We performed a comparison between Anomali Match and Cisco Secure Network Analytics based on real PeerSpot user reviews.
Find out what your peers are saying about CrowdStrike, SentinelOne, Wazuh and others in Extended Detection and Response (XDR)."The summarization of emails is a valuable feature."
"The product integrates security into one tool instead of having third-party security tools."
"The solution is well integrated with applications. It is easy to maintain and administer."
"We are connected to Microsoft and have every laptop enrolled. This acts as an endpoint. The tool helps me check security and compliance. I can also check what a device is doing."
"Defender XDR has a feature called the timeline that lets you track all activities. It helps a lot with investigations."
"Microsoft 365 Defender is a stable solution."
"The visibility into threats that 365 Defender provides is really good. You get a full review of your security system and what can be improved. In the Microsoft 365 Defender portal the first page gives you a really big summary of which security policies you are following and what can be improved."
"The integration, visibility, vulnerability management, and device identification are valuable."
"I have found Cyber threat intelligence (CTI) very useful and concise. The solution is easy to use."
"StealthWatch lets me see the ports running in and out and the country. It has excellent reporting, telemetry, and artificial intelligence features. With the telemetry, I can set thresholds to detect sudden changes and the alarms go through the PLC parts. I can see all the ports running on that trunk."
"The most valuable feature is its alerts and dashboard."
"If you are using Darktrace or NAC solutions you can integrate Stealthwatch."
"It's easy to set up. The deployment takes one or two days. You need to collect the data from a device and then direct it to the portal."
"The most valuable feature of this solution is the way the net flow is being merged together in a single pane. That's been extremely useful for us, because can see what's going on with traffic in one single place."
"The ability to send data flow from other places and have them all in one place is very valuable for us."
"I value the feature which enables me to detect devices talking to suspect IPs."
"Most of the engineers I've worked with have been really good. Very knowledgeable and easy to work with."
"I personally have not seen much evidence of how Defender can enhance the story of zero trust for enterprises."
"The advanced threat-hunting capabilities are phenomenal, and the security copilot enhances that, but some data elements could be better or have more context inside of the advanced tables themselves. The schemas feel a little limited to what they're building into the product. It's probably just a maturity thing. I imagine we'll see the features I want in the next year."
"Sometimes, configurations take much longer than expected."
"In the future, it would be beneficial for Microsoft to consider making the product more user-friendly or simplified for those who are interested in using it. Currently, it requires a high level of technical expertise, making it challenging for beginners or less experienced individuals."
"The user interface of Microsoft 365 Defender could improve. They could make it simpler."
"Intrusion detection and prevention would be great to have with 365 Defender."
"The licensing is a nightmare and has room for improvement."
"365 Defender has multiple subsets, including Defender for Cloud Apps. When integrating Defender for Cloud Apps with apps on third-party cloud platforms like AWS or GCP, there are limitations on our ability to control user activities. If Microsoft added more control over third-party products, that would be a game-changer and help us quite a lot."
"A lot of tools can give you many features, such as CTI intelligence and a tax service reduction. However, many people are combining different tools together to have more capabilities. It is up to the consumer whether they want to have multiple tools or have one tool that serves the purpose. Anomali Enterprise could improve by combining all the other tools' features into one solution."
"The configuration of the solution was quite complex."
"We've run into some issues with the configuration."
"Initially, I felt Cisco Secure Network Analytics lacked integration with Splunk."
"It's not great as a standalone solution."
"I think the interface is a little lacking. The interface seems like it just needs to be modernized. It's been the same interface now, ever since I've seen it probably four years ago."
"The GUI could use some improvement. Being able to find features more easily would be a great improvement if it was simplified."
"The initial setup is complex, as there is a lot to configure."
"I would like to see interoperability with other Cisco products because we have ThousandEyes, Cisco Prime, and others. The interaction among these is important to us."
More Cisco Secure Network Analytics Pricing and Cost Advice →
Earn 20 points
Anomali Match is ranked 36th in Extended Detection and Response (XDR) while Cisco Secure Network Analytics is ranked 24th in Network Monitoring Software with 57 reviews. Anomali Match is rated 7.0, while Cisco Secure Network Analytics is rated 8.2. The top reviewer of Anomali Match writes "Scalable, easy to use, but more features needed". On the other hand, the top reviewer of Cisco Secure Network Analytics writes "Increased the visibility of what is happening in our network". Anomali Match is most compared with ThreatConnect Threat Intelligence Platform (TIP) and EclecticIQ, whereas Cisco Secure Network Analytics is most compared with Darktrace, Cisco Secure Cloud Analytics, ThousandEyes, Vectra AI and Arista NDR.
We monitor all Extended Detection and Response (XDR) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.