AWS CloudTrail vs. FireMon

Overview
ProductRatingMost Used ByProduct SummaryStarting Price
AWS CloudTrail
Score 8.6 out of 10
N/A
AWS CloudTrail is a service that enables governance, compliance, operational auditing, and risk auditing of an AWS account. With CloudTrail, users can log, continuously monitor, and retain account activity related to actions across AWS infrastructure. CloudTrail provides event history of AWS account activity, including actions taken through the AWS Management Console, AWS SDKs, command line tools, and other AWS services. This event history simplifies security analysis, resource change tracking,…N/A
FireMon
Score 7.9 out of 10
Enterprise companies (1,001+ employees)
FireMon is a real-time security policy management solution built for today’s complex multi-vendor, enterprise environments. Supporting the latest firewall and policy enforcement technologies spanning on-premises networks to the cloud, FireMon delivers visibility and control across the entire IT landscape to automate policy changes, meet compliance standards, to minimize policy-related risk. Since creating their policy management solution in 2004, FireMon states they've helped…N/A
Pricing
AWS CloudTrailFireMon
Editions & Modules
No answers on this topic
No answers on this topic
Offerings
Pricing Offerings
AWS CloudTrailFireMon
Free Trial
YesYes
Free/Freemium Version
YesNo
Premium Consulting/Integration Services
NoNo
Entry-level Setup FeeNo setup feeOptional
Additional DetailsYou can view, filter, and download the most recent 90 days of your account activity for all management events in supported AWS services free of charge. You can set up a trail that delivers a single copy of management events in each region free of charge. Once a CloudTrail trail is set up, Amazon S3 charges apply based on your usage. You will be charged for any data events or additional copies of management events recorded in that region. In addition, you can choose CloudTrail Insights by enabling Insights events in your trails. CloudTrail Insights analyzes write management events, and you are charged based on the number of events that are analyzed in that region.
More Pricing Information
Community Pulse
AWS CloudTrailFireMon
Best Alternatives
AWS CloudTrailFireMon
Small Businesses
Armor
Armor
Score 6.0 out of 10
NinjaOne
NinjaOne
Score 9.0 out of 10
Medium-sized Companies
Druva Security Cloud
Druva Security Cloud
Score 9.7 out of 10
NinjaOne
NinjaOne
Score 9.0 out of 10
Enterprises
Druva Security Cloud
Druva Security Cloud
Score 9.7 out of 10
Cisco Meraki MX
Cisco Meraki MX
Score 9.2 out of 10
All AlternativesView all alternativesView all alternatives
User Ratings
AWS CloudTrailFireMon
Likelihood to Recommend
8.0
(0 ratings)
7.9
(0 ratings)
Likelihood to Renew
-
(0 ratings)
6.8
(0 ratings)
Usability
-
(0 ratings)
7.3
(0 ratings)
Availability
-
(0 ratings)
7.3
(0 ratings)
Performance
-
(0 ratings)
9.1
(0 ratings)
Support Rating
-
(0 ratings)
7.7
(0 ratings)
Implementation Rating
-
(0 ratings)
9.1
(0 ratings)
Product Scalability
-
(0 ratings)
7.9
(0 ratings)
User Testimonials
AWS CloudTrailFireMon
Likelihood to Recommend
Most probably it would be suitable for Finance industries, where security is at the head of the table. However, in our case for E-commerce, it's also quite suitable, since we have quite a significant amount of data and usage of AWS services. Especially with usage of AWS services, AWS CloudTrail comes into play as a heavy plus. For instance, troubleshooting any issues in AWS services is really nice. Therefore, it would be less appropriate with a small amount of AWS service usage and some basic web hosting.
Read full review
FireMon is best used in a large environment (for example, I have >100
firewalls in my environment). It's best used when trying to improve
security posture and showing changes in firewall security over time. It
might not be the best choice for smaller environments or those that aren't concerned about security management.
Read full review
Pros
  • Logs details
  • Easy implementation
  • Great support
Read full review
  • PCI Reporting - After identifying which firewalls and rulesets are in scope, producing a report artifact to satisfy PCI requirements on Firewall reviews is literally a two-click operation.
  • Storing Rule Metadata - FireMon stores metadata (prefilled fields, standard fields, and custom fields) for each rule in each policy which is valuable for context during firewall reviews in particular
  • API - FireMon exposes most if not all of its functionality via REST API
Read full review
Cons
  • Delay
  • User interface, must send logs elsewhere to view them
Read full review
  • Some features could be added to the existing functionality which include NAT rules usage
  • Rule expiration normalization from firewalls rather than entering them in rule documentation
  • .csv exports of the files from the firewall pane only gives usage for 30 days by default and that should be increased
Read full review
Likelihood to Renew
No answers on this topic
Once all the customization has been completed, the business is starting to see the return on investment. The visibility it provides into the network gear that is owned by other IT groups is immeasurable and has allowed us to apply standards across the board. The only thing I have concern with is their support documentation.
Read full review
Usability
No answers on this topic
It save me time and I'm able to have the review - review the rule independently with using my time.
Read full review
Reliability and Availability
No answers on this topic
FireMon has been relatively stable overall. However, there have been a handful of times where we had issues with the console. For example, we couldn't update which devices to include in a security assessment. The initial suggestion from support was to just reboot it. It seems like there weren't many other options available such as to restart services before going to the extreme of a complete reboot.
Read full review
Performance
No answers on this topic
I'm not sure we have the largest implementation of FireMon out there but we do have a few 1000 devices being probed by FireMon. Overall, the system's performance has been rock solid. The console refreshes quickly and reports are generated within an expected timeframe.
Read full review
Support Rating
No answers on this topic
FireMon technical support is awesome! They respond quickly to our requests and they are well trained and very knowledgeable about the tool. Some issues have to be referred to the development team, but technical support largely provides solutions for any issues that we may have.
Read full review
Implementation Rating
No answers on this topic
Implementation is fairly simple. Most issues can be resolved by referencing manuals.
Read full review
Alternatives Considered
For this specific functionality, I am not aware of any other product that can do what [AWS] Cloudtrail does. We did not evaluate any other products.
Read full review
I has worked with AlgoSec and while they are very similar product, I find the FireMon is easier to understand and get rolling with. While both require some learning, FireMon is by far the easier one. Once you have an understanding of how things are arranged and labeled you can easily import firewalls and begin to work on them to improve them
Read full review
Scalability
No answers on this topic
Firemon Is easily scalable and maintainable with any size team. Although it requires some tech debt, it is well worth the time to invest to ensure compliance is visible and reports are accurate. Although our environment is very large we do not fully utilize the scalability of the Firemon product.
Read full review
Return on Investment
  • Saved us from purchasing and managing 3rd party solutions
  • Satisfies Security/Governance requirements
  • No upkeep/maintenance
Read full review
  • It helps us save us time in determining what change was made and by whom.
  • Real time alerting is a great convenience in helping us know if something went wrong, we can immediately review the last report to determine what has changed.
  • Allows us to determine what rules are not used and if said rules are still required.
Read full review
ScreenShots

AWS CloudTrail Screenshots

Screenshot of CloudTrail Insights: Identify and respond to unusual operational activity
•Unexpected spikes in resource provisioning
•Bursts of IAM management actions
•Gaps in periodic maintenance activity
•Automatic analysis of API calls and usage patterns
•Alerts when unusual activity is detected