Cisco Stealthwatch Valuable Features
Enterprise Information Security Architect at a agriculture with 5,001-10,000 employees
The most valuable feature of this solution is the ability to do TAPs because we have a distributed network.
The ability to set up one tool to stream that data over to us has been helpful because that way, we don't have to have other infrastructure and be really close to where the activity is.
The security features have been good for helping create some correlation. For example, when you tap in, what else happens from the network perspective.
Otherwise, just the general network performance monitoring is probably the number one thing that gets used. If we're having slowness issues then it can tell us what the bandwidth and usage are. We can find things like what is using up all the bandwidth and then find out how can we break that apart or route that differently, through a different WAN connection or internet connection.View full review »
Senior Security Engineer at a tech services company with 501-1,000 employees
Cisco Stealthwatch has predefined alerts for different types of security issues that might happen in the network. Whether it's PCs or servers that are used for botnets or Bitcoin mining we receive the alerts automatically. This functionality is what we receive from the solution out of the box.
The solution has a lot of add-on features available.View full review »
From what I understand, you can encrypt and unencrypt traffic moving in transit. This is one of the features that we liked about it.
Chief Technology Officer at a tech services company with 51-200 employees
The best feature is the network monitoring, looking at anomaly detection and evaluation. For our operations team, a valuable feature is the ability to do the taps and access that via Stealthwatch.View full review »
StealthWatch lets me see the ports running in and out and the country. It has excellent reporting, telemetry, and artificial intelligence features. With the telemetry, I can set thresholds to detect sudden changes and the alarms go through the PLC parts. I can see all the ports running on that trunk.View full review »
PMO Department at a comms service provider with 1,001-5,000 employees
It provides good visibility to the customers. People are still evaluating it, but it provides visibility and helps them to take action to remediate and mitigate the issues that are highlighted on the dashboard. It has good integration with the Cisco switching platform.View full review »
Network and Security with 10,001+ employees
I like auto-remediation. Pushing to Cisco ISE is very useful. Also, you can send all traffic, any SIEM logger, and a behavior analyst. It integrates with the ISE.
If you are using Darktrace or NAC solutions you can integrate Stealthwatch. However, I don't like just the Stealthwatch appliance. It's better integrated with others.
The solution is stable.
It's scalable.View full review »
National Offering Lead - Security Practice at a computer software company with 501-1,000 employees
We find that Stealthwatch can detect the unseen. Once you have a fully deployed Cisco enterprise agreement, we can turn on Stealthwatch and usually catch the last little bit.View full review »
Ingenieria at a tech services company with 11-50 employees
Overall, the implementation is very good.
The solution offers good security.
We find the solution is very good at collaborating with other solutions.View full review »