We just raised a $30M Series A: Read our story

Tufin SecureCloud OverviewUNIXBusinessApplication

Tufin SecureCloud is #9 ranked solution in Container Security Solutions. IT Central Station users give Tufin SecureCloud an average rating of 6 out of 10. Tufin SecureCloud is most commonly compared to Prisma Cloud by Palo Alto Networks:Tufin SecureCloud vs Prisma Cloud by Palo Alto Networks. The top industry researching this solution are professionals from a computer software company, accounting for 25% of all views.
What is Tufin SecureCloud?

Tufin SecureCloud revolutionizes cloud security. Companies no longer need to compromise agility for security. Leverage SecureCloud’s policy-centric automation-based approach to secure your journey to the cloud. Gain confidence knowing your cloud-native, hybrid cloud, and Kubernetes applications are properly configured and secure.

Tufin SecureCloud was previously known as Tufin Orca.

Buyer's Guide

Download the Container Security Buyer's Guide including reviews and more. Updated: November 2021

Tufin SecureCloud Customers

AT&T, BlueCross BlueShield, BNP Paribas, Deutsche Bank, IBM

Tufin SecureCloud Video

Tufin SecureCloud Reviews

Filter by:
Filter Reviews
Industry
Loading...
Filter Unavailable
Company Size
Loading...
Filter Unavailable
Job Level
Loading...
Filter Unavailable
Rating
Loading...
Filter Unavailable
Considered
Loading...
Filter Unavailable
Order by:
Loading...
  • Date
  • Highest Rating
  • Lowest Rating
  • Review Length
Search:
Showingreviews based on the current filters. Reset all filters
Ignitius Molepo
Senior IP Network Defense at a comms service provider with 10,001+ employees
Real User
Top 5Leaderboard
Offers good recommendations on how to improve security but its support is lacking

Pros and Cons

  • "The features I have found most valuable are its capability to check on the firewall and the routers. Afterwards it checks out all the configs, checks the vulnerabilities, checks the risks - it checks everything that may end up causing our router to be compromised. At the end it recommendations what we should do."
  • "The two main negative points with Tufin Orca are the absence of full support and that accommodation of files and tools is not provided in a good way."

What is our primary use case?

I'm using the Fortinet firewalls, so I need the firewall manager tool to manage those files, together with the FortiManager. The Tufin guys provided a solution for our data center where we have a box server, which was specifically developed for Tufin. It would run the scan on the network, get to the firewall, or go to the router, run the scan and give me the compliance, and then send it to me. Then I get a report from there.

What is most valuable?

The features I have found most valuable are its capability to check on the firewall and the routers. Afterward, it checks out all the configs, checks the vulnerabilities, checks the risks - it checks everything that may end up causing our router to be compromised. In the end, it recommendations what we should do.

Then, if we apply the recommendations, it will scan again and give us a percentage. Sometimes we find out that at first that we didn't meet the compliance, getting a 46% maybe. Then, when after I apply the recommendations, after discussing with my team, and approving the recommendations, it is all remedied. After that, it goes to 80-something percent. And that is what we are looking for.

What needs improvement?

One area in which I need it to improve is that I need it to accommodate all the files and all the tools. For example, when I buy the firewall management tool, I want it to manage the firewall of every firewall I use across my organization. If I'm going to depend on only one vendor, and it looks likes a vendor or a catered tool, it can't help on any vendor to scan the technology and give the auditing compliance. This is something they can improve from their side.

The second thing I need is that if Tufin comes and deploys their solutions on my premises, I would like to have full support from them. Unfortunately, I didn't have their full support. So what worried me is that whenever the box is no longer working, then I'm no longer going to be able to see my compliance. I know I'm not going to charge whoever is not complying on my premises.

To sum up, the two main negative points with Tufin Orca are the absence of full support and that accommodation of files and tools is not provided in a good way.

Additionally, what Tufin should include in the next release is the ability to see the logical bullets points. In my case, I wanted to see the physical report because when things tripped and went wrong we needed to start fixing it on the physical side. So I would like to have the physical tool policy before we can have the looks side.

But on the looks side it was very good. We need to filter up to it regarding the beneficiaries in the policies. So it was very good on that side of the data, but when I'm using it as a firewall manager, and then find the firewall is down, I need to see it on the Tufin. Also, I need the capability for Tufin to start alerting me whenever there is a change on the firewall.

I can say that we didn't know about that function on Tufin and when we try to communicate with the Tufin guys, they are not able to assist us on that. So we end up having someone go to our firewall and start to make a change, and we end up not having the right thing and not being able to manage our firewall accordingly. The main point of using the same tool as a firewall manager is to have the daily health check of the box.

For how long have I used the solution?

I have used Tufin for the last two years and then I left it when Skybox was introduced to me. Unfortunately, I didn't have the capacity to use Skybox because I didn't have the skills on my team, so I decided to leave it. But I am looking forward to getting the new tool which will help me to do what I need.

How was the initial setup?

The initial setup was very complex. What worried us at first was that we didn't know how to integrate it with the network. We had to call the Tufin guys to help with that and they physically brought it to us for the integration to the network. So that was challenging.

When you ship the product to our country, to my organization, it is quite expensive. It's not cost-effective. It's quite expensive because we end up paying extra for accommodation, the transport, everything for that person to come and assist us on the integration to the network. 

Generally, you need to pay for everything -  for the support and the implementation with the integrator.

We can also add this to the areas for the improvement, that implementation is difficult and it would be great if they could simplify the way the person can implement the products.

What other advice do I have?

On a scale of one to ten, I would give Tufin Orca a five. I would recommend it only if the organization has the skills and enough requirements so that they are able to run it. It is a very good tool when you use it because it basically gives you what you want. It is just hard in terms of support, patching, and upgrading. Overall, it's challenging if you don't have the skills or resources.

This product will work for those organizations that have the knowledge of how to install the solution.

Which deployment model are you using for this solution?

On-premises
Disclosure: My company has a business relationship with this vendor other than being a customer: Partner
IS
Security Operations Engineer at a security firm with 201-500 employees
Real User
Top 5Leaderboard
Quantifies and reduces many risks and eliminates traffic between different zones

Pros and Cons

  • "I like the deployment and management of this solution."
  • "In the next release I would like to see better migration in the Cloud because that will allow more visibility in the network."

What is our primary use case?

Our primary use case is fo the security of our medical facility. We have a lot of holes in the firewall and we wanted to see the details. For example, we see a lot of traffic between the different zones that we needed to reduce. So we use the solution to eliminate this traffic. It also allows us to have a lot of optimization rules for a good switching policy in the firewall. 

It can quantify and reduce a lot of risks.

What is most valuable?

I like the deployment and management of this solution. I don't have much experience in that kind of security solution, but I have three years of experience in similar solutions, like AlgoSec. I do some scripts to optimize the solution, such as configuring the API.

Additionally, when we export the report, you can see a lot of logs of all the equipment in the company and we can identify some of the machines or some log station in the network. Also, the user can create some requests to implement the flow and push the rules in the firewall. You can analyze the log and the traffic, you can have a lot of API's, and do some reporting.

What needs improvement?

In the next release I would like to see better migration in the Cloud because that will allow more visibility in the network.

For how long have I used the solution?

I have been working with Tufin Orca for one year.

This solution was already deployed and we just manage it.

What do I think about the stability of the solution?

It is a stable solution.

What do I think about the scalability of the solution?

This solution is scalable.

How are customer service and technical support?

I have tons of contact with support. If you have some problems or issues you can contact support and manage the problem together. I did that with a lot of competitors, like Palo Alto on our network. If we have an issue in production, my production team will try to solve it or you can contact support to manage the issue.

I am satisfied with the support.

How was the initial setup?

The initial setup is not complex. It's easy for me because I have some experience and training on it. Now I can do a whole production on the application.

What about the implementation team?

We used an integrator for implementation because I have a colleague who has a lot more experience than me and we worked together to manage that solution.

What other advice do I have?

I would recommend this solution. I think it's a good solution to have. It is good to know what this solution does in the network. You can have a lot of training on it and see a lot of questions from different users in the company.

On a scale of one to ten, I would rate it an eight.

Which deployment model are you using for this solution?

Public Cloud
Disclosure: I am a real user, and this review is based on my own experience and opinions.
Find out what your peers are saying about Tufin, Palo Alto Networks, Tigera and others in Container Security. Updated: November 2021.
554,676 professionals have used our research since 2012.
Ignitius Molepo
Senior IP Network Defense at a comms service provider with 10,001+ employees
Real User
Top 5Leaderboard
A powerful tool for ensuring compliance, but it is difficult to implement and the support needs improvement

Pros and Cons

  • "The most valuable feature is the compliance check and the recommendations that it makes."
  • "My worry with Tufin is that it cannot connect to Fortinet, which is what I want to do."

What is our primary use case?

We are a solution provider and this is one of the products that we implement for our clients. We also use it ourselves.

We have this solution installed in our data center, where we have a box specifically for Tufin. It scans our network, looks at the firewalls and the routers, assesses compliance and sends me a report.

What is most valuable?

The most valuable feature is the compliance check and the recommendations that it makes. This solution will connect with the firewalls and routers to check out the vulnerabilities, risks, and anything that can lead the organization to be compromised. From there it will make recommendations about what is required in order to ensure compliance. My team discusses the recommendations and then we remedy the issues.

What needs improvement?

My worry with Tufin is that it cannot connect to Fortinet, which is what I want to do. In order for this solution to be useful, it needs to be able to manage every type of firewall that I come across in my organization. I do not want to be tied to one vendor. Integration with all types of firewalls and related tools is necessary.

When Tufin deploys solutions on-premises then they should provide full support, but this was not the case in my organization.

The implementation, including integration with other solutions, is complex and should be simplified.

I want to see the physical topology of the network in order to help with troubleshooting.

I would like Tufin to alert me whenever there is a change in the firewall.

For how long have I used the solution?

I have used Tufin Orca for the past two years.

How are customer service and technical support?

We do not have full support for Tufin and it was expensive to have support visit us during our deployment.

How was the initial setup?

The initial setup was very complex because we needed help to integrate it with the network. Unfortunately, we needed to have an engineer come to assist us, which is why it was challenging. Getting an engineer to visit our country is quite expensive because you have to pay extra for accommodation, transport, and everything. It is not cost-effective.

What other advice do I have?

This is a solution that I would recommend, but only in cases where the organization has the skills. I would rate this solution in the middle because it meets my requirements, it is a very good tool, and it immediately gives you what you want. At the same time, when it comes to the support, setting it up, and upgrading it, it is challenging if you don't have skilled resources.

I would rate this solution a five out of ten.

Which deployment model are you using for this solution?

On-premises
Disclosure: My company has a business relationship with this vendor other than being a customer: Partner
Product Categories
Container Security
Buyer's Guide
Download our free Container Security Report and find out what your peers are saying about Tufin, Palo Alto Networks, Tigera, and more!