My main use case for FireMon Security Manager is Firewall Policy Management and Compliance Monitoring. We mainly use it to do our review, identify risky rules, and unused rules.
FireMon Security Manager for AWS
FireMonReviews from AWS customer
0 AWS reviews
-
5 star0
-
4 star0
-
3 star0
-
2 star0
-
1 star0
External reviews
26 reviews
from
and
External reviews are not included in the AWS star rating for the product.
Automated risk analysis has reduced review time and improves firewall policy compliance
What is our primary use case?
What is most valuable?
The best features that FireMon Security Manager offers are Risk Analysis and Rule Validation, Continuous Compliance and Monitoring, Policy Change Automation, Rule Usage and Traffic Visibility, and Centralized Multi-Firewall Management.
I find myself using the Risk Analysis and Rule Review feature the most. It automatically flags over-permissive, unused, or conflicting firewall rules and prioritizes them so I can quickly fix high-risk policies. This brings the most value because it continuously evaluates the policies and highlights vulnerabilities in real-time, helping reduce misconfiguration and maintain compliance without manual reviews.
FireMon Security Manager positively impacts our organization by improving visibility, reducing risk, and simplifying compliance. It continuously analyzes the firewall policies, identifies high-risk or unused rules, and helps fix misconfiguration before they cause issues. It also improves audit readiness and operational efficiency by automating compliance checks, generating reports, and reducing manual review work, which helps us maintain a stronger security posture.
What needs improvement?
As of now, I am satisfied with FireMon Security Manager, and there is nothing to add at this time. However, in the future, if I identify something that needs to be added, I will update my review and let others know who are considering purchasing this solution.
Customer support for FireMon Security Manager is neither good nor bad, but they can improve.
For how long have I used the solution?
I have been using FireMon Security Manager for almost a year.
What do I think about the stability of the solution?
FireMon Security Manager is very stable.
What do I think about the scalability of the solution?
FireMon Security Manager is a highly scalable solution.
How are customer service and support?
Customer support for FireMon Security Manager is neither good nor bad, but they can improve.
Which solution did I use previously and why did I switch?
We have not used any solution previously.
How was the initial setup?
My experience with pricing, setup cost, and licensing for FireMon Security Manager is that these three parameters are very smooth and straightforward since this particular FireMon solution is used by enterprise customers, so it is very straightforward and quite simple.
What was our ROI?
I am not the right person from a technical background regarding return on investment metrics. I will say that time saving is a major factor in this case, as I mentioned in my review.
What's my experience with pricing, setup cost, and licensing?
My experience with pricing, setup cost, and licensing for FireMon Security Manager is that these three parameters are very smooth and straightforward since this particular FireMon solution is used by enterprise customers, so it is very straightforward and quite simple.
Which other solutions did I evaluate?
We have not evaluated any other options before choosing FireMon Security Manager.
What other advice do I have?
For example, I ran a daily task and a daily risk report in FireMon Security Manager that flagged a rule allowing any source to a service subnet. I reviewed the usage, confirmed it was too broad, and tightened it to the specific IPs and ports to reduce the risk.
FireMon Security Manager has saved our team a significant amount of manual review time. For example, rule reviews that used to take three to four hours manually are now done in thirty to forty-five minutes or less using automated risk and usage analysis. We also reduced unused firewall rules during cleanup, which improved policy clarity and lowered risk. Overall, it helps speed up audits, reduce manual efforts, and improves firewall hygiene.
If you are looking for a good solution such as FireMon Security Manager, then you should improve or increase your budget. I would rate this product an eight out of ten.
Strong visibility and control over firewall policy management
What do you like best about the product?
Users frequently appreciate that it doesn’t just list rules—it analyzes them for over-permissioning, unused rules, and potential attack paths. That “risk scoring + context” is often cited as more useful than basic audit tools.
What do you dislike about the product?
Steep learning curve / complexity
A common complaint is that the platform can feel complex to fully master, especially for new users or teams without prior policy management tooling experience. Advanced features (like optimization, reporting, or workflow tuning) often require significant product knowledge.
Some users also note that while the UI is usable, deeper functionality isn’t always intuitive and takes time to configure properly.
A common complaint is that the platform can feel complex to fully master, especially for new users or teams without prior policy management tooling experience. Advanced features (like optimization, reporting, or workflow tuning) often require significant product knowledge.
Some users also note that while the UI is usable, deeper functionality isn’t always intuitive and takes time to configure properly.
What problems is the product solving and how is that benefiting you?
“We have too many firewall rules and no one fully understands them”
Over time, rules accumulate across firewalls, cloud security groups, and vendors. This leads to:
Duplicate or conflicting rules
Orphaned/unused access
Overly permissive “temporary” rules that never get removed
Over time, rules accumulate across firewalls, cloud security groups, and vendors. This leads to:
Duplicate or conflicting rules
Orphaned/unused access
Overly permissive “temporary” rules that never get removed
Real-Time Visibility and Compliance for Complex Multi-Cloud Firewalls
What do you like best about the product?
Is a solution designed to automate firewall rule management, enforce compliance, and reduce risk across hybrid and multi‑cloud environments. It provides real‑time visibility, continuous compliance monitoring, and policy optimization, making it especially valuable for enterprises managing complex, multi‑vendor firewalls.
What do you dislike about the product?
Improve more on Insight part such as assist create Assessment and control on FireMon
What problems is the product solving and how is that benefiting you?
FireMon Policy Manager benefits organizations by improving operational efficiency, reducing misconfigurations, and ensuring continuous compliance across hybrid and multi cloud environments.
Makes Managing Multiple Firewall Devices Easy
What do you like best about the product?
It helps me manage multiple types of firewall devices.
What do you dislike about the product?
One of the biggest challenges I’ve had with Policy Manager is how complex it can be to visualize and manage large rule sets. The platform would also benefit from stronger automation and more AI-driven capabilities to cut down on manual work. Integration with external systems, along with more flexible reporting options, are additional areas where improvements would make a noticeable difference and significantly enhance operational efficiency.
What problems is the product solving and how is that benefiting you?
Policy Manager helps us tackle the complexity of managing large-scale, multi-vendor firewall policies by giving us centralized visibility and deeper analysis. It flags risky, redundant, and unused rules, which helps us reduce our attack surface and keep the policy base clean and well maintained. It also streamlines compliance and audit work through automated reporting, and supports better change management with impact analysis before updates are made. Overall, it improves our operational efficiency, lowers risk, and strengthens our security posture.
Effortless Policy Management with Minor Reporting Hiccups
What do you like best about the product?
I really like the Policy Manager for its ease of use and how it keeps everything for unified network security policy management all in one place. I'm quite happy with how it operates currently.
What do you dislike about the product?
I have challenges with the report. The reporting UI could be more user-friendly.
What problems is the product solving and how is that benefiting you?
I use Policy Manager for unified network security policy management, with all details in one place, making it easy to use. However, I face challenges with the reporting UI not being user-friendly.
Love the Reporting Features
What do you like best about the product?
Getting the customized report as required
What do you dislike about the product?
Not getting the exact report which is required
What problems is the product solving and how is that benefiting you?
It helps to clean up the unused firewall rules as well as objects. Also helps in optimizing the policies.
Real-time visibility and powerful automation to keep everything under control
What do you like best about the product?
What I value most is the real-time visibility and centralized management, because it allows me to have everything under control from a single place. It also highlights the very powerful automation of changes and compliance, which reduces manual work and helps maintain order. Finally, the proactive risk analysis provides peace of mind by anticipating potential problems before they escalate.
What do you dislike about the product?
The learning curve is quite steep. Additionally, the interface can be overwhelming, especially at first. I have also noticed high resource consumption, which affects the user experience.
What problems is the product solving and how is that benefiting you?
1. Incorrect configurations and risky rules.
2. Lack of centralized visibility.
3. Manual change management: slow and error-prone.
4. Audits and compliance that can take weeks.
5. Accumulation of rules over time.
6. Slow response to incidents.
2. Lack of centralized visibility.
3. Manual change management: slow and error-prone.
4. Audits and compliance that can take weeks.
5. Accumulation of rules over time.
6. Slow response to incidents.
Great ACL Analysis That Highlights Overly Permissive Rules
What do you like best about the product?
The analysis of existing ACL's and the ability to highlight overly permissive rules that require more configuration to make more secure.
What do you dislike about the product?
Some of the analysis output organization can be a little confusing.
What problems is the product solving and how is that benefiting you?
We require constant auditing of our firewall policies for compliance purposes and Firemon perfectly addresses this requirement.
Keeps Our Security Devices Clean and Organized
What do you like best about the product?
It help to keep my security devices clean
What do you dislike about the product?
Need more accurate report of rule which we want to export.
What problems is the product solving and how is that benefiting you?
It help me to get the unwanted rules from the security devices and also help me to monitor any unwanted changes in the firewall.
Centralized policy governance has reduced audit effort and continuously improves risk visibility
What is our primary use case?
I have been using FireMon Security Manager for around two years in a production environment, mainly for firewall policy review, compliance report, rule cleanup, and change tracking across multiple firewall platforms such as Palo Alto, Fortinet, and SonicWall, in addition to Check Point. Over this time, it has become part of the regular operations for audit and policy governance rather than just a one-time tool.
A very common day-to-day use case for us with FireMon Security Manager is policy review and cleanup before an audit. For example, recently, we had to prepare for an internal security audit, and we used FireMon Security Manager to run a policy analysis across multiple firewalls such as Palo Alto, Fortinet, SonicWall, and Check Point. FireMon Security Manager quickly highlights unused, over-permissive rules, as well as shadow and duplicate rules, allowing us to generate a risk and compliance report from FireMon Security Manager, review the findings with the application owner, and use that output to clean up and optimize the rule base. It also helps us track changes and document what was modified and why, making audit evidence much easier. FireMon Security Manager plays a key role in reducing risk, speeding up audit preparations, and making policy cleanup structured instead of manual and error-prone.
What is most valuable?
Based on my experience and operational uses, some of the best features FireMon Security Manager offers include centralized policy visibility, which provides a single pane of glass view across all firewall vendors and devices without needing to log into each firewall to understand rules. Another important feature is risk and rule analysis, which highlights risky, unused, shadow, duplicate, and overly permissive rules automatically, saving huge time on manual audits and helping reduce the attack surface. Compliance reporting is also a key feature, with built-in reports for standards such as PCI DSS, ISO 27001, and NIST, ready for auditors and saving weeks of work generating and validating evidence. Additionally, rule cleanup or recertification workflows allow assignment of rules to owners for validation and enforcement of governance. Multi-vendor support is significant as FireMon Security Manager works across various firewalls such as Palo Alto, Fortinet, Cisco, Check Point, and SonicWall. Policy automation is one of the most critical features, as it automates repetitive tasks such as rule assessment, reporting, and compliance snapshots, reducing manual work weekly or monthly.
I rely the most on the policy risk and rule analysis feature of FireMon Security Manager, as this is the most practical and high-impact feature on a day-to-day basis. It quickly shows unused rules, overly permissive rules, shadow rules, and duplicate rules across all firewalls. Instead of manually reviewing thousands of rules, FireMon Security Manager gives a clear prioritized view of what is actually risky or unnecessary, which directly helps in reducing the attack surface, preparing for audits, and keeping the rule base clean without spending days on manual checks. The risk and rule analysis feature is the most valuable, saving time, reducing human errors, and continuously improving the security posture.
One thing that stands out about FireMon Security Manager is how much visibility and control it provides over complex multi-vendor firewall environments, which really changes policy management from a reactive task to a more proactive and governed process.
What needs improvement?
I wish to see deeper and more customizable reporting and dashboards, as while the standard reports are useful for audits, operational teams sometimes need real-time, flexible views without exporting data. Tighter integrations with ticketing and change management tools would also enhance the workflow from request to implementation. FireMon Security Manager is excellent for policy governance and risk reduction, but better real-time dashboards and stronger workflow integrations would make it even more powerful for daily operations.
There are one or two areas where FireMon Security Manager could be improved to make it even stronger. While FireMon Security Manager overall delivers solid governance and risk insight, it would benefit from more flexible dashboards and deeper integrations to reduce manual steps and improve visibility without relying on external tools.
I rate FireMon Security Manager an 8 out of 10. It is a strong tool for firewall policy management, risk analysis, and compliance, clearly improving our audit process and policy governance. The reason I do not give it a 9 out of 10 is mainly because the dashboard could be more flexible and integration with the firewalls could be smoother. FireMon Security Manager is a reliable and high-value platform for managing and governing firewall policies, especially in a multi-vendor environment, though a few areas can still be improved.
For how long have I used the solution?
I have been in my current field for more than six years.
What do I think about the stability of the solution?
FireMon Security Manager has been stable and reliable in our experience. We have not experienced any major crashes, data losses, or serious outages. It runs consistently during day-to-day operations, including policy analysis, reporting, and change tracking. While we do regular maintenance and upgrades during planned windows as any enterprise tool would require, there has been no major technical issues or unplanned downtimes. FireMon Security Manager has maintained steady performance even when scanning multiple firewalls and large rule pages.
What do I think about the scalability of the solution?
FireMon Security Manager's scalability is good and practical for most enterprise environments. It handles increasing workloads and growing numbers of firewalls quite well, provided the underlying infrastructure such as CPU, memory, and database is sized correctly. We started with a moderate number of firewalls and added more over time without any performance degradation. Reports, risk scans, and compliance checks continue to run reliably as the device count increases. The key to scalability is the platform's sizing and how we use it in our environment; larger rule bases and more frequent scans may benefit from additional resources. Proper database maintenance and archiving also help maintain consistent performance. We have successfully scaled from dozens to a couple of hundred firewall devices, and FireMon Security Manager has kept up well through that growth.
How are customer service and support?
The customer support for FireMon Security Manager has been outstanding in our experience. We have interacted with their support team a few times for setup questions and minor tuning issues, with responses being quick, knowledgeable, and very helpful. Issues were understood quickly and resolved without unnecessary back and forth.
Which solution did I use previously and why did I switch?
We did not use a different and dedicated solution before FireMon Security Manager. Most of our work was done manually using native firewall management tools and spreadsheets for reviews and audits, which was time-consuming and error-prone. We adopted FireMon Security Manager to centralize policy management, automate analysis, and improve audit readiness, shifting from a manual process to FireMon Security Manager for saving time, reducing risk, and establishing proper governance in firewall policy management.
How was the initial setup?
Our experience with FireMon Security Manager pricing, setup cost, and licensing has been reliable but not impressive or inexpensive. FireMon Security Manager is typically licensed based on the number of devices or policy targets you connect, such as firewalls and routers, rather than by the seat. This model makes sense for a multi-vendor environment, but costs can scale up quickly if you have hundreds of firewalls. The subscription pricing includes access to the platform and updates, but advanced modules or plugins, such as compliance packs or integrations, may require additional licensing. The initial setup is not trivial; it takes a few days to onboard all firewalls, configure connectors, and tune rule analysis baseline. Initial consulting or professional services can help speed this up, but that adds to startup cost. Once setup and baseline are done, ongoing effort is low and valuable. The cost for us is justified by the audit time saving and policy cleanup efficiency FireMon Security Manager delivers.
What was our ROI?
We have seen a major return on investment with FireMon Security Manager, especially concerning time saved and risk reductions, though this is not always captured in hard dollar figures. Before FireMon Security Manager, preparing for quarterly or annual audits meant manual reviews, cross-checking rules in spreadsheets, and building documentation, typically involving 30 to 40 engineers per audit cycle. After implementing FireMon Security Manager, policy risk reports, compliance reports, and anomalies are generated automatically, which reduces audit preparation down to 15 to 18 hours per cycle, saving about 40 to 50% of time just on audit-related efforts. Additionally, FireMon Security Manager's risk analysis helps us identify and remove hundreds of unused or risky rules within a week instead of months, thereby minimizing misconfiguration risk, lowering troubleshooting efforts, and strengthening overall security posture. While it is challenging to quantify risk reductions in monetary terms, the improvements in audit and compliance review are direct and visible. The same team now accomplishes more with less manual effort focusing on policy optimization, impact analysis, and governance flow instead of manual rule validation. In one audit cycle, preparation used to take 36 hours, which FireMon Security Manager has reduced to 16 hours, saving 20 hours for one cycle. With four audits per year, that leads to up to 80 hours saved annually, which might even exceed 100 hours. Assuming an engineer's cost per hour, this easily covers a portion of the FireMon Security Manager subscription over time. FireMon Security Manager delivers ROI through significant time savings, cleaner rule bases, and improved risk visibility, especially for organizations with complex multi-vendor firewalls.
We compare total engineer hours spent before versus after FireMon Security Manager and the number of days needed to get audit-ready reports, which explains the 40 to 50% time reductions based on practical ops-based measurement, not just a theoretical number. FireMon Security Manager clearly cuts audit preparation efforts almost in half by automating analysis and reporting.
The 40 to 50% reduction in audit preparation time was mainly based on hours spent by the team. Before FireMon Security Manager, audit preparation involved manually logging into multiple firewalls, exporting rules, checking them in spreadsheets, and building reports, with typically two to three engineers spending several days on this. After FireMon Security Manager, most of this work is automated; risk analysis, compliance checks, and reports are generated directly from the tool. The same preparation now usually takes about half an hour, sometimes even less.
Which other solutions did I evaluate?
We did a quick market scan before choosing FireMon Security Manager, but we did not find any other solution that met our requirements as effectively for multi-vendor firewall policy management and compliance. Hence, we did not seriously evaluate or shortlist another product.
What other advice do I have?
My main advice for others looking into using FireMon Security Manager is to clearly define your policy management and compliance goals before deployment. This tool is powerful, and you will get the most value from it if you plan its use for risk analysis, rule cleanup, and audit workflows from day one. It is also important to size the platform properly based on the number of devices and rule base size, investing some time in initial tuning and baseline—this upfront effort pays off later with accurate reports and meaningful risk insights. Finally, involve both security and network teams early, ensuring FireMon Security Manager becomes a part of the regular change and governance process rather than just an audit tool.
One thing that stands out about FireMon Security Manager is how much visibility and control it provides over complex multi-vendor firewall environments, which really changes policy management from a reactive task to a more proactive and governed process. I rate this product an 8 out of 10.
showing 1 - 10