No more typing reviews! Try our Samantha, our new voice AI agent.

Cisco Secure Network Analytics vs Infraon IMS comparison

 

Comparison Buyer's Guide

Executive SummaryUpdated on Oct 10, 2024

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Categories and Ranking

Cisco Secure Network Analytics
Ranking in Network Monitoring Software
32nd
Average Rating
8.2
Reviews Sentiment
6.6
Number of Reviews
63
Ranking in other categories
Network Traffic Analysis (NTA) (4th), Network Detection and Response (NDR) (6th), Cisco Security Portfolio (6th)
Infraon IMS
Ranking in Network Monitoring Software
83rd
Average Rating
8.4
Reviews Sentiment
7.1
Number of Reviews
8
Ranking in other categories
Server Monitoring (32nd), IT Infrastructure Monitoring (56th), Cloud Monitoring Software (48th)
 

Mindshare comparison

As of July 2026, in the Network Monitoring Software category, the mindshare of Cisco Secure Network Analytics is 0.9%, down from 1.2% compared to the previous year. The mindshare of Infraon IMS is 0.5%, up from 0.2% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Network Monitoring Software Mindshare Distribution
ProductMindshare (%)
Cisco Secure Network Analytics0.9%
Infraon IMS0.5%
Other98.6%
Network Monitoring Software
 

Featured Reviews

Akash Das Barman - PeerSpot reviewer
Cyber Security Trainee at DataSpace Academy
Network analytics has reduced investigation time and provides deeper visibility into lateral movement
Several features often look very promising during evaluation or implementation but end up being used only lightly in day-to-day operations. Advanced reporting and scheduled compliance reports look very attractive for audit and compliance teams at implementation time and can generate structured reports for visibility, risk posture, and traffic summaries. In practice, many teams do not rely on it heavily because SIEM tools or GRC platforms already handle reporting better. Built-in threat intelligence feeds represent another area where expectations do not always match usage. The platform includes threat intelligence-based detection and classifications. Initially, teams expect to depend on this heavily, but later SOC teams often prefer their own threat intelligence feeds or correlate intelligence inside SIEM instead. The built-in feeds are used but not as a primary detection source. Automated incident summaries and guided investigation views are designed to simplify triage by automatically grouping related activity into incidents. However, teams often move away from them due to various factors affecting adoption.
it_user1631601 - PeerSpot reviewer
GTM Manager at a computer software company with 201-500 employees
Our process efficiency has improved by having all the information in one place, which has reduced manpower
The product is great. We integrated the ticketing tool with the monitoring tool. The agent ID creation is very easy when using this tool. It is so user-friendly. The user interface is good and also the pricing is great. The user interface is good, even a business user or layman can raise a ticket. They provide an all-in-one monitoring tool. If an issue happens, it gets integrated with the email, then proactively that ticket is being raised, which is good. The reporting is good. It is very clear. It is a customized report; however you want it, you can customize it. We use the solution’s role-based dashboards. The head of IT wants to use it so he can see holistically what is happening, e.g., what are the tickets being raised, what is a major issue, and what escalations are happening. There are different dashboards that are customized. For our head of IT, we made a separate dashboard. Then, for the executives, we made a separate dashboard based on time, like hourly or daily. All these reports were customized. While they didn't provide a BI dashboard, they provide a kind of graphical dashboard for whatever the issue is. Once you click on a particular ticket, it drills down to the issue, what it is and when the issue was raised. The drill down is good. It is more like a business intelligence (BI) tool. You can just scroll and zoom in. It goes deep into the issue. Once you click a particular dashboard, it will take you to the next page, then it takes you to the issue. Infraon IMS provides workflow automation for real-world use cases. This makes our work easier. It is just drag and drop (no coding) to build the workflows. For example, a particular ticket is being raised. It gets routed to three important IT executives within our team. From our team, it gets routed to the next level. The learning curve is good. Initially, there were no issues. As soon as the users saw the product, they understood what the product was. There wasn't any kind of training required for this product because it is very straightforward.

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"From a security standpoint, it is just seeing pockets as well. Visibility is very key for us."
"The solution has increased our threat detection rate. Cisco Stealthwatch has not reduced our incident response times. It has not reduced the amount of time it takes us to detect immediate threats. It has reduced false positives."
"The most valuable feature is having visibility into the data segments throughout our network."
"This solution is doing everything that we want, and my only complaint is in regards to the quirks during installation."
"It provides good visibility to the customers. People are still evaluating it, but it provides visibility and helps them to take action to remediate and mitigate the issues that are highlighted on the dashboard. It has good integration with the Cisco switching platform."
"Stealthwatch reduced our incident response rate, as well as the amount of time it takes to detect and remediate threats by about 25%."
"The beginning of any security investigation starts with net flow data."
"Time to value is very good for Stealthwatch."
"Our response time is within 30 minutes for any support. This solution provides alerts immediately, so we are within our SLA, giving efficiency to our support."
"Once we installed this central system, our site engineers who provide the data started believing in the data's accuracy."
"We use the solution to automatically trigger processes to help us resolve issues. The whole IT process has been automated, such as trying to map all the users and the escalation process. So, if any issue happens, we get an SMS and WhatsApp of the report. If there is a critical issue this has to be sorted out, like the entire data center being down, then there is an alarm."
"We have definitely seen ROI since we first implemented Infraon, three years ago, as it has given us clarity and helped us with compliance during audits."
"Infraon IMS allows us to do several things from a single window, which is important to us."
"Being an engineering product, the customization is easy for us compared to SolarWinds and ManageEngine."
"With Infraon, everything is already built-in so you are able to plug-and-play with the system."
"The feature that I like the most and the best part is the customization."
 

Cons

"I would like to see interoperability with other Cisco products because we have ThousandEyes, Cisco Prime, and others. The interaction among these is important to us."
"Cisco Stealthwatch has increased the administrative time required just to get everything up and running smoothly."
"I think the interface is a little lacking. The interface seems like it just needs to be modernized. It's been the same interface now, ever since I've seen it probably four years ago."
"The configuration of the solution was quite complex."
"I would like Cisco to make it easier for the administrators to use it."
"One update that I would like to see is an agent-based client. Currently, Stealthwatch is network-based. A local agent could help manage endpoints."
"I would like to see better filters."
"Complexity on integration is not so straightforward and you really need an expert to help build it out."
"Technical support could use some improvement in terms of their response times and diagnostic accuracy."
"This solution is available in SaaS. The reason why we have not gone to SaaS is they do not have a country-specific separation of assets. There are GDPR and other requirements that might require country-specific sensitive information to be filtered as well as other things that need to be taken care of. Normally, if we need to do any compliance, like ISO27000 compliance, they don't have such a report within their system. This kind of report is missing from their SaaS. That is one of the reasons that we have gone to the on-prem version, where I am assured that my data is secure."
"The graphical view of the topology does not show us all of the connectivity in our network, which is something that could be improved."
"The GUI is in need of improvement. It is not drag-and-drop or easy to use."
"We have enquired if there are any possibilities of monitoring non-IPBS devices."
"Email support is a bit slow. Once you drop an email, it takes time."
"I would like to have the option to add a new device or meet with the next release. Right now, it needs to be done from the backend which results in a heavy reliance on R&D."
"There might be some features in other products that are currently not there in Everest IMS and can be included. I have not yet compared it with any other product."
 

Pricing and Cost Advice

"It is worth the cost."
"The solution is expensive. It costs several hundred thousand dollars per year (depending on how many flows you are collecting)."
"Today, we are part of the big Cisco ELA, and it is a la carte. We can get orders for whatever we want. At the end of the day, we have to pay for it in one big expense, but that is fine. We are okay with that."
"The tool is not cheaply priced."
"There are additional licenses needed for the number of so-called network flows. It's hard to plan the number of flows you need in the network, this is a problem. The price of the Cisco Stealthwatch is relatively inexpensive"
"NetFlow is very expensive."
"On a yearly basis, licensing is somewhere around $30,000."
"The pricing for this solution is good."
"I think that the pricing for this solution is reasonable and varies by number of devices."
"The pricing is reasonable, given the features that they provide."
"The cost model is within our budget. I have less than 180 critical assets, but the moment that I have 1,000 assets, then the license model is totally different. I don't know whether they are capable of handling that kind of a load. They could revisit the licensing model."
"If you are looking for the best product with the best price, Infraon is the best product. We evaluated five to six products and finally felt Infraon was better because of the pricing model, especially because it was more flexible."
"Licensing is calculated on a per-user basis."
"We pay for a number of devices on the accounts and since it is on-premises, we pay the maintenance charges for the year."
report
Use our free recommendation engine to learn which Network Monitoring Software solutions are best for your needs.
902,988 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Financial Services Firm
11%
Manufacturing Company
10%
Construction Company
8%
Government
8%
Manufacturing Company
18%
Financial Services Firm
16%
Outsourcing Company
13%
Construction Company
8%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
By reviewers
Company SizeCount
Small Business12
Midsize Enterprise7
Large Enterprise52
By reviewers
Company SizeCount
Small Business3
Midsize Enterprise2
Large Enterprise3
 

Questions from the Community

What is your experience regarding pricing and costs for Cisco Stealthwatch?
Regarding cost, for the Bangladesh context, Cisco Secure Network Analytics is a little bit high-priced because we are a developing country, making it tough to manage affordable solutions. However, ...
What needs improvement with Cisco Stealthwatch?
Several features often look very promising during evaluation or implementation but end up being used only lightly in day-to-day operations. Advanced reporting and scheduled compliance reports look ...
What is your primary use case for Cisco Stealthwatch?
My main use case for Cisco Secure Network Analytics has been network visibility and anomaly-based threat detection within the enterprise environment. In security operations and VAPT-related activit...
What is the best network monitoring software for large enterprises?
It actually depends on the exact purpose or requirements. Some tools are better for only network devices while others are better from a cloud monitoring or APM monitoring perspective. You can check...
 

Also Known As

Cisco Stealthwatch, Cisco Stealthwatch Enterprise, Lancope StealthWatch
Everest IMS
 

Overview

 

Sample Customers

Edge Web Hosting, Telenor Norway, Ivy Tech Community College of Indiana, Webster Financial Corporation, Westinghouse Electric, VMware, TIAA-CREF
Airtel, BSNL, BlackBox Corporation, ACT, Geojit, Canara Bank, Federal Bank, Corporation Bank, Birla Corporation, CESC Limited, Mphasis, GAIL, Udaan, Cowrks, SEBI, PowerGrid, ION, Summit Communications, National Information Technology Center (Nepal), Bhutan National Bank, Servion T, Greenlam, Translab Technologies, CMSIT Services, Nelco, HPCL, Navitas Life Sciences etc. 
Find out what your peers are saying about Cisco Secure Network Analytics vs. Infraon IMS and other solutions. Updated: June 2026.
902,988 professionals have used our research since 2012.