Our primary use case is identifying unused tools and junk rules, including objects that are created but whose exact user and traffic cannot be tracked. I've deployed AlgoSec to address this use case, as it performs its job well by allowing me to block multiple unused rules and objects while permitting only the required traffic.

AlgoSec has helped streamline our environment by interacting with risky users and managing risky traffic. It has minimized manual involvement while providing clear, readable reports based on compliance standards.

One of the most valuable features of AlgoSec is its capability for identifying unused and risky rules, which cannot be done through manual analysis. AlgoSec analyzes logs and provides insights on risky rules and wide-open access scenarios, like when access was granted to too many users. It helps in minimizing security risks by allowing reporting and adjustments accordingly.

There should be improvements in the analysis between internal zones, such as internal to DMZ or guest to DMZ. These scenarios should be considered critical and enhancements should be made, even if the risk score is set high. Improvements are also needed in the area of PCI, specifically the PCI controller.

I have been using AlgoSec for about two years.

The solution is stable, and even if there are issues or it goes down, it does not impact the environment significantly.

Scalability is favorable since the solution is actively being developed. Specifically, for firewall perspectives, scalability is satisfactory.

Customer service is good as we have a dedicated person from the technical team who supports us whenever required.

Before AlgoSec, we were using Tufin, which required significant manual effort.

The initial setup was straightforward, taking only one or two hours. Once necessary components like VMs and CPUs are ready, implementation is seamless.

Initially, we had assistance from AlgoSec's technical team to set things up, but moving forward, no additional help is required.

I have not directly observed a reduction in costs or resources, but AlgoSec provides training when required, and they visit us for new feature introductions and solutions.

The pricing is manageable. While there are less expensive options available, AlgoSec provides a middle variance solution and is cost-effective in comparison to others.

AlgoSec minimizes manual efforts in creating compliance standards reports that are clear and readable.

Overall, I would rate AlgoSec nine out of ten.

We resell AlgoSec, and I provide professional service for AlgoSec. Our customers get good value from it. Our clients are usually large businesses, between 25,000 to 40,000 employees.

The primary use cases are for:

• the optimization of firewalls,
• getting reports,
• compliance for ISO 27001 and PCI DSS.

It helps us to see what changes users make on a firewall by the users. AlgoSec identifies in real-time any changes on the firewalls. It also optimizes the firewall policies, rules, and objects.

There is a compliance that is required where we need to provide a report for the optimization of firewalls that is part of PCI DSS and ISO 27001. So now many organizations use AlgoSec to monitor and optimize their firewalls.

In addition to compliance, they also use AlgoSec to ensure that their environment is well-secured. They can see what changes are being made to the firewalls and by who, which is part of the compliance. They use AlgoSec to achieve that and also to track real-time changes.

One of the problems that I've used AlgoSec to solve is to identify what's blocking a particular rule, object, or network traffic with the AlgoSec network simulator. It has a traffic simulator and a query simulator, where you can input the destination, the source, and the service, and then you can do a simulation of that traffic and see what firewall, object, or rule is blocking that traffic from going through.

AlgoSec is easy to use and very easy to implement. Within three hours after downloading AlgoSec, you can start to see value immediately. Within that same time, you can generate reports almost immediately.

Another valuable feature is the way it produces reports. It checks to see if you pass a particular policy. It also shows you recommendations to fix it. That's a very good feature.

I like the traffic simulation too and queries. I'm not sure other solutions provide that. You can also use it to get a network topology and network map of your environment and see what's happening.

These are some of the good features that make AlgoSec stand out.

AlgoSec support is exceptionally good. They have very good support. I use several solutions because I'm a security engineer. I implement security solutions for my customers and AlgoSec stands out in support. You can always rely on their support.

The customization and fine-tuning of the policies could use improvement. There's a place where you can modify the network maps and network. It is not so straightforward unless you have experience with it. It would make it more flexible and everyone can use it effectively if they improve that.

I have been using AlgoSec since 2018.

They have updates at least twice a year, so, it is very stable. I'd rate the stability a nine out of ten.

I have a new client that is using it on the cloud, and it's as effective as the on-prem version. The scalability is very good. I would rate it eight out of ten.

The support is very responsive and knowledgeable. You can rely on support for speed and to have the ability to resolve a problem.

The initial setup is very straightforward.

After downloading the software it takes around one hour or so. It is fast.

There are usually updates and fixes. Support is always available to assist whenever there's a need for it.

I think the pricing is fair because when I speak to our partner manager, we can always get reasonable discounts but it can be better. Many people do not want to spend a lot of money on security. If the price was a little lower it would make it more affordable for smaller businesses.

I would always recommend AlgoSec to other users.

I would rate AlgoSec overall an eight out of ten.

AlgoSec is an exceptionally good solution. I didn't give it a perfect ten because the UI of the platform could be improved and the pricing could be lower. That would make it more interesting. Also, the modification or fine-tuning of policies could be easier.

My client is from a finance background and has more than 100 firewall clusters deployed, that too from different OEMs, for added security. Thanks to historical reasons, some of the firewall policies are poorly managed with tons of rules, and nobody knows what policies are in use and what are not, what policies are redundant, and what are vulnerable.

On top of this, the client Info-sec policy enforces strict one-to-one rules, which, considering the size of the business, leads to the implementation of hundreds of new policies every week.

Firewall Rule analysis & New rule implementations were a challenge, and there comes the AlgoSec.

We started using AlgoSec to review existing firewall rules. To our surprise, thousands of policies were redundant, and many risky rules were also present.

Due to their large rule bases, firewalls used to have high CPU usage during peak business hours. The client was able to remove redundant rules and strengthen risky rules to save the network from compromises.

Implementing firewall rules was another challenge. The same rule had to be implemented on multiple firewalls from different OEMs. AlgoSec made our life easy.

Both analysis and Implementation engines/features are found to be very much valuable since they helped the client to manage the show better.

Implementations used to take a long time, both in terms of approvals and manual implementations. Errors during implementation were another challenge. Delays in policy implementations impacted new feature rollouts or application developments. AlgoSec auto implementation came into the picture, which helped the right departments to approve policies and implementations.

AlgoSec is slow when it is loaded with too many firewalls and policies. A plan to take care of heavy usage is to be considered. Support of all firewalls and policy features to be enabled.

AlgoSec should support in identifying most hit rules and re-ordering existing firewall rules - this is a very key to manage firewall CPU.

A clustering of AlgoSec can also be considered. A group of AlgoSec servers managing large client bases geographically or datacenter-wise or function-wise. A head reporting unit and child processing units.

I've used the solution for seven years.

The stability is good.

The solution needs to improve scalability.

The customer service is good.

No other solution used before.

The initial setup was straightforward.

The implementation was handled in-house.

I am into operations and not aware of cost or pricing.

AlgoSec was the only option considered.

My primary use case to use this solution was to get visibility into my multi-vendor network environment into a single pane of glass making it easy to have compliance and audits done seamlessly.

Also, it is letting me know if any changes are required over different network devices if I bring a certain new application in the environment (discovering its dependencies) and then push the changes from the single console. Also, it needed to verify if there are any unnecessary rules with the attribute "any" over all the firewalls that the solution was able to cover.

It helped me in managing the multi-vendor network devices with also mapping the required network level prerequisites for my application to be able to handle their network needs in an automated and seamless manner. It also removed the need for multiple approvals with Fireflow.

It also made compliance and audits very easy for my organization. It was able to give visibility of the changes on the firewall with a who-when-what scenario. It helped me to document all the risks related to any change request that I made.

The way the solution helps in managing, reporting and seamless security policy change automation for the connectivity between the network devices and the applications is great.

The visibility provided by the single pane of glass for managing multi-vendor firewalls is excellent and then pinpointing network connectivity issues is certainly on a very good level.

The majority of the value comes with automating of the entire security - i.e., the policy change process from design and submission to proactive risk analysis, implementation and auditing.

They need to improve the web interface to be a little more interactive and friendly. It's still not bad, yet it could improve.

They could improve AlgoSec academy, as there are some bugs when it comes to advancing resources. When trying to do the certification, I got stuck in one module, which prevented me from completing the certification.

The only downside of AlgoSec is that it seems to need some updates as it relates to UX and potentially some more outlined integrations. Specifically with cloud platforms and tools.

I have been using the solution from the last six months and have been quite happy with it.

This was my first solution and I have been continuing with this solution only for future needs until it satisfies all of my use cases.

I evaluated other options as well, however, where their capability ended, i.e. firewall analyzing capability, AlgoSec provides much better capabilities.