could see the customer approach. After a while the level of support was not following the SLA's and the replies were getting very confusing and late.
Cisco secure firewall management center is easy to install, moderate to setup in conjunction with firewall hardware, and administration of policy changes afterwards is pretty straight forward. And flexible to add more advanced security configurations as needed. Cisco support website is pretty good for researching how to documentation too. Cisco secure firewall management center enables integration to SecureX - the cloud security protection service. And AMP which protects packet flow with real time analysis. Cisco secure fmc is the evolved name for cisco firepower management center so for those customers who have firepower this is a simple migration.
We are managing multiple customers having a large number of Cisco devices that need to be managed by a single platform. For that reason, we have selected the Cisco Firewall Management Center than checkpoint firewall management. It simplifies and automates newly bought cisco firewalls at remote branch offices to manage, configure and troubleshoot them.
Unlike Trellix Endpoint Security Symantec Endpoint provides less information about events on the user side. Trellix give an opportunity to see information about virus detection on a user machine as quick as it possible, so we were able to catch the signs of virus propagation early and prevent the spread of damage
It's a very straightforward and user-friendly tool that has enhanced the total detection of malware and other threats t from intrusion into our network.
Provides stable deep network scanning, security visibility, and protection from unauthorized access.
The platform modular allows us to deploy across multiple budget cycles.
From an auditing standpoint, we can show that our workstations/servers are protected.
Even though it cant identify more advanced/targeted malware, it is still good to identify the more obvious malware which occurs daily in my enterprise.
Since it can be easily deployed, the products can easily get deployed on all systems in the environment for optimal anti-malware protection.
