Innovative approach to firewall operations and compliance
July 22, 2020
Innovative approach to firewall operations and compliance
Score 7 out of 10
Vetted Review
Verified User
Modules Used
- Security Manager
- Policy Optimizer
- Risk Analyzer
Overall Satisfaction with FireMon
FireMon is being used for firewall optimization and activity monitoring. It also leverages the firewall operations management supporting daily operations and assisting the firewall security team focusing on the exact activities needed. Audit teams are getting the outputs of firewall operations. It’s an effective tool to be compliant with several regulations and determining which items/rules should be changed or modified to be compliant. Additional controls can be integrated throughout the firewall operations from the very beginning to the last degree. Overall solutions decrease the auditing of firewalls internally as well as externally. Hidden risks are visible through FireMon to the operation team as well as to information security and upper-level management.
- Integration with different vendors
- Enrichment capabilities
- Risk analyzer
- Global dashboard
- Reporting features
- GUI is somewhat cumbersome for the beginners
- Policy planner has a lack of customization. The templates are very strict.
- Again for the beginners, it has its own custom language and familiarization takes time.
- Planning and deployment guide is lacking.
- Local support should be improved or additional support options could be offered.
- Reduced security analysis
- Minimizing the audit time
- Increased security posture, score, and metrics for firewall rule bases
- Effective implementation of zero trust mode throughout the organization
- Decreasing errors while implementing new security rules
- Solid reporting from a single product instead of collecting and analyzing different vendors' solutions
- Fewer unneeded or inconsistent rules
FireMon is very different from other competitive products. SiQL is very powerful--you can get any query with vast options. However, it’s also complex. Multiple-vendor support is one of the main points. Similar solutions in the market do not have the capability to parse the logs. FireMon can parse any format. You can access the parser configuration and change whatever is needed. Then get the results. The modifications for the parser is easily seen and maintained.
Multi-vector scoring in FireMon is unique compared to one or two vectors in other solutions. All rules in one screen with the scores are widely visible, while other products just show the flawed rules. FireMon can give you excellence in security. Central monitoring of collectors is a big plus. Complex deployments are easily set. FireMon has built-in security in its own manager or collectors, it’s somehow bulletproof. I don’t need to worry about the security of these components.
Multi-vector scoring in FireMon is unique compared to one or two vectors in other solutions. All rules in one screen with the scores are widely visible, while other products just show the flawed rules. FireMon can give you excellence in security. Central monitoring of collectors is a big plus. Complex deployments are easily set. FireMon has built-in security in its own manager or collectors, it’s somehow bulletproof. I don’t need to worry about the security of these components.