AlgoSec Security Management Suite
June 01, 2012
Starting at $10,000.
- Ease of Use:
- Value for Money:
- Overall Rating:
- Strengths: Many features and functions, including several out-of-the-box templates for managing compliance and risk.
- Weaknesses: None that we found.
- Verdict: Very strong feature-rich product.
The Security Management Suite from AlgoSec provides many features for both firewall policy and risk management. The suite can come bundled in a single appliance, and includes two key components, the Firewall Analyzer and FireFlow. The Firewall Analyzer is the larger of the two components. Administrators can use it to perform auditing, compliance and risk analysis along with optimization and change monitoring. FireFlow allows administrators to manage firewall policy change through automation and workflows to ensure that submitted changes are compliant with regulatory standards.
We found this appliance to be quite easy to set up and manage. All administration is done via a lucidly designed management interface, which we found to be comfortable to navigate and easy to use. We also found this appliance to offer a lot in the way of configurability and automation. From the interface, we found it easy to interact with firewalls and devices, such as routers and switches.
This appliance also comes loaded with many out-of-the-box workflows ready to go for the FireFlow component of the suite. Using these workflows, an administrator can easily double-check changes before they are made to the infrastructure, including risk and compliance assessments, if the change is not needed or unnecessary, and optimal design recommendations. FireFlow also can submit changes to select devices using its ActiveChange function, which helps eliminate human input errors. Firewall Analyzer breaks down to three major components: The first is risk analysis. The analyzer can compare security policy to a database of industry best practices and identify the associated rules. Once rules are identified this tool can then define various configurations to which devices must be compliant and report on their status. Furthermore, the appliance monitors for changes and can provide instant feedback if the change may create risk or take network sections offline. The second component is compliance standards. This offering can provide full compliance checks against many standards right out of the box. The final component is optimization, which allows for cleanup of unneeded or duplicate rules along with rule reordering suggestions to improve overall performance of firewalls.
Documentation included user and installation guides complete with screenshots, step-by-step configuration instructions and configuration examples. We found all documentation submitted to be well-organized and easy to follow.
Customers can access a web-based portal that includes documentation and a knowledge base, along with other support resources at no cost. Customers looking for more support can purchase a contract from one of three levels: Standard nine-hours-a-day/five-days-a-week phone and email assistance, enhanced 16/5 phone and email help, and premium 24/7 phone and email support.At a price starting at around $10,000 for the full suite, we find this product to be a great value for the money. The AlgoSec Security Management Suite provides a number of features and functionality that make both policy change and risk management easy and seamless, while ensuring that compliance needs are met and adhered to.
Sign up to our newsletters
SC Magazine Articles
- Long list of devices believed to be affected by NetUSB vulnerability
- CareFirst BlueCross BlueShield breached, more than one million individuals notified
- Study: Employees acknowledge risky security behavior, continue to engage in it
- Logjam attack exposes data passed over TLS connections
- Google releases Chrome 43, addresses 37 bugs
- Hackers exploit Starbucks auto-reload feature to steal from customers
- Study: Nearly all SAP systems remain unpatched and vulnerable to attacks
- Former Nuclear Regulatory Commission employee arrested for alleged spear phishing campaign
- Millions of WordPress websites vulnerable to XSS bug
- FireEye first cybersecurity firm awarded DHS SAFETY Act certification
- Thousands of Bellevue Hospital Center patients notified of data breach
- Study: 86 percent of websites contain at least one 'serious' vulnerability
- Investigation ongoing in reported multimillion member Adult FriendFinder breach
- Report: $19M breach settlement between MasterCard, Target terminated
- FTC gives thumbs up to companies that cooperate during breach probes