AlgoSec Security Management Suite
June 01, 2012
Starting at $10,000.
- Ease of Use:
- Value for Money:
- Overall Rating:
- Strengths: Many features and functions, including several out-of-the-box templates for managing compliance and risk.
- Weaknesses: None that we found.
- Verdict: Very strong feature-rich product.
The Security Management Suite from AlgoSec provides many features for both firewall policy and risk management. The suite can come bundled in a single appliance, and includes two key components, the Firewall Analyzer and FireFlow. The Firewall Analyzer is the larger of the two components. Administrators can use it to perform auditing, compliance and risk analysis along with optimization and change monitoring. FireFlow allows administrators to manage firewall policy change through automation and workflows to ensure that submitted changes are compliant with regulatory standards.
We found this appliance to be quite easy to set up and manage. All administration is done via a lucidly designed management interface, which we found to be comfortable to navigate and easy to use. We also found this appliance to offer a lot in the way of configurability and automation. From the interface, we found it easy to interact with firewalls and devices, such as routers and switches.
This appliance also comes loaded with many out-of-the-box workflows ready to go for the FireFlow component of the suite. Using these workflows, an administrator can easily double-check changes before they are made to the infrastructure, including risk and compliance assessments, if the change is not needed or unnecessary, and optimal design recommendations. FireFlow also can submit changes to select devices using its ActiveChange function, which helps eliminate human input errors. Firewall Analyzer breaks down to three major components: The first is risk analysis. The analyzer can compare security policy to a database of industry best practices and identify the associated rules. Once rules are identified this tool can then define various configurations to which devices must be compliant and report on their status. Furthermore, the appliance monitors for changes and can provide instant feedback if the change may create risk or take network sections offline. The second component is compliance standards. This offering can provide full compliance checks against many standards right out of the box. The final component is optimization, which allows for cleanup of unneeded or duplicate rules along with rule reordering suggestions to improve overall performance of firewalls.
Documentation included user and installation guides complete with screenshots, step-by-step configuration instructions and configuration examples. We found all documentation submitted to be well-organized and easy to follow.
Customers can access a web-based portal that includes documentation and a knowledge base, along with other support resources at no cost. Customers looking for more support can purchase a contract from one of three levels: Standard nine-hours-a-day/five-days-a-week phone and email assistance, enhanced 16/5 phone and email help, and premium 24/7 phone and email support.At a price starting at around $10,000 for the full suite, we find this product to be a great value for the money. The AlgoSec Security Management Suite provides a number of features and functionality that make both policy change and risk management easy and seamless, while ensuring that compliance needs are met and adhered to.
SC Magazine Articles
- GCHQ infosec group disclosed kernel privilege exploit to Apple
- 77% of organisations unprepared for cyber-security incidents
- 117 million LinkedIn email credentials found for sale on the dark web
- Furtim malware can run AND it can hide
- Ubiquiti warns of worm using known exploit on outdated AirOS firmware
- Some U.S. Bancorp workers' W-2 info exposed in ADP data breach
- Spearphishing attack nets $495K from investment firm
- Updated: Gmail, Yahoo email credentials among millions found on the dark web
- Report: Ransomware feeds off poor endpoint security
- Organizations need formal vendor risk management programs, study
- 2.5K Twitter accounts hacked to spread links to adult content
- Study: Federal agencies still lack strong cyber hygiene practices
- Petya and Mischa - the Ransomware Twins (sort of)
- Bad guys update ransomware DMA Locker with version 4.0
- Lieu, Hurd urge colleagues to use encryption, improve cyber hygiene