FireMon is a real-time security policy management solution built for today’s complex multi-vendor, enterprise environments. Supporting the latest firewall and policy enforcement technologies spanning on-premises networks to the cloud, FireMon delivers visibility and control across the entire IT landscape to automate policy changes, meet compliance standards, to minimize policy-related risk. Since creating their policy management solution in 2004, FireMon states they've helped…
N/A
Wiz
Score 8.1 out of 10
N/A
Wiz is a Tel Aviv based, cloud risk visibility solution for enterprise security. It provides a 360° view of security risks across clouds, containers and workloads.
N/A
Pricing
FireMon
Wiz
Editions & Modules
No answers on this topic
No answers on this topic
Offerings
Pricing Offerings
FireMon
Wiz
Free Trial
Yes
No
Free/Freemium Version
No
No
Premium Consulting/Integration Services
No
No
Entry-level Setup Fee
Optional
No setup fee
Additional Details
—
—
More Pricing Information
Community Pulse
FireMon
Wiz
Considered Both Products
FireMon
Verified User
Anonymous
Chose FireMon
FireMon gives us more flexibility when deploying the solution. Integrates with cutting-edge security solutions
I was not involved on the decision but having multiple brands in the company make sense to use a tool such as Firemon because it integrates easily with multiple vendors.
The Dell product ran on its own hardware, which failed often. The reports were not available to us in real-time, we had to request them. Many false detections of issues.
Both perform admirably with regards to providing that single pane of glass and visibility in a normalized view. They both provide great insight into where your organization stands in terms of compliance controls. In terms of upgrading and scalability, I would have to give the …
I has worked with Algosec and while they are very similar product, I find the FireMon is easier to understand and get rolling with. While both require some learning, FireMon is by far the easier one. Once you have an understanding of how things are arranged and labeled you can …
FireMon has the most supported devices. The UI is easy to use and intuitive. There is a comprehensive list of built in compliance controls that are missing in the competition.
To be blunt, at the time of purchase most of these products appeared to do the same things in the same ways. What really brought us to the table with FireMon six years ago was their willingness to earn our business, and to this day they remain just as committed to keeping our …
They are two very well done tools, FireMon is better suited for firewall rules evaluation, configuration and review, Tenable.io is better suited for CIS benchmarking. We ended up using both of them in the end, it really depends of your needs and what you are looking for, the …
We performed a head-to-head PoC between FireMon and AlgoSec several years ago. Both platforms were well developed, but FireMon had the upper hand in three areas:
Its UI was more unified and intuitive across the different components and products
AlgoSec and Tufin both have initial issues during the POC stage, and FireMon even though with the changes they have made still works better and is more user friendly.
Prior to Wiz, I have used mostly AWS security services such as security hub for CSPM and GuardDuty for threat intel. Although these services are great, it makes it hard to centralize this information in a multi-cloud deployment. It is understandable that AWS native services may …
After previously utilizing Orca and testing Tenable, we preferred Wiz over the competition. The reporting, usability, and feature-rich platform enabled us to investigate security risks and issues simultaneously.
As someone relatively new to the security space, coming from a software engineering background in identity, I don’t have deep experience across a wide range of security tools. That said, based on the products I have used—such as Palo Alto’s Cortex XDR, Panorama, GlobalProtect, …
Wiz is a solid solution over these other products, it has capabilities in all clouds that we utilize that others didn't have at the time. Its much easier to segment access than CrowdStrike as an example. Engineers quickly because familiar with the tool to help reduce the …
We chose Wiz over Tenable.io due to its agentless deployment, holistic security graph, and cloud-native focus. Wiz’s quick setup, intuitive interface, and advanced risk prioritisation provided actionable insights faster, making it a better fit for our multi-cloud environment.
We previously used Lacework but transitioned to Wiz as part of our effort to improve cloud security visibility and streamline risk management. While Lacework provided useful insights, we found that Wiz offered a clearer, more intuitive interface and better collaboration …
Tenable.io and Qualys are good just for vulnerability management. Wiz has very good capability to show all issues on single console and also it has provision to show them in different dashboards in different category. It shows cloud configuration gap, AWS cis benchmark gap and …
FireMon is best used in a large environment (for example, I have >100 firewalls in my environment). It's best used when trying to improve security posture and showing changes in firewall security over time. It might not be the best choice for smaller environments or those that aren't concerned about security management.
Wiz is well-suited if you want to run real-time scans against resources that were recently patched or configured. It is good to keep track of vulnerabilities found and what can be done to resolve the issues without having to open up multiple tabs. Overall, it is good to keep an eye on how well cloud teams or cloud security teams are doing.
PCI Reporting - After identifying which firewalls and rulesets are in scope, producing a report artifact to satisfy PCI requirements on Firewall reviews is literally a two-click operation.
Storing Rule Metadata - FireMon stores metadata (prefilled fields, standard fields, and custom fields) for each rule in each policy which is valuable for context during firewall reviews in particular
API - FireMon exposes most if not all of its functionality via REST API
Getting started with Wiz was quick and painless. The onboarding process was well-structured, and their team provided solid support to help us integrate Wiz into our cloud environments with minimal effort. Documentation is clear, and their customer success team is always on hand to help with any questions, making the adoption process seamless
One of Wiz’s biggest strengths is how clearly it presents security risks. It provides a well organised view of issues, making it easy to see where action is needed. The AI-powered Remediation Wizard is a great feature, offering guided fixes and automation options that speed up resolution, reducing the time spent manually investigating and fixing issues.
The Wiz interface is intuitive and easy to navigate, which is a big plus when dealing with complex environments. Everything is laid out in a way that makes it simple to drill down into issues
Wiz scanning doesn't detect risks in real time. New sensors are now included and these capabilities are growing. I believe that within a year Wiz will get good real time capabilities
Wiz can generate a lot of alerts, which can be overwhelming, especially if you have a very dynamic environment. It's important to set up filters so that you only receive alerts for the risks that are most important to you.
Wiz can improve the way it augments the vulnerability data with additional data on Technologies. It sometimes has missing technologies but updated its inventory as soon as we opened a case on that.
Once all the customization has been completed, the business is starting to see the return on investment. The visibility it provides into the network gear that is owned by other IT groups is immeasurable and has allowed us to apply standards across the board. The only thing I have concern with is their support documentation.
The UI is very user-friendly, with documentation available on every page of the application. New users can learn about the product features as they navigate through several different pages, using the instructions at the top of each page, making it quite easy to use.
FireMon has been relatively stable overall. However, there have been a handful of times where we had issues with the console. For example, we couldn't update which devices to include in a security assessment. The initial suggestion from support was to just reboot it. It seems like there weren't many other options available such as to restart services before going to the extreme of a complete reboot.
I'm not sure we have the largest implementation of FireMon out there but we do have a few 1000 devices being probed by FireMon. Overall, the system's performance has been rock solid. The console refreshes quickly and reports are generated within an expected timeframe.
FireMon technical support is awesome! They respond quickly to our requests and they are well trained and very knowledgeable about the tool. Some issues have to be referred to the development team, but technical support largely provides solutions for any issues that we may have.
I has worked with AlgoSec and while they are very similar product, I find the FireMon is easier to understand and get rolling with. While both require some learning, FireMon is by far the easier one. Once you have an understanding of how things are arranged and labeled you can easily import firewalls and begin to work on them to improve them
Prior to Wiz, I have used mostly AWS security services such as security HUB for CSPM and GuardDuty for threat intel. Although these services are great, it makes it hard to centralize this information in a multi-cloud deployment. It is understandable that AWS native services may provide more info and realtime security analysis of its services, but does not scale well with a growing organization looking to leverage amazing tools from other CSPs. Wiz may not have real time analysis or the most relevant vulnerability findings for cloud platforms compared to their native solutions, but Wiz scales extremely well, which in cases is a more valuable asset.
Firemon Is easily scalable and maintainable with any size team. Although it requires some tech debt, it is well worth the time to invest to ensure compliance is visible and reports are accurate. Although our environment is very large we do not fully utilize the scalability of the Firemon product.
It helps us save us time in determining what change was made and by whom.
Real time alerting is a great convenience in helping us know if something went wrong, we can immediately review the last report to determine what has changed.
Allows us to determine what rules are not used and if said rules are still required.
We haven't completed a full rollout yet, but the goal is to shift left security to all of our product teams so that security is a shared effort across the organization.
We want to be able to demonstrate fast remediations, corrective action plans with tangibles from Wiz in response to audits or red team findings.
We would like to also use information from Wiz to substantiate answers to security questionnaires that customers requires us to fill out in order to do business with them.