AlgoSec Security Management Suite
Strengths: Fully integrated suite with a lot of automated features
Weaknesses: Nothing that we found
Verdict: Solid product with strong features and a good price point. Our Best Buy for its excellent price/performance
AlgoSec Security Management Suite comprises three parts: FireWall Analyzer, FireFlow and BusinessFlow.
FireWall Analyzer allows administrators to fully automate auditing and management of firewall rules and policies. FireFlow provides a change workflow platform to manage firewall policy changes, including automated changes to Check Point devices via the ActiveChange feature. Finally, BusinessFlow brings together firewall and security policy with application needs. Without putting systems at unnecessary risk, administrators and application managers can use BusinessFlow to accurately ensure that a proper policy that grants required application rules is deployed throughout the environment.
We found installation to be quite straightforward and is initially done by connecting to the appliance through a console or SSH connection to configure the IP and network settings. Once complete, we were able to manage and configure the appliance through the web-based management GUI. We found this to be fairly simple to navigate, with an intuitive layout. We also found the integration of the various functions to be well organised throughout the interface. As for adding and managing devices, we found it was simple to configure and we were up and running in minutes.
This product comes pretty well loaded out of the box. On top of device support for almost any firewall and router, the AlgoSec Security Management Suite comes preloaded with several ready to go workflows for adding, removing and re-certifying rules and removing or changing objects. Also included are pre-defined reports for regulatory compliance auditing. Some of the templates include PCI, SOX, ISO 27001, NERC CIP, Basel II and J-SOX. Aside from compliance auditing, this also helps streamline policy risk assessment through deep analysis of the existing rules throughout the environment and finds unused rules and objects and shadowed, duplicate and expired rules to eliminate clutter and unnecessary risk to the network.
On the application side, this solution offers full automation for translating application connectivity requirements to firewall and router rules. This ensures each application gets properly crafted rules with no unneeded, open or wrong ports.
Provided documentation consists of several PDF user manuals, including installation and setup guides and user guides for each of the components of the suite. All manuals were well organised and easy to follow with many step-by-step instructions, configuration examples and screenshots.
AlgoSec offers three different tiers of technical support to customers as part of a support and maintenance program. Each of these levels includes phone, email and web-based assistance. Also available to customers at no additional cost is a web-based support portal, containing access to documentation and a detailed knowledgebase.
With pricing starting at around £8,000 for the appliance, software and licensing, we find AlgoSec Security Management Suite to be very good value for money, as it offers a lot of features and functionality at a competitive price.