Try our new research platform with insights from 80,000+ expert users
NetWitness NDR Logo

NetWitness NDR Reviews

Vendor: NetWitness
4.0 out of 5
242 followers
Start review

What is NetWitness NDR?

Featured NetWitness NDR reviews

NetWitness NDR mindshare

As of June 2025, the mindshare of NetWitness NDR in the Network Detection and Response (NDR) category stands at 2.1%, up from 1.9% compared to the previous year, according to calculations based on PeerSpot user engagement data.
Network Detection and Response (NDR)

PeerResearch reports based on NetWitness NDR reviews

TypeTitleDate
CategoryNetwork Detection and Response (NDR)Jun 13, 2025Download
ProductReviews, tips, and advice from real usersJun 13, 2025Download
ComparisonNetWitness NDR vs DarktraceJun 13, 2025Download
ComparisonNetWitness NDR vs Vectra AIJun 13, 2025Download
ComparisonNetWitness NDR vs Trend Vision OneJun 13, 2025Download
Suggested products
TitleRatingMindshareRecommending
CrowdStrike Falcon4.3N/A96%132 interviewsAdd to research
Microsoft Defender for Endpoint4.1N/A94%197 interviewsAdd to research
 
 
Key learnings from peers

Valuable Features

Room for Improvement

ROI

Pricing

Popular Use Cases

Service and Support

Deployment

Scalability

Stability

Review data by company size

By reviewers
By visitors reading reviews

Top industries

By visitors reading reviews
Computer Software Company
17%
Financial Services Firm
16%
Government
10%
Manufacturing Company
9%
Healthcare Company
6%
Energy/Utilities Company
5%
Retailer
4%
Comms Service Provider
4%
University
3%
Educational Organization
3%
Real Estate/Law Firm
2%
Non Profit
2%
Insurance Company
2%
Logistics Company
2%
Legal Firm
2%
Transportation Company
2%
Construction Company
2%
Media Company
1%
Engineering Company
1%
Hospitality Company
1%
International Affairs Institute
1%
Recruiting/Hr Firm
1%
Outsourcing Company
1%
Aerospace/Defense Firm
1%
Security Firm
1%
Performing Arts
1%
 

NetWitness NDR reviews

Sort by:
PeerSpot user
Senior Cyber Security Analyst (SAFe Agile) at a transportation company with 1,001-5,000 employees
Verified user of NetWitness NDR
Sep 3, 2022
Advanced threat detection undermined by issues with blocking

Pros

"NetWitness Endpoint's most valuable features are its interoperability across many different operating systems and the ease of pivoting from network to endpoint via a single console."

Cons

"NetWitness Endpoint's blocking feature does not work properly - if there's a malicious process, it's not possible to kill it via a custom rule unless and until it's flagged as malicious."
SupravatMaji - PeerSpot user
Associate Vice President - IT Security at Inspira Enterprise
Verified user of NetWitness NDR
Jun 26, 2022
Product version discussed: 11.7
Beneficial single unified dashboard, good native application integration, and high availability

Pros

"The most valuable feature of RSA NetWitness Network is the single unified dashboard from which you can manage all the different products of RSA. Additionally, the integration with native applications is good."

Cons

"RSA NetWitness Network could improve on integration with non-native application integration."
Find out what your peers are saying about NetWitness NDR. Updated May 2025
856,807 professionals have used our research since 2012.
PeerSpot user
Manager, IT Security Operations at a non-profit with 11-50 employees
Verified user of NetWitness NDR
Oct 9, 2022
Reliable and good support but can be expensive

Pros

"Technical support is knowledgeable. "

Cons

"Threat detection could be better."
PeerSpot user
Manager, Soc
Verified user of NetWitness NDR
Dec 10, 2021
Log correlation is good, but the solution is slow and there are many licensing complications

Pros

"The log correlation is good."

Cons

"The deployment process is complex. I don't know why, but this solution will suddenly stop working. Logs stop coming. Often, one thing or another stops working. Most of the time, one of my team members is working with troubleshooting and working with technical support. Log passing is also one of the biggest challenge. "
TM
Senior Cybersecurity Consultant at CIA Botswana
Verified user of NetWitness NDR
Sep 21, 2021
Product version discussed: Latest version
Overall great feature functionality, simple installation, and helpful technical support

Pros

"They have recently updated the features and the most valuable ones are the instant threat response, ease of use, web interface, integration, and easy access. RSA NetWitness Endpoint is very compatible with other solutions and technologies. However, they do not rely on third-party solutions and have most features built-in."
TM
Senior Cybersecurity Consultant at CIA Botswana
Verified user of NetWitness NDR
Nov 9, 2020
Product version discussed: 3.3
Good performance and reporting, and can discover unknown malware using signatureless detection methods

Pros

"This solution allows us to locate the malware in real-time."

Cons

"I would like to see Security Orchestration and Response Automation (SOAR) integration."
Jakaria Udoy - PeerSpot user
Information Security Engineer at Nhq Distribution Ltd
Verified user of NetWitness NDR
Sep 14, 2022
Has user behavior analytics features and is stable and scalable

Pros

"It's a scalable solution. We have around five to eight customers using RSA NetWitness Endpoint, and we hope to increase the number of users."

Cons

"The integration of the solution needs to be improved. The dashboard needs lots of updates as well. In the next release, we would like to see advanced fraud detection features."
PeerSpot user
Security Information & Incident Analyst at a financial services firm with 1,001-5,000 employees
Verified user of NetWitness NDR
Jun 6, 2022
Product version discussed: 048
Provides great protection against malicious files

Pros

"Ability to isolate the machine when there are malicious files."

Cons

"The solution lacks a reporting engine. "