FireMon Security Manager for AWS
FireMonExternal reviews
35 reviews
from
and
External reviews are not included in the AWS star rating for the product.
Automated compliance reviews have reduced manual firewall audits and improved policy governance
What is our primary use case?
How has it helped my organization?
FireMon Security Manager helped automate the compliance review by identifying unused, duplicate, risky, and overly permissive rules across the firewalls in our organization, reducing manual audit efforts and improving firewall governance, which also has the approved things documented.
In my day-to-day work, the most valuable features are compliance management and the risk policy assessment because it automatically identifies the risky, overly permissive, unused, or non-compliant firewall rules, reduced manual audit and review efforts significantly, helps to maintain compliance such as ISO, and improves overall firewall governance and security posture. These are the best features because of this, and they are very beneficial to the administrator and from a company perspective.
There are noticeable improvements which we monitor after using FireMon Security Manager, including a reduction in firewall audit and compliance review by fifty to sixty percent, a significant reduction in manual spreadsheet-based rule analysis, faster identification of unused or risky firewall rules, reduced operational overhead for security teams managing firewalls in multi-firewall environments, and better visibility that helped reduce misconfiguration and policy complexity.
What is most valuable?
We use FireMon Security Manager for firewall policy and rule analysis, compliance auditing, and to identify risky, unused, or duplicate firewall rules, change monitoring, and policy validation.
The best features FireMon Security Manager offers are firewall policy analysis and rule cleanup, compliance management, multi-vendor firewall visibility, risk policy assessment, change monitoring and configuration tracking, and security posture management.
What needs improvement?
The UI of FireMon Security Manager can be improved, and while existing features are working as expected based on the feedback, I believe the TAC or OEM support can be improved as well.
For how long have I used the solution?
What do I think about the stability of the solution?
What do I think about the scalability of the solution?
FireMon Security Manager's scalability is good, and it can handle the load well.
How are customer service and support?
The customer support for FireMon Security Manager is moderate and okay. I am suggesting that it should be improved.
Which solution did I use previously and why did I switch?
How was the initial setup?
What about the implementation team?
What was our ROI?
What's my experience with pricing, setup cost, and licensing?
Which other solutions did I evaluate?
What other advice do I have?
FireMon Security Manager positively impacted our organization, and I need to share some points. It boosts productivity by reducing manual effort during firewall audits and compliance reviews.
FireMon Security Manager helped boost bandwidth by reducing manual efforts during firewall and compliance review, faster identification of risky, unused, or overly permissive firewall rules, providing multi-vendor visibility, and change monitoring.
I would rate FireMon Security Manager an eight on a scale of one to ten. I chose an eight for FireMon Security Manager because it has a very broad feature set, which is very helpful based on my experience. The special things are firewall policy and risk visibility and the multi-vendor support. I deducted two points because of the UI and the technical support.
Regarding FireMon Security Manager's AI capabilities, based on my experience, I have not used the full deep visibility, but whichever I used, it provides a good result based on the justification which we give. Based on the feature which we are using, it provides very good results, and it helps uniquely in that it can mitigate the compliance error, policy error, and the configuration with the help of AI assistance.
The accuracy and reliability of FireMon Security Manager's AI output are very useful sometimes, but at times it is not useful because we have to cross-verify physically or take the help of other AI-generated tools as well. So, it can be good, but we cannot fully rely on the AI output it provides; it is fifty-fifty in my case.
I can suggest that if you have multiple firewalls in your organization, you should take FireMon Security Manager into your organization because it will help you to reduce all the compliance part. My overall rating for FireMon Security Manager is eight out of ten.
Excellent Lifecycle Management and Compliance Reporting
What do you like best about the product?
Rule lifecycle management, compliance, reporting, dashboards, and overall usability.
What do you dislike about the product?
Cloud integration moves more slowly than expected. For example, the ability to normalise AWS/Azure load balancers feels slower than it should.
What problems is the product solving and how is that benefiting you?
Rule lifecycle management, rule documentation and justification, continuous compliance monitoring, policy optimization and cleanup, and reporting—along with dashboards and overall usability.
FireMon Policy Manager: One Console for Multi-Vendor Firewall Policy, Faster Audits
What do you like best about the product?
What I really appreciate about FireMon Policy Manager is how it handles the "messy" reality of modern networks. In the real world, most companies don’t rely on just one firewall brand; you usually end up with a mix of Palo Alto, Check Point, Fortigate, and maybe some cloud-native security groups in AWS or Azure. What I like is that Policy Manager treats them all the same—it acts as a universal translator so you aren’t jumping between five different consoles just to check a single rule. The UI is built for power users, so while there’s a bit of a learning curve, the performance and AI-driven insights make it worth it by spotting risky "policy drift" before an auditor does. It’s definitely an investment, but the ROI hits home when you realize you’ve traded weeks of manual cleanup and "audit panic" for a streamlined, automated workflow backed by a support team that truly understands the tech.
What do you dislike about the product?
While FireMon is incredibly powerful, it isn’t without its frustrations, and most of them stem from its “enterprise-first” design. The biggest hurdle is the steep learning curve: it’s a “power user” tool, so if you aren’t in it every day, the interface can feel overwhelming—and in some places, even a bit “basic” or dated, especially around the reporting engine. It’s also fairly resource-heavy, needing a lot of RAM and CPU to keep everything running smoothly, which can be a real headache for infrastructure teams.
In day-to-day use, maintenance and troubleshooting can feel clunky as well. The underlying architecture is complex, and when something goes sideways, the logs can be surprisingly ambiguous. That often leaves you wishing for more “self-service” visibility, instead of having to call support. Essentially, it’s like driving a high-end semi-truck: it’ll carry any load you give it, but it’s definitely not a “point-and-click” sports tool.
In day-to-day use, maintenance and troubleshooting can feel clunky as well. The underlying architecture is complex, and when something goes sideways, the logs can be surprisingly ambiguous. That often leaves you wishing for more “self-service” visibility, instead of having to call support. Essentially, it’s like driving a high-end semi-truck: it’ll carry any load you give it, but it’s definitely not a “point-and-click” sports tool.
What problems is the product solving and how is that benefiting you?
The core problem FireMon solves is the "rule bloat" and fragmentation that naturally happens as a company grows. In a typical setup, you’re dealing with a massive, tangled web of rules across different platforms that nobody wants to touch for fear of breaking something. FireMon steps in as the "cleaner" and "architect," identifying exactly which rules are redundant or risky so you can delete them with confidence. For me, the real benefit is the shift from being reactive to proactive; instead of spending weeks panicking before an audit or manually digging through logs to find a misconfiguration, you get automated reports and real-time alerts. It basically gives you back your weekends by turning hours of manual rule-checking into a few clicks, ensuring your network stays "clean" and compliant without the usual operational headache.
Improved firewall compliance and risk visibility has enabled precise least‑privilege policies
What is our primary use case?
The main case of FireMon Security Manager is firewall policy management and compliance.
For an example, an application team requested access from a vendor network to an internal server. Before approving it, I used FireMon Security Manager to simulate the rule and analyze the risk. It showed that the requested access was too broad and would violate our internal policy. Using FireMon Security Manager, I identified the overly permissive access, narrowed the rule to a specific source, destination, and the port, checked the rule conflict and the redundancy, verified it met compliance requirements. Then I approved the least privilege rule instead of the original one. This prevented unnecessary exposure and kept the firewall policy clean.
What is most valuable?
Here are the best features which are offered by FireMon Security Manager: firewall policy analysis and optimization, risk impact and analysis, change management automation, compliance monitoring and reporting, and visibility across multiple firewalls.
Policy analysis and risk impact made the biggest difference for my team. It quickly identifies overly permissive or unused firewall rules, helping us reduce risk, clean up policies, and save time on manual reviews.
FireMon Security Manager has improved our organization by reducing risk, saving time, and improving compliance. It helps us quickly identify overly permissive rules, automate policy reviews, and maintain audit-ready reports. As a result, firewall changes are safer, manual effort is lower, and the overall visibility across the network is much better.
We saw about a forty to fifty percent reduction in the time spent on manual firewall rules reviews after using FireMon Security Manager. Compliance also improved. Audit preparation time dropped by sixty percent. Additionally, we reduced overly permissive or unused rules by roughly twenty-five to thirty percent.
What needs improvement?
The UI can be improved, including UI performance and navigation, and faster data refresh. Easier initial setup would be beneficial for new users. These areas can be improved by FireMon Security Manager.
For how long have I used the solution?
I have been working in my current field for almost five years.
What do I think about the stability of the solution?
FireMon Security Manager is very stable.
What do I think about the scalability of the solution?
Scalability is very good.
How are customer service and support?
Customer support is moderate.
How was the initial setup?
I chose eight out of ten because FireMon Security Manager delivers strong value in the policy analysis, risk visibility, and the compliance automation. It significantly reduced manual efforts, improves firewall rules, and makes audits much easier.
What about the implementation team?
I have a partner business relationship with this vendor.
What's my experience with pricing, setup cost, and licensing?
My experience with pricing and licensing for FireMon Security Manager was generally positive, but on the higher side. The cost is typically subscription-based and depends on the number of devices or firewalls being managed. It was on the higher side.
What other advice do I have?
My advice is that if you are not an enterprise customer, then this solution is particularly not for a small customer because it is a use case for the enterprise customer, such as Bajaj, banks, and similar organizations. FireMon Security Manager is not the right fit for smaller organizations. I would rate FireMon Security Manager eight out of ten.
Automated policy analysis has reduced audit time and improves compliance across multi-vendor firewalls
What is our primary use case?
My main use case for FireMon Security Manager is continuous firewall policy monitoring and compliance management, and I typically use this solution for analyzing firewall rules across multiple firewalls such as FortiGate or Palo Alto, identifying risky or non-compliant configurations and maintaining a clean and optimized rule base.
A specific example of how I use FireMon Security Manager for firewall policy monitoring or compliance management is that I regularly audit firewall rules. FireMon scans policies across devices, highlights unused rules, overly permissive access, and any rule that violates compliance, allowing me to review and clean up rules based on its recommendations.
What is most valuable?
The best feature FireMon Security Manager offers is the policy analysis feature, as it deeply inspects the firewall rules, and it also works with different firewall brands, making these two things very useful.
FireMon's deep inspection of firewall rules helps me in my daily work by deeply analyzing the firewall rules of all the firewalls integrated with the solution, evaluating the logic and behavior of the rule base, including rule usage, such as rule relationships and whether any shadow or redundant or overlapping rules are present, and it provides the risk level of open ports defined by any rule or exposure, making its compatibility with different firewall brands significantly beneficial for my team.
FireMon Security Manager has positively impacted my organization by being helpful in analyzing firewall policies, better controlling risks, reducing risky configurations, and improving the compliance readiness environment.
It improved compliance readiness as I have seen a better environment and found the solution enables faster policy reviews, typically involving less time in this solution because it works automatically, meaning I do not have to do anything manually.
What needs improvement?
FireMon Security Manager is working well and providing great features with full visibility across all firewalls, so I do not see any improvement needed at this time.
For how long have I used the solution?
I have two years of experience using FireMon Security Manager.
What do I think about the stability of the solution?
FireMon Security Manager is stable.
What do I think about the scalability of the solution?
FireMon Security Manager's scalability is excellent, as it can handle multiple firewalls at a time.
How are customer service and support?
Customer support is excellent in their technical knowledge, and they are able to solve complex technical issues.
I would rate customer support a nine out of ten.
Which solution did I use previously and why did I switch?
I have not switched from a different solution, as I have been using FireMon Security Manager since the beginning.
What about the implementation team?
I purchased FireMon Security Manager through the AWS Marketplace.
What was our ROI?
I have seen a great return on investment, as I am able to save time for my team along with money savings.
I have seen that audit preparation has been reduced to a few hours compared to previously taking days or weeks, resulting in almost 60 to 70% time savings, and it has reduced the efforts in rule analysis and cleanup by 40 to 50%.
Which other solutions did I evaluate?
I have not evaluated other options before choosing FireMon Security Manager.
What other advice do I have?
My advice to others looking into using FireMon Security Manager is that any mid-sized organization with a hybrid environment, especially those with multi-vendor firewalls, should consider this solution as a game changer, as it helps in compliance readiness, policy analysis, or policy cleanup, so I highly recommend considering this solution as one of the best options. I would rate this solution an eight out of ten overall.
Which deployment model are you using for this solution?
Public Cloud
If public cloud, private cloud, or hybrid cloud, which cloud provider do you use?
Automated risk analysis has reduced review time and improves firewall policy compliance
What is our primary use case?
My main use case for FireMon Security Manager is Firewall Policy Management and Compliance Monitoring. We mainly use it to do our review, identify risky rules, and unused rules.
What is most valuable?
The best features that FireMon Security Manager offers are Risk Analysis and Rule Validation, Continuous Compliance and Monitoring, Policy Change Automation, Rule Usage and Traffic Visibility, and Centralized Multi-Firewall Management.
I find myself using the Risk Analysis and Rule Review feature the most. It automatically flags over-permissive, unused, or conflicting firewall rules and prioritizes them so I can quickly fix high-risk policies. This brings the most value because it continuously evaluates the policies and highlights vulnerabilities in real-time, helping reduce misconfiguration and maintain compliance without manual reviews.
FireMon Security Manager positively impacts our organization by improving visibility, reducing risk, and simplifying compliance. It continuously analyzes the firewall policies, identifies high-risk or unused rules, and helps fix misconfiguration before they cause issues. It also improves audit readiness and operational efficiency by automating compliance checks, generating reports, and reducing manual review work, which helps us maintain a stronger security posture.
What needs improvement?
As of now, I am satisfied with FireMon Security Manager, and there is nothing to add at this time. However, in the future, if I identify something that needs to be added, I will update my review and let others know who are considering purchasing this solution.
Customer support for FireMon Security Manager is neither good nor bad, but they can improve.
For how long have I used the solution?
I have been using FireMon Security Manager for almost a year.
What do I think about the stability of the solution?
FireMon Security Manager is very stable.
What do I think about the scalability of the solution?
FireMon Security Manager is a highly scalable solution.
How are customer service and support?
Customer support for FireMon Security Manager is neither good nor bad, but they can improve.
Which solution did I use previously and why did I switch?
We have not used any solution previously.
How was the initial setup?
My experience with pricing, setup cost, and licensing for FireMon Security Manager is that these three parameters are very smooth and straightforward since this particular FireMon solution is used by enterprise customers, so it is very straightforward and quite simple.
What was our ROI?
I am not the right person from a technical background regarding return on investment metrics. I will say that time saving is a major factor in this case, as I mentioned in my review.
What's my experience with pricing, setup cost, and licensing?
My experience with pricing, setup cost, and licensing for FireMon Security Manager is that these three parameters are very smooth and straightforward since this particular FireMon solution is used by enterprise customers, so it is very straightforward and quite simple.
Which other solutions did I evaluate?
We have not evaluated any other options before choosing FireMon Security Manager.
What other advice do I have?
For example, I ran a daily task and a daily risk report in FireMon Security Manager that flagged a rule allowing any source to a service subnet. I reviewed the usage, confirmed it was too broad, and tightened it to the specific IPs and ports to reduce the risk.
FireMon Security Manager has saved our team a significant amount of manual review time. For example, rule reviews that used to take three to four hours manually are now done in thirty to forty-five minutes or less using automated risk and usage analysis. We also reduced unused firewall rules during cleanup, which improved policy clarity and lowered risk. Overall, it helps speed up audits, reduce manual efforts, and improves firewall hygiene.
If you are looking for a good solution such as FireMon Security Manager, then you should improve or increase your budget. I would rate this product an eight out of ten.
Real-Time Visibility and Compliance for Complex Multi-Cloud Firewalls
What do you like best about the product?
Is a solution designed to automate firewall rule management, enforce compliance, and reduce risk across hybrid and multi‑cloud environments. It provides real‑time visibility, continuous compliance monitoring, and policy optimization, making it especially valuable for enterprises managing complex, multi‑vendor firewalls.
What do you dislike about the product?
Improve more on Insight part such as assist create Assessment and control on FireMon
What problems is the product solving and how is that benefiting you?
FireMon Policy Manager benefits organizations by improving operational efficiency, reducing misconfigurations, and ensuring continuous compliance across hybrid and multi cloud environments.
Love the Reporting Features
What do you like best about the product?
Getting the customized report as required
What do you dislike about the product?
Not getting the exact report which is required
What problems is the product solving and how is that benefiting you?
It helps to clean up the unused firewall rules as well as objects. Also helps in optimizing the policies.
Real-time visibility and powerful automation to keep everything under control
What do you like best about the product?
What I value most is the real-time visibility and centralized management, because it allows me to have everything under control from a single place. It also highlights the very powerful automation of changes and compliance, which reduces manual work and helps maintain order. Finally, the proactive risk analysis provides peace of mind by anticipating potential problems before they escalate.
What do you dislike about the product?
The learning curve is quite steep. Additionally, the interface can be overwhelming, especially at first. I have also noticed high resource consumption, which affects the user experience.
What problems is the product solving and how is that benefiting you?
1. Incorrect configurations and risky rules.
2. Lack of centralized visibility.
3. Manual change management: slow and error-prone.
4. Audits and compliance that can take weeks.
5. Accumulation of rules over time.
6. Slow response to incidents.
2. Lack of centralized visibility.
3. Manual change management: slow and error-prone.
4. Audits and compliance that can take weeks.
5. Accumulation of rules over time.
6. Slow response to incidents.
Keeps Our Security Devices Clean and Organized
What do you like best about the product?
It help to keep my security devices clean
What do you dislike about the product?
Need more accurate report of rule which we want to export.
What problems is the product solving and how is that benefiting you?
It help me to get the unwanted rules from the security devices and also help me to monitor any unwanted changes in the firewall.
showing 1 - 10