Innovative approach to firewall operations and compliance
July 22, 2020

Innovative approach to firewall operations and compliance

Anonymous | TrustRadius Reviewer
Score 7 out of 10
Vetted Review
Verified User

Modules Used

  • Security Manager
  • Policy Optimizer
  • Risk Analyzer

Overall Satisfaction with FireMon

FireMon is being used for firewall optimization and activity monitoring. It also leverages the firewall operations management supporting daily operations and assisting the firewall security team focusing on the exact activities needed. Audit teams are getting the outputs of firewall operations. It’s an effective tool to be compliant with several regulations and determining which items/rules should be changed or modified to be compliant. Additional controls can be integrated throughout the firewall operations from the very beginning to the last degree. Overall solutions decrease the auditing of firewalls internally as well as externally. Hidden risks are visible through FireMon to the operation team as well as to information security and upper-level management.
  • Integration with different vendors
  • Enrichment capabilities
  • Risk analyzer
  • Global dashboard
  • Reporting features
  • GUI is somewhat cumbersome for the beginners
  • Policy planner has a lack of customization. The templates are very strict.
  • Again for the beginners, it has its own custom language and familiarization takes time.
  • Planning and deployment guide is lacking.
  • Local support should be improved or additional support options could be offered.
It's highly scalable, multiple collectors can be set up and integrated with different vendors. With solid hardware incredible EPS rates can be achieved. Customization for device monitoring options is the key point for high EPS rates. Smart and dedicated monitoring of FireMon data collectors is a major advantage in scalability.
  • Reduced security analysis
  • Minimizing the audit time
  • Increased security posture, score, and metrics for firewall rule bases
  • Effective implementation of zero trust mode throughout the organization
  • Decreasing errors while implementing new security rules
  • Solid reporting from a single product instead of collecting and analyzing different vendors' solutions
  • Fewer unneeded or inconsistent rules
FireMon is very different from other competitive products. SiQL is very powerful--you can get any query with vast options. However, it’s also complex. Multiple-vendor support is one of the main points. Similar solutions in the market do not have the capability to parse the logs. FireMon can parse any format. You can access the parser configuration and change whatever is needed. Then get the results. The modifications for the parser is easily seen and maintained.
Multi-vector scoring in FireMon is unique compared to one or two vectors in other solutions. All rules in one screen with the scores are widely visible, while other products just show the flawed rules. FireMon can give you excellence in security. Central monitoring of collectors is a big plus. Complex deployments are easily set. FireMon has built-in security in its own manager or collectors, it’s somehow bulletproof. I don’t need to worry about the security of these components.
For a scenario with multiple firewall/security vendors with lots of devices in the company, FireMon is the perfect solution. However, in the case of having only a few devices, it’s somewhat pricey for an initial investment and in the ongoing operational costs. In the case of regulatory and compliance requirements, FireMon is very effective. If you have time to dig into software for firewall management, this product is perfect. But if you don’t have time or work with limited resources, I advise you to check the other convenient products.

FireMon Feature Ratings