Try our new research platform with insights from 80,000+ expert users

Cisco Secure Network Analytics vs Rapid7 InsightIDR comparison

The compared Cisco and Rapid7 solutions aren't in the same category. Cisco is ranked #30 in NMS , with an average rating of 8.7, and holds a 1.2% mindshare in the category. Rapid7 is ranked #13 in SIEM , with an average rating of 8.2, and holds a 2.5% mindshare. Additionally, 88% of Cisco users are willing to recommend the solution, compared to 95% of Rapid7 users who would recommend it.
Cisco Secure Network Analytics
Read 60 Cisco Secure Network Analytics reviews
  • 1,893 Views
  • 1,506 Comparison Views
88% willing to recommend
Rapid7 InsightIDR
Read 32 Rapid7 InsightIDR reviews
  • 4,038 Views
  • 2,556 Comparison Views
95% willing to recommend
 

Comparison Buyer's Guide

Download the report
Executive Summary
We performed a comparison between Cisco Secure Network Analytics and Rapid7 InsightIDR based on real PeerSpot user reviews.

Find out what your peers are saying about Zabbix, Auvik, Datadog and others in Network Monitoring Software.

DOWNLOAD THE COMPLETE REPORT
To learn more, read our detailed Network Monitoring Software Report (Updated: April 2025).
Buyer's Guide
Network Monitoring Software
April 2025
Download the complete report
Helped 850,760 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Categories and Ranking

Cisco Secure Network Analytics
Average Rating
8.2
Reviews Sentiment
6.9
Number of Reviews
60
Ranking in other categories
Network Monitoring Software (30th), Network Traffic Analysis (NTA) (4th), Network Detection and Response (NDR) (8th), Cisco Security Portfolio (7th)
Rapid7 InsightIDR
Average Rating
8.4
Reviews Sentiment
7.4
Number of Reviews
32
Ranking in other categories
Security Information and Event Management (SIEM) (13th), User Entity Behavior Analytics (UEBA) (3rd), Endpoint Detection and Response (EDR) (24th), Threat Deception Platforms (5th), Extended Detection and Response (XDR) (15th)
 

Mindshare comparison

While both are Network Security Systems solutions, they serve different purposes. Cisco Secure Network Analytics is designed for Network Monitoring Software and holds a mindshare of 1.2%, down 1.6% compared to last year.
Rapid7 InsightIDR, on the other hand, focuses on Security Information and Event Management (SIEM), holds 2.5% mindshare, down 2.7% since last year.
Network Monitoring Software
Security Information and Event Management (SIEM)
 

Featured Reviews

Sudhakar T - PeerSpot reviewer
Strong network security analytics with excellent encrypted traffic analysis features
Improvements are needed on the application layer for complete security analysis. The solution should have the ability to analyze security events not only at the network layer but also at the application and OS layers. There's a need for a more comprehensive licensing model where all necessary licenses are included by default.
Read full review
Asim Naeem - PeerSpot reviewer
Providing comprehensive insight into alerts while working towards AI enhancement
I definitely recommend Rapid7 InsightIDR. It is becoming better, with improvements being continuously made to the product. Right now, I do not have any advice about Rapid7 for other users because every organization or user has different criteria or multiple use cases, so I refrain from commenting on that. I rate the overall solution seven out of ten.
Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"Cisco products are incredibly stable, boasting a 200% stability."
"StealthWatch lets me see the ports running in and out and the country. It has excellent reporting, telemetry, and artificial intelligence features. With the telemetry, I can set thresholds to detect sudden changes and the alarms go through the PLC parts. I can see all the ports running on that trunk."
"The most valuable feature of this solution is data hoarding because it catches threats on a frequent basis that we had no idea of."
"It does change the way we troubleshoot and it is relatively easy to use once you learn it. I would recommend it to someone considering it."
"The solution reduces the amount of time it takes to detect and remediate threats."
"Ease of deployment, once you get your ducks in a row."
"Being able to graph and show data to management has improved our organization. We can show the data to the higher-ups. It shows them that it's picking up on these anomalies and doing its job."
"The most valuable feature is anomaly detection, where it finds things that are not allowed internally."
More Cisco Secure Network Analytics pros
"If you were on other solutions, you would notice that they use agents from third-party, from open-source, from a native OS, or from other tools. Here, however, it is an agent from Rapid7 itself. This adds to the solution's overall capabilities."
"It improves because several sensors are deployed within the on-premise environment. It can be very efficient if the customer implements and operates it effectively."
"Intelligent alerting to avoid the common problem of alert fatigue associated with traditional SIEMs."
"Great coverage of all systems within our network from endpoint to firewall."
"Features for user behavior analytics and the rules for attack review are good."
"The solution provides satisfying native integration features"
"The solution's initial setup is easy."
"The UI is very good."
More Rapid7 InsightIDR pros
 

Cons

"We would like the solution to make more advances in the way that Extreme Networks has been doing."
"The visualization could be improved, the GUI is not the best."
"Cisco could improve the administration for the customers."
"The reporting of day-to-day metrics still has room for improvement."
"The solution should have the ability to analyze security events not only at the network layer but also at the application and OS layers."
"The GUI could use some improvement. Being able to find features more easily would be a great improvement if it was simplified."
"I would like to see better filters."
"The version with the Dell server had iDRAC problems. Often, it reported iDRAC failure."
More Cisco Secure Network Analytics cons
"The APIs can be further improved in Rapid7."
"Lacks a mobile application."
"The reporting is the weakest aspect. There needs to be multi-level grouping for events (for example, group by user and destination). Right now, we can do a group by user and a separate table or group by destination. But I'd be more interested in where a person was logging into instead of who was logging in or where he was logging in."
"Customised alert recipients need to be added to allow better first-line action and quicker response. Configurable honeypots would be a welcome addition."
"One thing that springs to mind is easier API integration with ITSMs. We are evaluating a new ITSM and I would like to have InsightIDR create a ticket when an attack is identified, and the ticket would be closed in InsightIDR when the ITSM resolution is completed. This would take out the "single point of failure" we currently have, if the email recipient is somehow absent, in recording the risk appetite for the incident and the actions taken to mitigate or not."
"Inability to get access to compliance reports within the solution."
"Tenable Nessus is easier to deal with. It's more efficient and accurate. InsightIDR is heavier than Tenable in terms of performance and scanning. Rapid7 would be much easier to use if it had a network connector like Tenable. Tenable's connector allows continuous monitoring over the B caps."
"Needs a better ability to customize the check within the console."
More Rapid7 InsightIDR cons
 

Pricing and Cost Advice

"The licensing costs are outrageous."
"Pricing is much higher compared to other solutions."
"There are additional licenses needed for the number of so-called network flows. It's hard to plan the number of flows you need in the network, this is a problem. The price of the Cisco Stealthwatch is relatively inexpensive"
"Licensing is done by flows per second, not including outside>in traffic."
"It is worth the cost."
"This is an expensive product. We have quit paying for support because we don't want to have to upgrade it and keep paying for it."
"It has a subscription model. There is yearly support, and there is also three-year support. It depends on what the customers want."
"The pricing for this solution is good."
More Cisco Secure Network Analytics pricing and cost advice
"​Accurately predict your licensing counts as this is a subscription based product.​"
"I rate Rapid7 InsightIDR's price a four on a scale of one to ten, where one is cheap, and ten is expensive."
"The pricing is good, and it is not very expensive."
"Rapid7 InsightIDR charges us based on the endpoints we connect to."
"Licensing is straightforward. If, for some reason, you don’t meet the minimum licensing requirements, there is a third-party managed service that can help."
"Rapid7 InsightIDR is priced very well and is cost-effective."
"The pricing of the solution depends on the user. But there is a yearly licensing cost."
"It is more reasonably priced than other vendors."
More Rapid7 InsightIDR pricing and cost advice
report
See which vendors are best for you
Use our free recommendation engine to learn which Network Monitoring Software solutions are best for your needs.
See recommendations
850,760 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Computer Software Company
28%
Financial Services Firm
11%
Government
9%
Manufacturing Company
7%
Computer Software Company
16%
Financial Services Firm
9%
Manufacturing Company
7%
Government
7%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
 

Questions from the Community

What do you like most about Cisco Stealthwatch?
The most valuable feature of Cisco Secure Network Analytics is the Threat Intelligence integration.
See all answers
What is your experience regarding pricing and costs for Cisco Stealthwatch?
The organization experienced challenges with licensing as Cisco has multiple licensing factors, and there are concerns about the price. Cisco solutions are considered to be very expensive.
See all answers
What needs improvement with Cisco Stealthwatch?
Improvements are needed on the application layer for complete security analysis. The solution should have the ability to analyze security events not only at the network layer but also at the applic...
See all answers
What SOC product do you recommend?
For tools I’d recommend: -SIEM- LogRhythm -SOAR- Palo Alto XSOAR Doing commercial w/o both (or at least an XDR) is asking to miss details that are critical, and ending up a statistic. Also, rememb...
See all answers
What do you like most about Rapid7 InsightIDR?
During simulations or demonstrations, the tool generates alerts, providing details such as the specific application, its origin, and potential threats. For instance, it can identify if an applicati...
See all answers
What is your experience regarding pricing and costs for Rapid7 InsightIDR?
The product pricing is very cheap.
See all answers
 

Comparisons

Darktrace vs Cisco Secure Network Analytics Logo
Darktrace vs Cisco Secure Network Analytics
Compared 16% of the time
Vectra AI vs Cisco Secure Network Analytics Logo
Vectra AI vs Cisco Secure Network Analytics
Compared 9% of the time
ThousandEyes vs Cisco Secure Network Analytics Logo
ThousandEyes vs Cisco Secure Network Analytics
Compared 8% of the time
ExtraHop Reveal(x) vs Cisco Secure Network Analytics Logo
ExtraHop Reveal(x) vs Cisco Secure Network Analytics
Compared 6% of the time
Arista NDR vs Cisco Secure Network Analytics Logo
Arista NDR vs Cisco Secure Network Analytics
Compared 4% of the time
More Cisco Secure Network Analytics Competitors
Darktrace vs Rapid7 InsightIDR Logo
Darktrace vs Rapid7 InsightIDR
Compared 10% of the time
Microsoft Sentinel vs Rapid7 InsightIDR Logo
Microsoft Sentinel vs Rapid7 InsightIDR
Compared 9% of the time
Rapid7 InsightVM vs Rapid7 InsightIDR Logo
Rapid7 InsightVM vs Rapid7 InsightIDR
Compared 8% of the time
CrowdStrike Falcon vs Rapid7 InsightIDR Logo
CrowdStrike Falcon vs Rapid7 InsightIDR
Compared 5% of the time
Splunk Enterprise Security vs Rapid7 InsightIDR Logo
Splunk Enterprise Security vs Rapid7 InsightIDR
Compared 5% of the time
More Rapid7 InsightIDR Competitors
 

Product Reports

Buyer's Guide
Cisco Secure Network Analytics
May 2025
Cisco Secure Network Analytics reportDownload Cisco Secure Network Analytics product report
Buyer's Guide
Rapid7 InsightIDR
April 2025
Rapid7 InsightIDR reportDownload Rapid7 InsightIDR product report
 

Also Known As

Cisco Stealthwatch, Cisco Stealthwatch Enterprise, Lancope StealthWatch
InsightIDR
 

Overview

Cisco Secure Network Analytics is a highly effective network traffic analysis (NTA) solution that enables users to find threats in their network traffic even if those threats are encrypted. It turns an organization’s network telemetry into a tool that creates a complete field of vision for the organization’s administrators. Users can find threats that may have infiltrated their systems and stop them before they can do irreparable harm.

Cisco Secure Network Analytics Benefits

A few ways that organizations can benefit by choosing to deploy Cisco Secure Network Analytics include:

  • Security scaling. Secure Network Analytics makes it easy for organizations to scale up their level of network protection to match the growth that their business is experiencing. It can be deployed on whatever type of system is necessary. Users will have their growth needs met at every stage of their business journey because the solution offers users the ability to use it on-premises or in the cloud and it can be consumed as a SaaS-based or license-based solution. Whenever any kind of device is added, Secure Network Analytics can automatically classify that device so that it is seamlessly integrated into its network protection system.
  • Detects threats as they appear. Users gain the ability to scan their network traffic for even the most advanced threats at all times. Secure Network Analytics easily identifies the early warning signs that are typically initiated before attacks are conducted by bad actors. Once these signs are found, users are warned so that they can take steps to prevent those threats from escalating. This also enables users to determine the source of the threat and whether it might have spread further than initially thought.
  • Eliminate blind spots. Organizations that use Secure Network Analytics can view their network traffic across both private networks and public cloud environments. The scanning power of the solution allows users to gain complete visibility with a fewer number of sensors than their competitors require to achieve a similar level of protection.

Cisco Secure Network Analytics Features

Some of the many features that Cisco Secure Network Analytics offers include:

  • Centralized security management. Secure Network Analytics’ Identity Services Engine feature enables users to control their network from a single graphical user interface. Administrators can simplify their jobs by controlling profiler, posture, guest, authentication, and authorization services from a single pane of glass.
  • Machine learning tools. Secure Network Analytics uses machine learning to generate alerts when malicious or suspicious activity is detected. It also analyzes the threat so that users gain insight into the nature of the dangers that confront them. Additionally, it examines the threats to determine whether they are actual threats or false alarms. This significantly reduces the number of false alarms that administrators have to spend time attempting to resolve.
  • Automation. Users can automate routine tasks that users would otherwise have to handle manually. This automation feature frees administrators and employees to handle other more critical tasks.

Reviews from Real Users

Cisco Secure Network Analytics is a solution that stands out even when compared to many other comparable products. Two major advantages that it offers are the way that it enables users to define the threshold at which the solution will issue a warning to administrators and the predefined alerts that it offers straight out of the box.

Gerald J., the information technology operations supervisor at Aboitiz Equity Ventures, Inc., writes, “StealthWatch lets me see the ports running in and out and the country. It has excellent reporting, telemetry, and artificial intelligence features. With the telemetry, I can set thresholds to detect sudden changes and the alarms go through the PLC parts. I can see all the ports running on that trunk.”

A senior security engineer at a tech services company, says, “Cisco Stealthwatch has predefined alerts for different types of security issues that might happen in the network. Whether it's PCs or servers that are used for botnets or Bitcoin mining we receive the alerts automatically. This functionality is what we receive from the solution out of the box.”

Cisco

Parsing hundreds of trivial alerts. Managing a mountain of data. Manually forwarding info from your endpoints. Forget that. InsightIDR instantly arms you with the insight you need to make better decisions across the incident detection and response lifecycle, faster.

Rapid7
 

Sample Customers

Edge Web Hosting, Telenor Norway, Ivy Tech Community College of Indiana, Webster Financial Corporation, Westinghouse Electric, VMware, TIAA-CREF
Liberty Wines, Pioneer Telephone, Visier
Buyer's Guide
Network Monitoring Software
April 2025
Download Free Report
Find out what your peers are saying about Zabbix, Auvik, Datadog and others in Network Monitoring Software. Updated: April 2025.
DOWNLOAD NOW
850,760 professionals have used our research since 2012.

We monitor all Network Monitoring Software reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.