We performed a comparison between Cisco Secure Network Analytics and NetWitness Platform based on real PeerSpot user reviews.
Find out what your peers are saying about Zabbix, Datadog, Auvik and others in Network Monitoring Software."We can manage the entire system across the network and troubleshoot the pain points."
"If you are using Darktrace or NAC solutions you can integrate Stealthwatch."
"Stealthwatch has greatly improved our network visibility, in terms of bandwidth, malware, and PCI violations."
"It provides good visibility to the customers. People are still evaluating it, but it provides visibility and helps them to take action to remediate and mitigate the issues that are highlighted on the dashboard. It has good integration with the Cisco switching platform."
"Cisco Stealthwatch has predefined alerts for different types of security issues that might happen in the network. Whether it's PCs or servers that are used for botnets or Bitcoin mining we receive the alerts automatically. This functionality is what we receive from the solution out of the box."
"The search options on Cisco Stealthwatch are the most valuable. You can get very granular with it, down to the kilobits or the seconds if you want. The product supports any time frame that you need, so that is nice."
"The most valuable features of this solution are its reporting and mitigation capabilities."
"The solution allowed us to not only get gain insight but also start collaborating with other tools."
"The solution has increased our threat detection rate. Cisco Stealthwatch has not reduced our incident response times. It has not reduced the amount of time it takes us to detect immediate threats. It has reduced false positives."
"The most valuable feature of RSA NetWitness Logs and Packets are the alerts and correlations tools."
"The packet capture aspect of it is a valuable feature because it is quite different from a traditional SIEM solution that only carries out investigations based on captured logs."
"The software is scalable to whatever is required, and you can also put a lot of resources in the cloud."
"I can have enterprise security, email security, next generation firewall security log, HIDS and NIDS logs, etc. all on the same dashboard. It makes it easy to pinpoint or correlate our server to this. I can find out if there is lateral movement. This is the biggest advantage of this solution."
"It's quite economical compared to other solutions in the market."
"The most valuable feature is the hunting ability to work in a CERT."
"What we are mainly using are the RSA concentrator, RSA Decoder, Archiver, Broker, and Log Decoder."
"In my opinion, the solution's most valuable feature is its capacity to monitor network traffic, logs from devices within the network, and network captures. This capability extends beyond logs to include full network capturing."
"The Wi-Fi side needs improvement."
"It's too complicated to install, when starting out."
"We've run into some issues with the configuration."
"I would like the search page available with Cisco Stealthwatch to be more intuitive. The previous release was better than the current one for the UI."
"There's a lot of traffic on our network that we don't see sometimes."
"Its granularity for RBAC roles-based access control needs improvement."
"We would like the solution to make more advances in the way that Extreme Networks has been doing."
"The usability of this solution needs to be improved."
"Stealthwatch needs improvement when it comes to speed."
"Log aggregation is an issue with this solution because there are a huge number of alerts in a single instance."
"The threat detection capability and centralizing and upgrading capability need to be improved. The threat alert capability needs to be improved as well because there is some lag time at present. They need to work on their database search too."
"Sometimes, it gives me static when integrating Windows-based systems. It should produce a precise log of sorts as to where the problem is. For example, a few days ago because of the McAfee application firewall, I couldn't get access to the particular Windows machine. So, my team and I had to figure out by ourselves that there was a virus responsible for the obstacle. This solution should trigger a meaningful log or message indicating the reason the user or implementer can't get into the machine."
"The solution should have more integration capabilities with different platforms."
"The system looks like it is a mix of a bunch of different systems, and nothing looked like it was quite together."
"It should have a monitoring feature. It would help us analyze the current state of attacks faster from a single platform."
"There are instances where you try to run the reports and then it does not give you the desired outcome."
"The log system is a bit complex and has room for improvement."
More Cisco Secure Network Analytics Pricing and Cost Advice →
Earn 20 points
Cisco Secure Network Analytics is ranked 25th in Network Monitoring Software with 7 reviews while NetWitness Platform is ranked 30th in Log Management with 11 reviews. Cisco Secure Network Analytics is rated 8.2, while NetWitness Platform is rated 7.4. The top reviewer of Cisco Secure Network Analytics writes "Improved our organization greatly but greater customizability would be beneficial". On the other hand, the top reviewer of NetWitness Platform writes "A solid SIEM solution that should improve technical support and online resources to be easier to use". Cisco Secure Network Analytics is most compared with Darktrace, Cisco Secure Cloud Analytics, ThousandEyes, Vectra AI and Arista NDR, whereas NetWitness Platform is most compared with Splunk Enterprise Security, RSA enVision, IBM Security QRadar, Microsoft Sentinel and Trellix Network Detection and Response.
We monitor all Network Monitoring Software reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.