My main use case for FireMon Security Manager is Firewall Policy Management and Compliance Monitoring. We mainly use it to do our review, identify risky rules, and unused rules.

The best features that FireMon Security Manager offers are Risk Analysis and Rule Validation, Continuous Compliance and Monitoring, Policy Change Automation, Rule Usage and Traffic Visibility, and Centralized Multi-Firewall Management.

I find myself using the Risk Analysis and Rule Review feature the most. It automatically flags over-permissive, unused, or conflicting firewall rules and prioritizes them so I can quickly fix high-risk policies. This brings the most value because it continuously evaluates the policies and highlights vulnerabilities in real-time, helping reduce misconfiguration and maintain compliance without manual reviews.

FireMon Security Manager positively impacts our organization by improving visibility, reducing risk, and simplifying compliance. It continuously analyzes the firewall policies, identifies high-risk or unused rules, and helps fix misconfiguration before they cause issues. It also improves audit readiness and operational efficiency by automating compliance checks, generating reports, and reducing manual review work, which helps us maintain a stronger security posture.

As of now, I am satisfied with FireMon Security Manager, and there is nothing to add at this time. However, in the future, if I identify something that needs to be added, I will update my review and let others know who are considering purchasing this solution.

Customer support for FireMon Security Manager is neither good nor bad, but they can improve.

I have been using FireMon Security Manager for almost a year.

FireMon Security Manager is very stable.

FireMon Security Manager is a highly scalable solution.

Customer support for FireMon Security Manager is neither good nor bad, but they can improve.

We have not used any solution previously.

My experience with pricing, setup cost, and licensing for FireMon Security Manager is that these three parameters are very smooth and straightforward since this particular FireMon solution is used by enterprise customers, so it is very straightforward and quite simple.

I am not the right person from a technical background regarding return on investment metrics. I will say that time saving is a major factor in this case, as I mentioned in my review.

My experience with pricing, setup cost, and licensing for FireMon Security Manager is that these three parameters are very smooth and straightforward since this particular FireMon solution is used by enterprise customers, so it is very straightforward and quite simple.

We have not evaluated any other options before choosing FireMon Security Manager.

For example, I ran a daily task and a daily risk report in FireMon Security Manager that flagged a rule allowing any source to a service subnet. I reviewed the usage, confirmed it was too broad, and tightened it to the specific IPs and ports to reduce the risk.

FireMon Security Manager has saved our team a significant amount of manual review time. For example, rule reviews that used to take three to four hours manually are now done in thirty to forty-five minutes or less using automated risk and usage analysis. We also reduced unused firewall rules during cleanup, which improved policy clarity and lowered risk. Overall, it helps speed up audits, reduce manual efforts, and improves firewall hygiene.

If you are looking for a good solution such as FireMon Security Manager, then you should improve or increase your budget. I would rate this product an eight out of ten.

I have been using FireMon Security Manager for around two years in a production environment, mainly for firewall policy review, compliance report, rule cleanup, and change tracking across multiple firewall platforms such as Palo Alto, Fortinet, and SonicWall, in addition to Check Point. Over this time, it has become part of the regular operations for audit and policy governance rather than just a one-time tool.

A very common day-to-day use case for us with FireMon Security Manager is policy review and cleanup before an audit. For example, recently, we had to prepare for an internal security audit, and we used FireMon Security Manager to run a policy analysis across multiple firewalls such as Palo Alto, Fortinet, SonicWall, and Check Point. FireMon Security Manager quickly highlights unused, over-permissive rules, as well as shadow and duplicate rules, allowing us to generate a risk and compliance report from FireMon Security Manager, review the findings with the application owner, and use that output to clean up and optimize the rule base. It also helps us track changes and document what was modified and why, making audit evidence much easier. FireMon Security Manager plays a key role in reducing risk, speeding up audit preparations, and making policy cleanup structured instead of manual and error-prone.

Based on my experience and operational uses, some of the best features FireMon Security Manager offers include centralized policy visibility, which provides a single pane of glass view across all firewall vendors and devices without needing to log into each firewall to understand rules. Another important feature is risk and rule analysis, which highlights risky, unused, shadow, duplicate, and overly permissive rules automatically, saving huge time on manual audits and helping reduce the attack surface. Compliance reporting is also a key feature, with built-in reports for standards such as PCI DSS, ISO 27001, and NIST, ready for auditors and saving weeks of work generating and validating evidence. Additionally, rule cleanup or recertification workflows allow assignment of rules to owners for validation and enforcement of governance. Multi-vendor support is significant as FireMon Security Manager works across various firewalls such as Palo Alto, Fortinet, Cisco, Check Point, and SonicWall. Policy automation is one of the most critical features, as it automates repetitive tasks such as rule assessment, reporting, and compliance snapshots, reducing manual work weekly or monthly.

I rely the most on the policy risk and rule analysis feature of FireMon Security Manager, as this is the most practical and high-impact feature on a day-to-day basis. It quickly shows unused rules, overly permissive rules, shadow rules, and duplicate rules across all firewalls. Instead of manually reviewing thousands of rules, FireMon Security Manager gives a clear prioritized view of what is actually risky or unnecessary, which directly helps in reducing the attack surface, preparing for audits, and keeping the rule base clean without spending days on manual checks. The risk and rule analysis feature is the most valuable, saving time, reducing human errors, and continuously improving the security posture.

One thing that stands out about FireMon Security Manager is how much visibility and control it provides over complex multi-vendor firewall environments, which really changes policy management from a reactive task to a more proactive and governed process.

I wish to see deeper and more customizable reporting and dashboards, as while the standard reports are useful for audits, operational teams sometimes need real-time, flexible views without exporting data. Tighter integrations with ticketing and change management tools would also enhance the workflow from request to implementation. FireMon Security Manager is excellent for policy governance and risk reduction, but better real-time dashboards and stronger workflow integrations would make it even more powerful for daily operations.

There are one or two areas where FireMon Security Manager could be improved to make it even stronger. While FireMon Security Manager overall delivers solid governance and risk insight, it would benefit from more flexible dashboards and deeper integrations to reduce manual steps and improve visibility without relying on external tools.

I rate FireMon Security Manager an 8 out of 10. It is a strong tool for firewall policy management, risk analysis, and compliance, clearly improving our audit process and policy governance. The reason I do not give it a 9 out of 10 is mainly because the dashboard could be more flexible and integration with the firewalls could be smoother. FireMon Security Manager is a reliable and high-value platform for managing and governing firewall policies, especially in a multi-vendor environment, though a few areas can still be improved.

I have been in my current field for more than six years.

FireMon Security Manager has been stable and reliable in our experience. We have not experienced any major crashes, data losses, or serious outages. It runs consistently during day-to-day operations, including policy analysis, reporting, and change tracking. While we do regular maintenance and upgrades during planned windows as any enterprise tool would require, there has been no major technical issues or unplanned downtimes. FireMon Security Manager has maintained steady performance even when scanning multiple firewalls and large rule pages.

FireMon Security Manager's scalability is good and practical for most enterprise environments. It handles increasing workloads and growing numbers of firewalls quite well, provided the underlying infrastructure such as CPU, memory, and database is sized correctly. We started with a moderate number of firewalls and added more over time without any performance degradation. Reports, risk scans, and compliance checks continue to run reliably as the device count increases. The key to scalability is the platform's sizing and how we use it in our environment; larger rule bases and more frequent scans may benefit from additional resources. Proper database maintenance and archiving also help maintain consistent performance. We have successfully scaled from dozens to a couple of hundred firewall devices, and FireMon Security Manager has kept up well through that growth.

The customer support for FireMon Security Manager has been outstanding in our experience. We have interacted with their support team a few times for setup questions and minor tuning issues, with responses being quick, knowledgeable, and very helpful. Issues were understood quickly and resolved without unnecessary back and forth.

We did not use a different and dedicated solution before FireMon Security Manager. Most of our work was done manually using native firewall management tools and spreadsheets for reviews and audits, which was time-consuming and error-prone. We adopted FireMon Security Manager to centralize policy management, automate analysis, and improve audit readiness, shifting from a manual process to FireMon Security Manager for saving time, reducing risk, and establishing proper governance in firewall policy management.

Our experience with FireMon Security Manager pricing, setup cost, and licensing has been reliable but not impressive or inexpensive. FireMon Security Manager is typically licensed based on the number of devices or policy targets you connect, such as firewalls and routers, rather than by the seat. This model makes sense for a multi-vendor environment, but costs can scale up quickly if you have hundreds of firewalls. The subscription pricing includes access to the platform and updates, but advanced modules or plugins, such as compliance packs or integrations, may require additional licensing. The initial setup is not trivial; it takes a few days to onboard all firewalls, configure connectors, and tune rule analysis baseline. Initial consulting or professional services can help speed this up, but that adds to startup cost. Once setup and baseline are done, ongoing effort is low and valuable. The cost for us is justified by the audit time saving and policy cleanup efficiency FireMon Security Manager delivers.

We have seen a major return on investment with FireMon Security Manager, especially concerning time saved and risk reductions, though this is not always captured in hard dollar figures. Before FireMon Security Manager, preparing for quarterly or annual audits meant manual reviews, cross-checking rules in spreadsheets, and building documentation, typically involving 30 to 40 engineers per audit cycle. After implementing FireMon Security Manager, policy risk reports, compliance reports, and anomalies are generated automatically, which reduces audit preparation down to 15 to 18 hours per cycle, saving about 40 to 50% of time just on audit-related efforts. Additionally, FireMon Security Manager's risk analysis helps us identify and remove hundreds of unused or risky rules within a week instead of months, thereby minimizing misconfiguration risk, lowering troubleshooting efforts, and strengthening overall security posture. While it is challenging to quantify risk reductions in monetary terms, the improvements in audit and compliance review are direct and visible. The same team now accomplishes more with less manual effort focusing on policy optimization, impact analysis, and governance flow instead of manual rule validation. In one audit cycle, preparation used to take 36 hours, which FireMon Security Manager has reduced to 16 hours, saving 20 hours for one cycle. With four audits per year, that leads to up to 80 hours saved annually, which might even exceed 100 hours. Assuming an engineer's cost per hour, this easily covers a portion of the FireMon Security Manager subscription over time. FireMon Security Manager delivers ROI through significant time savings, cleaner rule bases, and improved risk visibility, especially for organizations with complex multi-vendor firewalls.

We compare total engineer hours spent before versus after FireMon Security Manager and the number of days needed to get audit-ready reports, which explains the 40 to 50% time reductions based on practical ops-based measurement, not just a theoretical number. FireMon Security Manager clearly cuts audit preparation efforts almost in half by automating analysis and reporting.

The 40 to 50% reduction in audit preparation time was mainly based on hours spent by the team. Before FireMon Security Manager, audit preparation involved manually logging into multiple firewalls, exporting rules, checking them in spreadsheets, and building reports, with typically two to three engineers spending several days on this. After FireMon Security Manager, most of this work is automated; risk analysis, compliance checks, and reports are generated directly from the tool. The same preparation now usually takes about half an hour, sometimes even less.

We did a quick market scan before choosing FireMon Security Manager, but we did not find any other solution that met our requirements as effectively for multi-vendor firewall policy management and compliance. Hence, we did not seriously evaluate or shortlist another product.

My main advice for others looking into using FireMon Security Manager is to clearly define your policy management and compliance goals before deployment. This tool is powerful, and you will get the most value from it if you plan its use for risk analysis, rule cleanup, and audit workflows from day one. It is also important to size the platform properly based on the number of devices and rule base size, investing some time in initial tuning and baseline—this upfront effort pays off later with accurate reports and meaningful risk insights. Finally, involve both security and network teams early, ensuring FireMon Security Manager becomes a part of the regular change and governance process rather than just an audit tool.

One thing that stands out about FireMon Security Manager is how much visibility and control it provides over complex multi-vendor firewall environments, which really changes policy management from a reactive task to a more proactive and governed process. I rate this product an 8 out of 10.

Our main use case for FireMon Security Manager is centralized firewall policies, visibility, and risk management in a large environment with close to 200 firewalls. FireMon Security Manager helps us identify risky or unused rules, maintain compliance, and support audit without manual policy review.

On a day-to-day basis, we use FireMon Security Manager to review firewall rules, changes, and identify unused or risky rules. For example, before or after a change window, we run policy analysis to check overly permissive access and confirm whether the rule is still required. This helps us reduce risk and stay audit-ready in the large environment. We use FireMon Security Manager daily to analyze rule changes, spot unused rules, and prepare clean reports for audit without manual checks.

FireMon Security Manager helps standardize firewall policies and review access. Instead of relying on individual firewall expertise, we use FireMon Security Manager as a single source of truth to consistently assess risk, track changes, and support compliance in large, regulated environments.

The best features of FireMon Security Manager are centralized firewall visibility, policy risk analysis, and compliance reporting. It provides a single view across all firewalls, helps quickly identify risks and unused rules, and generates audit-ready reports, which is extremely useful in large, regulated environments. Change tracking is also very helpful, as it shows who changed what and when, reducing the risk of misconfiguration.

The change tracking feature has helped our team by giving clear visibility into what rule was changed, when it was changed, and whether it introduced any risk. This has reduced troubleshooting time and helped us quickly validate changes during audit and incident review. Policy risk analysis and unused rule identification are also very valuable, especially in large environments, as they have helped us continuously reduce risk and keep firewall policies clean.

The reporting and dashboard visibility are worth highlighting. FireMon Security Manager makes it easy to share clear, understandable reports with auditors and management, which saves time and reduces back-and-forth during review.

FireMon Security Manager has had a very positive impact on our organization by reducing manual effort and improving overall security posture. It helped us gain centralized visibility across a large firewall environment, reduce risk and unused rules, and significantly shorten the time required for audit and policy reviews. It has also improved change control and accountability, which reduced configuration errors and operational risk.

FireMon Security Manager is a strong platform. However, it could be improved with a more intuitive user interface and faster initial onboarding for new users. Simplifying some workflows and dashboards would help teams get value more quickly, especially in large environments. More guided recommendations for rule cleanup would also make day-to-day operations even easier.

I have been using FireMon Security Manager for the last 1.5 years.

I have not faced any issues with FireMon Security Manager. It has been more than one year and the solution is still running perfectly fine.

We are managing a large number of firewalls with the client where the solution is installed. As the environment grew, FireMon Security Manager continued to handle policy analysis, reporting, and change tracking reliably without performance issues. Even with the increased workload, the platform remained stable and consistent, which is critical in large, regulated environments.

The customer support is outstanding.

We have seen a clear return on investment with FireMon Security Manager. It significantly reduced the time spent on manual firewall policy review and audit preparation. Tasks that earlier required multiple team members and several days can now be handled by fewer people in a much shorter time. The biggest ROI has been time savings and operational efficiency rather than direct cost savings. It allows the same team to manage a much larger firewall environment without increasing headcount.

Since using FireMon Security Manager, we have seen a clear reduction in manual effort. Firewall policy reviews and audit preparation that earlier took days now take a few hours, especially when dealing with a large number of firewalls. This has helped the team focus more on analysis and decision-making instead of manual rule checking. It significantly reduced the time spent on manual policy reviews and audit preparation, making the process faster and more efficient.

Our experience with FireMon Security Manager's pricing and licensing is that it is on the higher side, but justified for a large, regulated environment. The setup cost and licensing made sense given the scale, compliance requirements, and the value it delivers in reducing manual effort and audit risk.

I evaluated several solutions available in the market, including Tufin and AlgoSec. However, I would not recommend any other solution besides FireMon Security Manager.

My advice would be to clearly understand your firewall scale and compliance requirements before deployment. FireMon Security Manager delivers the most value in large or regulated environments, so proper planning, clean onboarding, and stakeholder alignment will help you get benefits faster. It works best at scale, so plan the deployment properly and align it with audit and compliance goals. FireMon Security Manager is a strong choice for large environments, especially where compliance and audit readiness are critical. I rate this solution an 8 overall.

Whenever I have a project or implementation, I use FireMon Security Manager for firewall cleanup or reporting. When I have an assessment project, I need to ensure the complexity of the firewall rules and identify unused rules from my side. It helps me to generate these reports and clean up the firewall itself.

It automatically warns us when new firewall rules, and changes to existing ones, violate compliance policies before they are deployed. This is important because I need to know who made the changes or when a change was made. It helps with tracking.

It has helped with the compliance reporting processes in an effective way.

It has helped to clean up firewall rules to some extent. It is not 100% percent but meets the needs.

It has decreased errors and misconfigurations that increase risk in an environment. There has been about a 90% reduction.

The most valuable feature for me is its capability for cleanup and managing the complexity of security products. It provides me with performance indicators like the complexity of the device itself and also identifies unused rules. In time, it helps in an effective way.

A feature that could be improved is support for more devices, not just the firewall. It would be beneficial if they expanded to other devices like switches, routers, and other security devices, perhaps including proxies. Although I know it supports F5 LTM, supporting more products would be advantageous.

I have been working with it since 2015, but I do not use it frequently. I sometimes implement it for a customer and use it when needed.

Sometimes, there is a problem related to the sizing itself. If we have many devices added or if the firewall complexity is huge, we might experience some lag in processing. It may relate to the hardware specifications.

If we need to add more devices or more FireMon instances, I believe scalability is good from their side.

I have contacted customer service, but it was a long time ago.

I have worked with alternatives such as AlgoSec. FireMon is more user-friendly and has better reporting.

The setup is easy. I do not remember the exact details, but it does not take too much time, one or two days maximum.

Its pricing is good. Compared to others, it is not so expensive.

For those looking to buy this solution, it is important to study the devices to be added to ensure correct specifications or hardware. This will satisfy their needs and expectations from FireMon. If there are many devices to be added, they should consider the appropriate hardware specs and VM.

Overall, I would rate this solution a nine out of ten.

FireMon Security Manager is a highly intelligent and useful device that consolidates all our security policies, including those for Zscaler proxies, into a single console. This centralized view eliminates gaps and inconsistencies between policies, simplifying policy review and analysis.

FireMon Security Manager is excellent for real-time compliance management. It allows us to quickly retrieve any policy needed for testing and easily analyze it for loopholes. If a loophole exists, FireMon provides comprehensive details within the policy manager.

It alerts us to firewall rule additions or changes that violate compliance policies. It supports various firewall platforms, including Checkpoint, Zscaler, Fortinet, Cisco, and AWS, and provides centralized management for all configured policies through a single console.

FireMon Security Manager provides many features, like whether my firewall is compatible with required standards such as NTP and SNMP. Each compliance included in our RFPs is shown in the UI of FireMon. It gives robust and clear dashboards, making it easier to understand risks because the policies have ratings showing usage, and the number of hit attacks.

It streamlines our compliance reporting processes by providing comprehensive risk and compliance assessments. It offers a range of features, including verification of firewall compatibility with protocols like NTP and SNMP, and detection of signal charges. FireMon effectively addresses all compliance requirements outlined in our RFPs. For instance, it can determine if firewalls or proxies within a stack are configured in Secure Mode or Active-Active mode. FireMon Security Manager enables us to generate reports on all these aspects, ensuring thorough compliance monitoring and documentation.

FireMon Security Manager is robust and can help automate firewall policy changes across large multi-vendor enterprise environments.

FireMon Security Manager helps automate firewall policy changes across various environments, including on-premises, cloud, hybrid, SASE, and SD-WAN. It also simplifies cleaning up firewall rules in our environment.

The time required to accurately create, approve, and deploy firewall policy rules has been reduced. Tasks that took 30 minutes can now be completed in just five minutes using FireMon.

FireMon provides immediate visibility into our policies through a robust and clear dashboard, making it easy to identify errors or misconfigurations based on the policy rating.

FireMon Security Manager is a fast and intelligent device that delivers results in under ten seconds, even with thousands of policies. Its user-friendly interface allows for easy viewing and searching of network policies, including proxies, all on one console. By eliminating loopholes between policies, it simplifies review and analysis, while also automating policy changes and supporting multiple vendors. The system provides alerts and notifications for streamlined implementation and features a robust dashboard for clear risk assessment.

Although configuration is not the most difficult aspect of FireMon, a basic understanding of cloud computing and firewall principles is necessary for successful implementation. Therefore, simplifying the configuration process would be a significant improvement.

The support response time has room for improvement.

I have been using FireMon Security Manager in the testing phase for six to seven months.

I would rate the stability of FireMon Security Manager nine out of ten. It provides a stable environment with excellent scalability.

I rate the scalability of FireMon Security Manager a nine out of ten. It offers extensive scalability options, providing more flexibility than other vendors.

The technical support is good, but sometimes it takes some time.

The deployment required some additional knowledge and took eight to nine days, but my team handled it efficiently.

My team, consisting of around 20 people, handled the deployment because not everyone had access to the firewall policy manager.

Other vendors have policy managers, but they are not as fast as FireMon Security Manager.

I would rate FireMon Security Manager nine out of ten.

I recommend FireMon Security Manager because it consolidates all devices into a structured serial and single port.