FireMon Security Manager for AWS logo

    FireMon Security Manager for AWS

    Sold by
    Real-time visibility, control, and management for network security devices across Amazon AWS cloud environments.

    Ratings and reviews

    4.4
    36 ratings
    3 star
    2 star
    1 star
    64%
    36%
    0%
    0%
    0%
    1 AWS reviews
    |
    35 external reviews
    External reviews are from G2  and PeerSpot .

    Filters

    Review type

    AWS Marketplace reviews
    External reviews
    Reviews (36)
    Venkat Krishnan

    Automated firewall reviews have improved compliance and reduced misconfigurations

    Reviewed on Jul 10, 2026
    Review provided by PeerSpot

    What is our primary use case?

    FireMon Security Manager is mainly used for analyzing firewall configuration and rules. It is primarily for firewall analysis and configuration analysis of the firewall.

    We work with FireMon Security Manager as a service provider. Our customers have it, but we use FireMon Security Manager on behalf of them.

    We use FireMon Security Manager mainly for the on-prem environment, and we primarily use it for our on-prem firewalls.

    We are not using FireMon Security Manager for SASE integration right now. We are just using it for firewall management.

    We do use FireMon Security Manager for real-time compliance management primarily for that purpose, so we do have a positive impression of that because it can map the compliance against various standards available such as ISO 27001 or PCI DSS. That helps us in automating that compliance check on these firewalls.

    We are not using FireMon Security Manager in an automatic fashion for compliance checks. We run it manually and run the tool periodically. We have not kept it for continuous scanning of the environment. However, whenever we run the tool, we do get a warning or an alert saying that this is a firewall rule that will potentially violate, for example, PCI DSS compliance.

    FireMon Security Manager does affect our cleanup of firewall rules in a large enterprise environment because it helps us in identifying which rules are remaining unused since the previous FireMon Security Manager check. That helps us in prioritizing and saying that these are so many unused rules and why don't we clean them up.

    What is most valuable?

    One advantage of FireMon Security Manager is that it analyzes the firewall configuration against known standards. If there is a known firewall standard or configuration standard in NIST or any of the audit or compliance requirements such as PCI or ISO 27001, it can analyze the firewall configuration against those standards and give us a report of where we are missing so that we can comply with those standards as well.

    FireMon Security Manager can also connect to multiple types of firewalls with different vendor firewalls. We use a multi-vendor firewall environment, and the advantage of FireMon Security Manager is that it can connect to different vendors that we use in the environment.

    FireMon Security Manager helps to prioritize risks and prioritize fixes. When it points out errors or misconfigurations, it gives us a rating saying that this is a high critical misconfiguration which needs to be fixed first, versus a low-rating misconfiguration which might have a less or reduced impact and which we can fix later on.

    We do observe a decrease in errors and misconfigurations that increase risk in the environment with FireMon Security Manager. It points out errors, so we mainly use it for that purpose. We don't use it to manage the firewall, but we use it for analyzing the firewall configuration that will reduce the risk and any kind of errors that are there in the firewall. We could say there is about a twenty percent decrease in errors and misconfigurations due to FireMon Security Manager. The reason is we were using some other tool earlier, so we had done quite a bit of improvements on the firewall. Once we introduced FireMon Security Manager, it found new areas where we could improve and there is about a twenty percent improvement.

    FireMon Security Manager does affect our compliance reporting processes. It helps us automate reporting and prioritize all those compliances. This way, it is quite useful.

    What needs improvement?

    I think there are some disadvantages and areas for improvement. What is limited or has no capability in FireMon Security Manager is integration with all the cloud-based firewall native vendors. For example, in Azure or in AWS, if you have a Palo Alto firewall, FireMon Security Manager will work fine. However, if you use Azure's own native firewall or AWS's own native firewall capabilities, FireMon Security Manager does not have the ability to analyze the policy of such native cloud-based firewalls. That is a disadvantage that we are seeing because we are also using more and more native services rather than going for third-party services in the cloud environment.

    The second disadvantage we see with FireMon Security Manager is some vendors which are now becoming popular, such as Cato Networks. We have one customer who uses Cato quite extensively, but we are not able to use FireMon Security Manager for them to do the policy analysis because it doesn't work with Cato.

    For how long have I used the solution?

    I started working with FireMon Security Manager approximately a year ago.

    What do I think about the stability of the solution?

    Stability-wise, FireMon Security Manager is not a problem. It is approximately a ninety-nine percent stable product.

    What do I think about the scalability of the solution?

    We haven't used FireMon Security Manager in a highly scalable manner, so when we factored it in, we haven't really tested its scalability. I am not aware of the scalability of the product or whether it can support thousands of firewalls. We do use it for hundreds of firewalls today, but not in the thousands. I am not sure on scalability.

    How are customer service and support?

    Customer service from FireMon Security Manager is good in terms of responding to any issues or any errors that we face. In terms of using the product as is and its customer support, I would say it is good enough. I would rate support at about an eight on the scale from zero to ten, with ten being the best.

    Which solution did I use previously and why did I switch?

    We were using some other tool earlier. We had done quite a bit of improvements on the firewall. Once we introduced FireMon Security Manager, it found new areas where we could improve and there was about a twenty percent improvement.

    How was the initial setup?

    Deploying FireMon Security Manager is quite easy to deploy.

    What about the implementation team?

    We bought FireMon Security Manager directly from a reseller. We did not buy it through AWS Marketplace.

    What was our ROI?

    FireMon Security Manager is worth buying and worth its money in terms of return on investment. As long as you have the firewalls in your environment which are supported by FireMon Security Manager, it is worth the investment.

    What's my experience with pricing, setup cost, and licensing?

    It does save time and money both because otherwise you would have to review the firewall configuration by hand or manually, whereas FireMon Security Manager automates it. In terms of money, you will have to reduce the number of people who are involved in the firewall review. FireMon Security Manager is also a lower-cost product than AlgoSec.

    Which other solutions did I evaluate?

    I am comparing FireMon Security Manager to a product such as AlgoSec, something which operates in the same market. AlgoSec is one big example where we did an evaluation.

    What other advice do I have?

    Cost-wise, it is very competitive if I compare it with its peers. The pros are that in terms of the tool capability, it is as good as any of the best of the market tools and cost-wise, it is lower. FireMon Security Manager is affordable compared to its competitors.

    Time-wise, I am not sure how to measure it, but from a procurement perspective, because this is procured by the customer directly, we don't have visibility in terms of what was used and what was the cost of AlgoSec versus FireMon Security Manager. However, from a product perspective, our recommendation was that both were equal, and FireMon Security Manager slightly better. Cost-wise when FireMon Security Manager was better, I think the client went with FireMon Security Manager itself.

    When I mentioned time saving, I meant that it saves time for when accurately creating, approving, and deploying firewall policies.

    What organizations should remember is primarily to look at the compatibility of FireMon Security Manager with the firewalls that they have in their respective environments. In their environment, if they have only, for example, Palo Alto, Cisco, or FortiGate firewalls, and all of them are supported by FireMon Security Manager, however, if they use a very unusual firewall or a cloud-native firewall, they should check whether FireMon Security Manager supports those firewalls and then take a call accordingly. My overall rating for this product is eight out of ten.

    Vishal Koovaparambil

    Centralized firewall oversight has improved compliance and reduced configuration errors

    Reviewed on Jul 09, 2026
    Review provided by PeerSpot

    What is our primary use case?

    FireMon Security Manager is used to centrally manage multiple firewalls, enforce security policies, monitor threats, and simplify day-to-day firewall administration.

    FireMon Security Manager allows us to manage multiple firewalls from a single console, making policy updates and monitoring very easy, and troubleshooting much faster and more consistent.

    FireMon Security Manager is deployed in our organization on-premises within our data center.

    What is most valuable?

    The best features of FireMon Security Manager are centralized policy management and security policy analysis, which is very useful, along with compliance reporting and clear visibility across all the managed firewalls. These features help us to simplify firewall management and improve security.

    FireMon Security Manager has positively impacted our organization by improving our firewall management by increasing visibility, reducing configuration errors, streamlining policy changes, and helping maintain compliance.

    What needs improvement?

    FireMon Security Manager could be improved with a more user-friendly interface. Otherwise, the performance and the deployment are perfect.

    For how long have I used the solution?

    We have not switched solutions; we started with FireMon Security Manager only.

    What do I think about the stability of the solution?

    FireMon Security Manager is a pretty stable solution.

    What do I think about the scalability of the solution?

    Scalability-wise, FireMon Security Manager is a very good solution that can handle our organization's growth.

    How are customer service and support?

    Customer support for FireMon Security Manager is very supportive, and they are able to provide support and troubleshoot issues at any time.

    Which solution did I use previously and why did I switch?

    We have not evaluated other options before choosing FireMon Security Manager.

    What was our ROI?

    FireMon Security Manager provides a very good return on investment because we are able to save our time and money.

    What other advice do I have?

    FireMon Security Manager helps reduce configuration errors by identifying duplicate, unused, and overly permissive firewall rules before changes are implemented. This reduces the risk of misconfiguration and keeps security policies consistent across all firewalls.

    Regarding FireMon Security Manager's AI capabilities, its governance and security appear very well-designed. They provide controlled access, support compliance, and policy validation, which is very helpful.

    The data that FireMon Security Manager provides is very accurate and reliable, with reliable output.

    I recommend clearly defining your firewall management and compliance requirements before deploying FireMon Security Manager and taking advantage of its policy analysis and compliance features. This will help the organization to achieve a compliance-ready environment and gain proper visibility.

    I rate this product 9 out of 10.

    Gemma H.

    Keeps Branch Firewall Policies in Sync with Ease

    Reviewed on May 18, 2026
    Review provided by G2
    What do you like best about the product?
    Makes it easy to keep all branch policies in sync.
    What do you dislike about the product?
    There’s a bit of a learning curve, but the free training is helpful and makes it easier to get started.
    What problems is the product solving and how is that benefiting you?
    Visibility into the policies for each of my branch firewalls makes troubleshooting access issues much easier.
    George S.

    Excellent Lifecycle Management and Compliance Reporting

    Reviewed on May 18, 2026
    Review provided by G2
    What do you like best about the product?
    Rule lifecycle management, compliance, reporting, dashboards, and overall usability.
    What do you dislike about the product?
    Cloud integration moves more slowly than expected. For example, the ability to normalise AWS/Azure load balancers feels slower than it should.
    What problems is the product solving and how is that benefiting you?
    Rule lifecycle management, rule documentation and justification, continuous compliance monitoring, policy optimization and cleanup, and reporting—along with dashboards and overall usability.
    Earl V.

    Easy to Use and Highly Customizable for Compliance Needs

    Reviewed on May 15, 2026
    Review provided by G2
    What do you like best about the product?
    Its easy to use and customize for my compliance requirements.
    What do you dislike about the product?
    The UI is kinda boring, like really needs a facelift.
    What problems is the product solving and how is that benefiting you?
    Becoming audit ready
    Zee C.

    Aligns Logs, Needs Better Upgrade Communications

    Reviewed on May 12, 2026
    Review provided by G2
    What do you like best about the product?
    I like how Policy Manager aligns all the activity within one portal. It looks pretty good since it captures everything within one platform instead of gathering logs from different Palo Alto consoles.
    What do you dislike about the product?
    Normally, they do have some kind of upgrades. When they have upgrades, it should be properly communicated to us so we can engage our change process.
    What problems is the product solving and how is that benefiting you?
    I use Policy Manager to align all logs and capture activities across multiple projects and locations, simplifying monitoring in one tool.
    Alfred S.

    Deep Multi-Vendor Firewall Visibility and Fast SIQL Auditing in FireMon Policy Manager

    Reviewed on May 08, 2026
    Review provided by G2
    What do you like best about the product?
    What I like best about FireMon Policy Manager is the depth of visibility it gives you into firewall policies across a multi-vendor environment. Being able to pull every rule from Palo Alto, Cisco, Fortinet, and Check Point devices into a single normalized view, and then actually query that data with SIQL, has been a huge time-saver compared to the manual auditing we used to do. The real-time change detection and automated compliance assessments mean we catch drift and risky configurations before they become audit findings, rather than during them.
    What do you dislike about the product?
    The UI is probably my biggest gripe. While it's functional and packs in an enormous amount of capability, it can feel dated in spots compared to more modern SaaS-style interfaces, and the learning curve for new users is steeper than I'd like.
    What problems is the product solving and how is that benefiting you?
    Policy Manager solves the fundamental problem of firewall sprawl, over time, environments accumulate thousands of rules across dozens of devices from different vendors, and nobody has a clear picture of what's actually in place, what's being used, and what's quietly creating risk. Before tools like this, answering a simple question like "does any rule allow telnet from an untrusted zone?" meant logging into multiple consoles, exporting configs, and stitching the answer together by hand. With Policy Manager, that's a single query and a few seconds of work.
    Imran B.

    Centralized, Streamlined Policy Management with Great FireMon Support

    Reviewed on May 05, 2026
    Review provided by G2
    What do you like best about the product?
    What I like most about Policy Manager is how it centralizes and streamlines policy administration across the organization. Another big plus is that FireMon support can create custom scripts for us when we need them.
    What do you dislike about the product?
    It takes some time to get used to learning FireMon and to find the things you’re looking for.
    What problems is the product solving and how is that benefiting you?
    We are able to run reports for compliance and audit with Policy Manager and connect to our devices.
    Financial Services

    FireMon Policy Manager: One Console for Multi-Vendor Firewall Policy, Faster Audits

    Reviewed on Apr 28, 2026
    Review provided by G2
    What do you like best about the product?
    What I really appreciate about FireMon Policy Manager is how it handles the "messy" reality of modern networks. In the real world, most companies don’t rely on just one firewall brand; you usually end up with a mix of Palo Alto, Check Point, Fortigate, and maybe some cloud-native security groups in AWS or Azure. What I like is that Policy Manager treats them all the same—it acts as a universal translator so you aren’t jumping between five different consoles just to check a single rule. The UI is built for power users, so while there’s a bit of a learning curve, the performance and AI-driven insights make it worth it by spotting risky "policy drift" before an auditor does. It’s definitely an investment, but the ROI hits home when you realize you’ve traded weeks of manual cleanup and "audit panic" for a streamlined, automated workflow backed by a support team that truly understands the tech.
    What do you dislike about the product?
    While FireMon is incredibly powerful, it isn’t without its frustrations, and most of them stem from its “enterprise-first” design. The biggest hurdle is the steep learning curve: it’s a “power user” tool, so if you aren’t in it every day, the interface can feel overwhelming—and in some places, even a bit “basic” or dated, especially around the reporting engine. It’s also fairly resource-heavy, needing a lot of RAM and CPU to keep everything running smoothly, which can be a real headache for infrastructure teams.

    In day-to-day use, maintenance and troubleshooting can feel clunky as well. The underlying architecture is complex, and when something goes sideways, the logs can be surprisingly ambiguous. That often leaves you wishing for more “self-service” visibility, instead of having to call support. Essentially, it’s like driving a high-end semi-truck: it’ll carry any load you give it, but it’s definitely not a “point-and-click” sports tool.
    What problems is the product solving and how is that benefiting you?
    The core problem FireMon solves is the "rule bloat" and fragmentation that naturally happens as a company grows. In a typical setup, you’re dealing with a massive, tangled web of rules across different platforms that nobody wants to touch for fear of breaking something. FireMon steps in as the "cleaner" and "architect," identifying exactly which rules are redundant or risky so you can delete them with confidence. For me, the real benefit is the shift from being reactive to proactive; instead of spending weeks panicking before an audit or manually digging through logs to find a misconfiguration, you get automated reports and real-time alerts. It basically gives you back your weekends by turning hours of manual rule-checking into a few clicks, ensuring your network stays "clean" and compliant without the usual operational headache.
    Jatin Sharma

    Improved firewall compliance and risk visibility has enabled precise least‑privilege policies

    Reviewed on Apr 27, 2026
    Review provided by PeerSpot

    What is our primary use case?

    The main case of FireMon Security Manager is firewall policy management and compliance.

    For an example, an application team requested access from a vendor network to an internal server. Before approving it, I used FireMon Security Manager to simulate the rule and analyze the risk. It showed that the requested access was too broad and would violate our internal policy. Using FireMon Security Manager, I identified the overly permissive access, narrowed the rule to a specific source, destination, and the port, checked the rule conflict and the redundancy, verified it met compliance requirements. Then I approved the least privilege rule instead of the original one. This prevented unnecessary exposure and kept the firewall policy clean.

    What is most valuable?

    Here are the best features which are offered by FireMon Security Manager: firewall policy analysis and optimization, risk impact and analysis, change management automation, compliance monitoring and reporting, and visibility across multiple firewalls.

    Policy analysis and risk impact made the biggest difference for my team. It quickly identifies overly permissive or unused firewall rules, helping us reduce risk, clean up policies, and save time on manual reviews.

    FireMon Security Manager has improved our organization by reducing risk, saving time, and improving compliance. It helps us quickly identify overly permissive rules, automate policy reviews, and maintain audit-ready reports. As a result, firewall changes are safer, manual effort is lower, and the overall visibility across the network is much better.

    We saw about a forty to fifty percent reduction in the time spent on manual firewall rules reviews after using FireMon Security Manager. Compliance also improved. Audit preparation time dropped by sixty percent. Additionally, we reduced overly permissive or unused rules by roughly twenty-five to thirty percent.

    What needs improvement?

    The UI can be improved, including UI performance and navigation, and faster data refresh. Easier initial setup would be beneficial for new users. These areas can be improved by FireMon Security Manager.

    For how long have I used the solution?

    I have been working in my current field for almost five years.

    What do I think about the stability of the solution?

    FireMon Security Manager is very stable.

    What do I think about the scalability of the solution?

    Scalability is very good.

    How are customer service and support?

    Customer support is moderate.

    How was the initial setup?

    I chose eight out of ten because FireMon Security Manager delivers strong value in the policy analysis, risk visibility, and the compliance automation. It significantly reduced manual efforts, improves firewall rules, and makes audits much easier.

    What about the implementation team?

    I have a partner business relationship with this vendor.

    What's my experience with pricing, setup cost, and licensing?

    My experience with pricing and licensing for FireMon Security Manager was generally positive, but on the higher side. The cost is typically subscription-based and depends on the number of devices or firewalls being managed. It was on the higher side.

    What other advice do I have?

    My advice is that if you are not an enterprise customer, then this solution is particularly not for a small customer because it is a use case for the enterprise customer, such as Bajaj, banks, and similar organizations. FireMon Security Manager is not the right fit for smaller organizations. I would rate FireMon Security Manager eight out of ten.