FireMon vs. Forescout Platform

Overview
ProductRatingMost Used ByProduct SummaryStarting Price
FireMon
Score 7.9 out of 10
Enterprise companies (1,001+ employees)
FireMon is a real-time security policy management solution built for today’s complex multi-vendor, enterprise environments. Supporting the latest firewall and policy enforcement technologies spanning on-premises networks to the cloud, FireMon delivers visibility and control across the entire IT landscape to automate policy changes, meet compliance standards, to minimize policy-related risk. Since creating their policy management solution in 2004, FireMon states they've helped…N/A
Forescout Platform
Score 7.2 out of 10
N/A
Forescout Technologies headquartered in San Jose actively defends the Enterprise of Things by identifying, segmenting and enforcing compliance of every connected thing. Forescout boasts a widely deployed, enterprise-class platform at scale across IT, IoT, and OT managed and unmanaged devices. Forescout arms customers with device intelligence, in order to allow organizations across every industry to classify risk, detect anomalies and quickly remediate cyberthreats without disruption of critical…N/A
Pricing
FireMonForescout Platform
Editions & Modules
No answers on this topic
No answers on this topic
Offerings
Pricing Offerings
FireMonForescout Platform
Free Trial
YesNo
Free/Freemium Version
NoNo
Premium Consulting/Integration Services
NoNo
Entry-level Setup FeeOptionalNo setup fee
Additional Details
More Pricing Information
Community Pulse
FireMonForescout Platform
Best Alternatives
FireMonForescout Platform
Small Businesses
NinjaOne
NinjaOne
Score 9.0 out of 10

No answers on this topic

Medium-sized Companies
NinjaOne
NinjaOne
Score 9.0 out of 10
Cisco Identity Services Engine (ISE)
Cisco Identity Services Engine (ISE)
Score 8.7 out of 10
Enterprises
Cisco Meraki MX
Cisco Meraki MX
Score 9.2 out of 10
Cisco Identity Services Engine (ISE)
Cisco Identity Services Engine (ISE)
Score 8.7 out of 10
All AlternativesView all alternativesView all alternatives
User Ratings
FireMonForescout Platform
Likelihood to Recommend
7.9
(0 ratings)
8.2
(0 ratings)
Likelihood to Renew
6.8
(0 ratings)
-
(0 ratings)
Usability
7.3
(0 ratings)
-
(0 ratings)
Availability
7.3
(0 ratings)
-
(0 ratings)
Performance
9.1
(0 ratings)
-
(0 ratings)
Support Rating
7.7
(0 ratings)
8.0
(0 ratings)
Implementation Rating
9.1
(0 ratings)
-
(0 ratings)
Product Scalability
7.9
(0 ratings)
-
(0 ratings)
User Testimonials
FireMonForescout Platform
Likelihood to Recommend
FireMon is best used in a large environment (for example, I have >100
firewalls in my environment). It's best used when trying to improve
security posture and showing changes in firewall security over time. It
might not be the best choice for smaller environments or those that aren't concerned about security management.
Read full review
I strongly recommend using it in networks where many machines enter, it is essential to have a capture of all ids, mac etc to prevent and detect unauthorized machines.We are in the technological era and there is a lot of technological robotization looking for weak systems to enter.Invest in greater security and that does not happen to you.
Read full review
Pros
  • PCI Reporting - After identifying which firewalls and rulesets are in scope, producing a report artifact to satisfy PCI requirements on Firewall reviews is literally a two-click operation.
  • Storing Rule Metadata - FireMon stores metadata (prefilled fields, standard fields, and custom fields) for each rule in each policy which is valuable for context during firewall reviews in particular
  • API - FireMon exposes most if not all of its functionality via REST API
Read full review
  • Great in monitoring what applications versions are running and on what devices.
  • Good identification of unmanaged devices and segregating them.
  • Endpoint visibility.
Read full review
Cons
  • Some features could be added to the existing functionality which include NAT rules usage
  • Rule expiration normalization from firewalls rather than entering them in rule documentation
  • .csv exports of the files from the firewall pane only gives usage for 30 days by default and that should be increased
Read full review
  • Grow the Forescout community to help in addressing concern for a larger audience via channels
  • More training and demos for latest FS versions released
  • GUI can be made more interactive and aesthetic in appearance
Read full review
Likelihood to Renew
Once all the customization has been completed, the business is starting to see the return on investment. The visibility it provides into the network gear that is owned by other IT groups is immeasurable and has allowed us to apply standards across the board. The only thing I have concern with is their support documentation.
Read full review
No answers on this topic
Usability
It save me time and I'm able to have the review - review the rule independently with using my time.
Read full review
No answers on this topic
Reliability and Availability
FireMon has been relatively stable overall. However, there have been a handful of times where we had issues with the console. For example, we couldn't update which devices to include in a security assessment. The initial suggestion from support was to just reboot it. It seems like there weren't many other options available such as to restart services before going to the extreme of a complete reboot.
Read full review
No answers on this topic
Performance
I'm not sure we have the largest implementation of FireMon out there but we do have a few 1000 devices being probed by FireMon. Overall, the system's performance has been rock solid. The console refreshes quickly and reports are generated within an expected timeframe.
Read full review
No answers on this topic
Support Rating
FireMon technical support is awesome! They respond quickly to our requests and they are well trained and very knowledgeable about the tool. Some issues have to be referred to the development team, but technical support largely provides solutions for any issues that we may have.
Read full review
They are prompt in their response with a complete resolution once they have identified the problem. Other OEM's generally give stop-gap arrangements and then later come with new upgrade versions. This gives downtime tasks to customers often, which isn't appreciated. Given the criticality of this software, their support is prompt.
Read full review
Implementation Rating
Implementation is fairly simple. Most issues can be resolved by referencing manuals.
Read full review
No answers on this topic
Alternatives Considered
I has worked with AlgoSec and while they are very similar product, I find the FireMon is easier to understand and get rolling with. While both require some learning, FireMon is by far the easier one. Once you have an understanding of how things are arranged and labeled you can easily import firewalls and begin to work on them to improve them
Read full review
CounterACT was the product that was able to do exactly what we were looking to accomplish and that was to block non-company owned devices from connecting to our network based on our criteria. It will allow us to decide if a blocked device should be allowed on our network temporarily
Read full review
Scalability
Firemon Is easily scalable and maintainable with any size team. Although it requires some tech debt, it is well worth the time to invest to ensure compliance is visible and reports are accurate. Although our environment is very large we do not fully utilize the scalability of the Firemon product.
Read full review
No answers on this topic
Return on Investment
  • It helps us save us time in determining what change was made and by whom.
  • Real time alerting is a great convenience in helping us know if something went wrong, we can immediately review the last report to determine what has changed.
  • Allows us to determine what rules are not used and if said rules are still required.
Read full review
  • We have been able to achieve deeper levels of security.
  • It has been able to counter most threats through the detection of rogue devices and segregating them.
  • Fostered accountability as guests' devices is signed in by employees so as to track activities they may be undertaking.
Read full review
ScreenShots