Cisco Security Cloud Control helps the user consistently manage policies across Cisco security products. It is a cloud-based application that cuts through complexity to save time and keep your organization protected against the latest threats.
N/A
FireMon
Score 7.9 out of 10
Enterprise companies (1,001+ employees)
FireMon is a real-time security policy management solution built for today’s complex multi-vendor, enterprise environments. Supporting the latest firewall and policy enforcement technologies spanning on-premises networks to the cloud, FireMon delivers visibility and control across the entire IT landscape to automate policy changes, meet compliance standards, to minimize policy-related risk. Since creating their policy management solution in 2004, FireMon states they've helped…
N/A
Pricing
Cisco Security Cloud Control
FireMon
Editions & Modules
No answers on this topic
No answers on this topic
Offerings
Pricing Offerings
Cisco Security Cloud Control
FireMon
Free Trial
No
Yes
Free/Freemium Version
No
No
Premium Consulting/Integration Services
No
No
Entry-level Setup Fee
No setup fee
Optional
Additional Details
—
—
More Pricing Information
Community Pulse
Cisco Security Cloud Control
FireMon
Features
Cisco Security Cloud Control
FireMon
Firewall Security Management
Comparison of Firewall Security Management features of Product A and Product B
Use case would be if you wanted most of the functionality of the FMC on prem but had no datacenter, cloud presence in AWS, or a cloud presence in Azure for an FMCv. You gain an always up FMC to manage the firewalls due to resiliency of the cloud FMC. You get almost all the functionality of an FMC on prem.
FireMon is best used in a large environment (for example, I have >100 firewalls in my environment). It's best used when trying to improve security posture and showing changes in firewall security over time. It might not be the best choice for smaller environments or those that aren't concerned about security management.
PCI Reporting - After identifying which firewalls and rulesets are in scope, producing a report artifact to satisfy PCI requirements on Firewall reviews is literally a two-click operation.
Storing Rule Metadata - FireMon stores metadata (prefilled fields, standard fields, and custom fields) for each rule in each policy which is valuable for context during firewall reviews in particular
API - FireMon exposes most if not all of its functionality via REST API
I give this score because I believe that Cisco Defense Orchestrator helps our company to be resilient, this is because this software is also focused on offering security resilience at the enterprise level, that is, through its features such as high visibility, acceleration of threat detection and response, simple management, and end-to-end protection. By having it, it is more feasible to avoid disasters or risks in the devices that are handled daily and of course avoid data loss and, given this, be able to recover quickly if something happens.
Once all the customization has been completed, the business is starting to see the return on investment. The visibility it provides into the network gear that is owned by other IT groups is immeasurable and has allowed us to apply standards across the board. The only thing I have concern with is their support documentation.
I believe that Cisco Defense Orchestrator is available when needed, this solution has allowed the security team to have better productivity thanks to the fact that their workflow is less intense because they can carry out their tasks with the help of this software, in addition to the presence If there is an error, they can be overcome quickly because their support team is efficient.
FireMon has been relatively stable overall. However, there have been a handful of times where we had issues with the console. For example, we couldn't update which devices to include in a security assessment. The initial suggestion from support was to just reboot it. It seems like there weren't many other options available such as to restart services before going to the extreme of a complete reboot.
I'm not sure we have the largest implementation of FireMon out there but we do have a few 1000 devices being probed by FireMon. Overall, the system's performance has been rock solid. The console refreshes quickly and reports are generated within an expected timeframe.
FireMon technical support is awesome! They respond quickly to our requests and they are well trained and very knowledgeable about the tool. Some issues have to be referred to the development team, but technical support largely provides solutions for any issues that we may have.
Cisco Defense Orchestrator is a software that is easy to implement, although knowledge is required for it, but if you do not have it, going to its valuable support team is very helpful. If done knowingly, this process can take less than two hours. Having a simple implementation is a valuable feature because it saves time and expense.
McAfee ePolicy Orchestrator is a simple, flexible, and easy-to-implement configuration solution, however, with Cisco Defense Orchestrator there is an implementation in the cloud and the ease of managing all devices from a single console regardless of location, in addition to its analysis of security policies security help us to know if the ones that are being used are fulfilling their function or if changes are required to make infrastructure more secure, that is why we chose this Cisco software.
I has worked with AlgoSec and while they are very similar product, I find the FireMon is easier to understand and get rolling with. While both require some learning, FireMon is by far the easier one. Once you have an understanding of how things are arranged and labeled you can easily import firewalls and begin to work on them to improve them
Firemon Is easily scalable and maintainable with any size team. Although it requires some tech debt, it is well worth the time to invest to ensure compliance is visible and reports are accurate. Although our environment is very large we do not fully utilize the scalability of the Firemon product.
It helps us save us time in determining what change was made and by whom.
Real time alerting is a great convenience in helping us know if something went wrong, we can immediately review the last report to determine what has changed.
Allows us to determine what rules are not used and if said rules are still required.
