IT Central Station is now PeerSpot: Here's why

Cisco Secure Workload vs Illumio Adaptive Security Platform comparison

Cancel
You must select at least 2 products to compare!
Featured Review
Buyer's Guide
Cloud and Data Center Security
July 2022
Find out what your peers are saying about Trend Micro, VMware, Check Point and others in Cloud and Data Center Security. Updated: July 2022.
621,703 professionals have used our research since 2012.
Quotes From Members
We asked business professionals to review the solutions they use.
Here are some excerpts of what they said:
Pros
"Prisma Cloud has enabled us to take a very strong preventive approach to cloud security. One of the hardest things with cloud is getting visibility into workloads. With Prisma Cloud, you can go in and get that visibility, then set up policies to alert on risky behavior, e.g., if there are security groups or firewall ports open up. So, it is very helpful in preventing configuration errors in the cloud by having visibility. If there are issues, then you can find them and fix them.""The policies that come prepackaged in the tool have been very valuable to us. They're accurate and they provide good guidance as to why the policy was created, as well as how to remediate anything that violates the policy.""As a pure-play CSPM, it is pretty good. From the data exposure perspective, Prisma Cloud does a fairly good job. Purely from the perspective of reading the conflicts, it is able to highlight any data exposures that I might be having.""The Twistlock vulnerability scanning tool is its most valuable feature. It provides us insight into security vulnerabilities, running inside both on-premise and public cloud-based container platforms. It is filling a gap that we have with traditional vulnerability scanning tools, where we don't have the ability to scan inside containers.""The application visibility is amazing. For example, sometimes we don't know what a particular custom port is for and what is running on it. The visibility enables us to identify applications, what the protocol is, and what service is behind it. Within Azure, it is doing a great job of providing visibility. We know exactly what is passing through our network. If there is an issue of any sort we are able to quickly detect it and fix the problem.""Prisma Cloud's monitoring features such as the compute compliance dashboard and the vulnerability dashboard, where we can get a clear visualization of their docker, have also been valuable. We can get layer-by-layer information that helps us see exactly where it's noncompliant. They update the dashboards quite frequently.""It scans our containers in real time. Also, as they're built, it's looking into the container repository where the images are built, telling us ahead of time, "You have vulnerabilities here, and you should update this code before you deploy." And once it's deployed, it's scanning for vulnerabilities that are in production as the container is running.""I've been really pleasantly surprised with how Prisma Cloud is, over time, covering more and more of the topics I care about, and listening to customer feedback and growing the product in the right directions."

More Prisma Cloud by Palo Alto Networks Pros →

"The solution offers 100% telemetry coverage. The telemetry you collect is not sampled, it's not intermittent. It's complete. You see everything in it, including full visibility of all activities on your endpoints and in your network."

More Cisco Secure Workload Pros →

"The most valuable feature of Illumio Adaptive Security Platform is monitoring. When I have no requirement from the other application, I can use the web block traffic to build.""The Explorer allows you to know the traffic between source and destination."

More Illumio Adaptive Security Platform Pros →

Cons
"It's not really on par with, or catering to, what other products are looking at in terms of SAST and DAST capabilities. For those, you'd probably go to the market and look at something like Veracode or WhiteHat.""They need to make the settings more flexible to fit our internal policies about data. We didn't want developers to see some data, but we wanted them to have access to the console because it was going to help them... It was a pain to have to set up the access to some languages and some data.""In terms of securing cloud-native development at build time, a lot of improvement is needed. Currently, it's more a runtime solution than a build-time solution. For runtime, I would rate it at seven out of 10, but for build-time there is a lot of work to be done.""The integration of the Compute function into the cloud monitoring function—because those are two different tools that are being combined together—could use some more work. It still feels a little bit disjointed.""We would like to have the detections be more contemporaneous. For example, we've seen detections of an overprivileged user or whatever it might be in any of the hundreds of Prisma policies, where there are 50 minutes of latency between the event and the alert.""Areas like the deployment of their defenders and their central control need manual intervention. They should focus more on automation. They have a very generic case for small companies. However, for bigger companies to work, we have to do a lot of changes to our system to accommodate it. Therefore, they should change their system or deployment models so it can be easy to integrate into existing architectures.""They charge seven workloads for monitoring one compute, and that is quite expensive. This makes it difficult to move fully with the compute part because of the workload.""Currently, custom reports are available, but I feel that those reports are targeting just the L1 or L2 engineers because they are very verbose. So, for every alert, there is a proper description, but as a security posture management portal, Prisma Cloud should give me a dashboard that I can present to my stakeholders, such as CSO, CRO, or CTO. It should be at a little bit higher level. They should definitely put effort into reporting because the reporting does not reflect the requirements of a dashboard for your stakeholders. There are a couple of things that are present on the portal, but we don't have the option to customize dashboards or widgets. There are a limited set of widgets, and those widgets don't add value from the perspective of a security team or any professional who is above L1 or L2 level. Because of this, the reach of Prisma Cloud in an organization or the access to Prisma Cloud will be limited only to L1 and L2 engineers. This is something that their development team should look into."

More Prisma Cloud by Palo Alto Networks Cons →

"The multi-tenancy, redundancy, backup and restore functionalities, as well as the monitoring aspects of the solution, need improvement. The solution offers virtually no enterprise-grade possibility for monitoring."

More Cisco Secure Workload Cons →

"Illumio Adaptive Security Platform could improve by supporting more operating systems. For example, Cisco and Apache appliances.""The customer service is lagging a bit. It could be better."

More Illumio Adaptive Security Platform Cons →

Pricing and Cost Advice
  • "One thing we're very pleased about is how the licensing model for Prisma is based on work resources. You buy a certain amount of work resources and then, as they enable new capabilities within Prisma, it just takes those work resource units and applies them to new features. This enables us to test and use the new features without having to go back and ask for and procure a whole new product, which could require going through weeks, and maybe months, of a procurement process."
  • "The pricing and the licensing are both very fair... The biggest advice I would give in terms of costs would be to try to understand what the growth is going to look like. That's really been our biggest struggle, that we don't have an idea of what our future growth is going to be on the platform. We go from X number of licenses to Y number of licenses without a plan on how we're going to get from A to B, and a lot of that comes as a bit of a surprise. It can make budgeting a real challenge for it."
  • "From my exposure so far, they have been really flexible on whatever your current state is, with a view to what the future state might be. There's no hard sell. They "get" the journey that you're on, and they're trying to help you embrace cloud security, governance, and compliance as you go."
  • "If a competitor came along and said, "We'll give you half the price," that doesn't necessarily mean that's the right answer, at all. We wouldn't necessarily entertain it that way. Does it do what we need it to do? Does it work with the things that we want it to work with? That is the important part for us. Pricing wasn't the big consideration it might be in some organizations. We spend millions on public cloud. In that context, it would not make sense to worry about the small price differences that you get between the products."
  • "The pricing and licensing are expensive compared to the other offerings that we considered."
  • "I don't know a better way to do it, but their licensing is a little confusing. That's due to the breadth of different types of technologies they are trying to cover. The way you license depends on where you're securing. When they were Twistlock it was a simple licensing scheme and you could tell what you were doing. Now that they've changed that scheme with Palo Alto, it is quite confusing. It's very difficult to predict what your costs are going to be as you try to expand coverage."
  • "The pricing is good. They gave us some good discounts right at the end of the year based on the value that it brings, visibility, and the ability to build in cloud, compliance, and security within one dashboard."
  • "The licensing cost is a bit high on the compute side."
  • More Prisma Cloud by Palo Alto Networks Pricing and Cost Advice →

    Information Not Available
  • "There is a subscription needed to use Illumio Adaptive Security Platform and we pay every three years. Overall the solution is expensive."
  • More Illumio Adaptive Security Platform Pricing and Cost Advice →

    report
    Use our free recommendation engine to learn which Cloud and Data Center Security solutions are best for your needs.
    621,703 professionals have used our research since 2012.
    Questions from the Community
    Top Answer:Prisma Cloud helps support DevSecOps methodologies, making those responsibilities easier to manage.
    Top Answer:Aqua Security is easy to use and very manageable. Its main focus is on Kubernetes and Docker. Security is a very… more »
    Top Answer:Azure Security Center is very easy to use, integrates well, and gives very good visibility on what is happening across… more »
    Top Answer:Other then providing micro segmentation capabilities the dashboard provides all required information in single windows… more »
    Top Answer:The price is based on how many installation of software sensors you're going to install it on.
    Top Answer:Support for all OS as currently they do not support AIX which is normally base OS for any critical Banking Workload… more »
    Top Answer:The most valuable feature of Illumio Adaptive Security Platform is monitoring. When I have no requirement from the other… more »
    Top Answer:There is a subscription needed to use Illumio Adaptive Security Platform and we pay every three years. Overall the… more »
    Top Answer:Illumio Adaptive Security Platform could improve by supporting more operating systems. For example, Cisco and Apache… more »
    Comparisons
    Also Known As
    Palo Alto Networks Prisma Cloud, Prisma Public Cloud, RedLock Cloud 360, RedLock, Twistlock, Aporeto
    Cisco Tetration
    Illumio ASP
    Learn More
    Overview

    Prisma Cloud is a comprehensive cloud-native security platform (CNSP) that provides security and compliance coverage for infrastructure, applications, data, and all cloud-native technology stacks throughout the development lifecycle. Prisma Cloud safeguards cloud operations across hybrid and multi-cloud environments, all from a single, unified solution, using a combination of cloud service provider APIs and a unified agent framework.

    The move to the cloud has changed all aspects of the application development lifecycle, with security being foremost among them. Security and DevOps teams face a growing number of entities to secure as organizations adopt cloud-native approaches. Constantly changing environments challenge developers to build and deploy at a rapid pace without compromising on security. Prisma Cloud by Palo Alto Networks delivers complete security and compliance coverage across the development lifecycle on any cloud environment, enabling you to develop cloud-native applications with confidence.

    Prisma Cloud Features

    Prisma Cloud offers comprehensive security coverage in all areas of the cloud development lifecycle:

    • Code security: Protect configurations, scan code before it enters production, and integrate with other tools.

    • Security posture management: Monitor posture, identify and remove threats, and provide compliance across public clouds.

    • Workload protection: Secure hosts and containers across the application lifecycle.

    • Network security: Gain network visibility and enforce micro segmentation.

    • Identity security: Enforce permissions and secure identities across clouds.

    Benefits of Prisma Cloud

    • Unified management: All users use the same dashboards built via shared onboarding, allowing cloud security to be addressed from a single agent framework.

    • High-speed onboarding: Multiple cloud accounts and users are onboarded within seconds, rapidly activating integrated security capabilities.

    • Multiple integration options: Prisma Cloud can integrate with widely used IDE, SCM, and CI/CD workflows early in development, enabling users to identify and fix vulnerabilities and compliance issues before they enter production. Prisma Cloud supports all major workflows, automation frameworks, and third-party tools.

    Reviews from Real Users

    Prisma Cloud stands out among its competitors for a number of reasons. Two major ones are its integration capabilities, as well as its visibility, which makes it very easy for users to get a full picture of the cloud environment.

    Alex J., an information security manager at Cobalt.io, writes, “Prisma Cloud has enabled us to take a very strong preventive approach to cloud security. One of the hardest things with cloud is getting visibility into workloads. With Prisma Cloud, you can go in and get that visibility, then set up policies to alert on risky behavior, e.g., if there are security groups or firewall ports open up. So, it is very helpful in preventing configuration errors in the cloud by having visibility. If there are issues, then you can find them and fix them.”

    Luke L., a cloud security specialist for a financial services firm, writes, “You can also integrate with Amazon Managed Services. You can also get a snapshot in time, whether that's over a 24-hour period, seven days, or a month, to determine what the estate might look like at a certain point in time and generate reports from that for vulnerability management forums.”

    Cisco Secure Workload is a cloud and data security solution that offers a zero-trust policy of keeping an organization’s application workloads safe and secure throughout the entire on-premise and cloud data center ecosystems.

    Cisco Secure Workload will consistently provide protection by discovering workload process anomalies, stopping threats immediately, minimizing the risk threat surface, and aborting any lateral movement.

    Today’s ecosystems are very elastic, and in the application-focused dynamic of today’s aggressive marketplace, Cisco Secure Workload delivers a robust security solution that works effectively with today’s most popular applications. The solution uniquely surrounds each and every workload to ensure organizations are able to keep their data, network, and applications safe and secure at all times. Cisco Secure Workload ensures that enterprise organizations can maintain secure applications by consistently building firewalls around every workload level throughout the entire ecosystem. The solution can manage applications that are deployed on containers, virtual machines, or bare-metal servers.

    Cisco Secure workload is able to meet an organization's busy needs and offers flexible options such as Software-as-a-Service (SaaS) and on-premises options. Using the Secure Workload SaaS options, users receive all the benefits of Cisco Secure Workload protection without the hassle of having to deploy and maintain the platform on premises. Users are responsible for acquiring the necessary software licensing and deploying software agents. Using SaaS, Secure Workload runs in the cloud and is operated and maintained by Cisco. This option offers the ability to scale easily and is a popular choice for SaaS-first and SaaS-only clients. Many organizations find they get the best TCO and achieve the best productivity and profitability using the SaaS options.

    When choosing on-premises options, organizations choose between hardware-based appliance models (large or small form factors). Platform selection is dependent on scalability goals, the desired fidelity level of flow telemetry, and the actual number of workloads. When a user chooses to configure Cisco Secure Workload for a conversation-only flow telemetry for all workloads, each platform has the capability to scale up vertically twice the default platform scale. Additionally, with Secure Workload, it is possible for the platform to be scaled horizontally in order to satisfy the demands of extra large widely distributed enterprise environments using federation capabilities.

    Cisco Secure Workload also provides a robust disaster recovery (DR) tool, which helps to make it a complete, comprehensive solution. The DR allows for continuous restore and backup capabilities that enable users to quickly remediate operations and data to a standby cluster in the event of a drastic failure or disaster.

    Reviews from Real Users

    The solution offers 100% telemetry coverage. The telemetry you collect is not sampled, it's not intermittent. It's complete. You see everything in it, including full visibility of all activities on your endpoints and in your network. Other valuable features include vast support for annotations, flexible user applications, machine learning, automatic classification, and hierarchical policies.” - CTO at a tech vendor

    Illumio Adaptive Security Platform is a next-gen software security solution that protects various computing platforms (containers, virtual machines, and bare-metal servers) in any type of environment (public cloud, hybrid cloud, private cloud, or data center). It integrates well with many third-party options, such as OpenStack, Google Compute Engine, Amazon Web Services, and Microsoft Azure without needing any additional dependencies on the organization's network, hypervisor, or environment.

    Illumio ASP provides:

    • Protocol-based encryption of all data in use between workloads as needed.

    • Flexible micro-segmentation that easily adapts to shifts in the application environment to ensure segmentation policies remain intact.

    • Real-time transparency of all applications, their elements, workflows, and possible risks across all environments, such as clouds (public, private and hybrid) and data centers.

    Illumio ASP empowers IT specialists to write policy protocols in natural language depending on the role or location of the workload or application environment. Illumio ASP then translates these protocols into granular security policies with no need to determine zones, VLANs, subnets, or IP addresses.

    Illumio ASP Benefits

    • Increase protection of up to 80% of cloud traffic and data centers that can be invisible to basic perimeter firewalls.

    • Negate blind spots that exist inside the cloud and data centers, keeping the application environment continually safe and secure.

    • Improve deployment speed and minimize service delivery delays.

    • Quickly determine suspicious behavior to immediately block threats.

    • Minimize the need for numerous firewall rules inside the data center.

    Illumio ASP Features

    • User-microsegmentation: Users are able to aggressively protect user relationships to applications. Users must have authorization/approval to see and use applications.

    • Threat-based micro-segmentation: Actively reduce risk and threats, reduce the potential for breaches, minimize east-west exposure, and prioritize patching needs.
    • Nano-segmentation: This allows users to design and implement adaptive micro-segmentation protocols attached to unique processes in order to protect vital applications without minimizing security or productivity.

    • Environmental-microsegmentation: Users are able to easily separate and protect environments in their networks without negative effect to the network or infrastructure.

    • Application segmentation: Better understand the best ways to protect critical service applications that contain critical or sensitive data or are highly regulated, such as PII, SOX, HIPAA, DSS, and PCI.

    • Cloud integration: Includes designing microsegmentation protocols that move data to the cloud. Implements zero-trust security protocols to protect data in all cloud options (public, private, multi, and hybrid). Improves overall cyber protection and minimizes risk.

    • Data center security: The solution has the ability to create new adaptive processes to meet an organization's requirements for security and flexibility without the need for costly legacy segmentation solutions.

    Illumio Adaptive Security Platform continually monitors and applies the exact security needed for each workload. The solution is able to intuitively respond to moves, scale, and changes to applications or infrastructure that are common with today’s complex data centers to ensure the organization is maintaining secure operations and functionality.

    Reviews from Real Users

    The most valuable feature of Illumio Adaptive Security Platform is monitoring. When I have no requirement from the other application, I can use the web block traffic to build.” - Edwin L., Security Architect at MGM

    Offer
    Learn more about Prisma Cloud by Palo Alto Networks
    Learn more about Cisco Secure Workload
    Learn more about Illumio Adaptive Security Platform
    Sample Customers
    Amgen, Genpact, Western Asset, Zipongo, Proofpoint, NerdWallet, Axfood, 21st Century Fox, Veeva Systems, Reinsurance Group of America
    ADP, University of North Carolina Charlotte (UNCC)
    Plantronics, NTT Innovation Institute Inc.
    Top Industries
    REVIEWERS
    Computer Software Company25%
    Manufacturing Company19%
    Healthcare Company13%
    Financial Services Firm13%
    VISITORS READING REVIEWS
    Computer Software Company27%
    Comms Service Provider14%
    Financial Services Firm10%
    Manufacturing Company6%
    VISITORS READING REVIEWS
    Comms Service Provider35%
    Computer Software Company17%
    Financial Services Firm9%
    Government5%
    VISITORS READING REVIEWS
    Computer Software Company23%
    Comms Service Provider19%
    Financial Services Firm13%
    Government5%
    Company Size
    REVIEWERS
    Small Business20%
    Midsize Enterprise28%
    Large Enterprise52%
    VISITORS READING REVIEWS
    Small Business16%
    Midsize Enterprise12%
    Large Enterprise72%
    REVIEWERS
    Small Business22%
    Large Enterprise78%
    VISITORS READING REVIEWS
    Small Business13%
    Midsize Enterprise13%
    Large Enterprise73%
    VISITORS READING REVIEWS
    Small Business17%
    Midsize Enterprise16%
    Large Enterprise66%
    Buyer's Guide
    Cloud and Data Center Security
    July 2022
    Find out what your peers are saying about Trend Micro, VMware, Check Point and others in Cloud and Data Center Security. Updated: July 2022.
    621,703 professionals have used our research since 2012.

    Cisco Secure Workload is ranked 6th in Cloud and Data Center Security with 1 review while Illumio Adaptive Security Platform is ranked 5th in Cloud and Data Center Security with 2 reviews. Cisco Secure Workload is rated 8.0, while Illumio Adaptive Security Platform is rated 8.0. The top reviewer of Cisco Secure Workload writes "A solution with a straightforward setup, offering 100% telemetry coverage and good machine learning". On the other hand, the top reviewer of Illumio Adaptive Security Platform writes "Great auto policy writing and good mapping with an easy setup process". Cisco Secure Workload is most compared with VMware NSX, Guardicore Centra, vRealize Network Insight, Microsoft Defender for Cloud and Trend Micro Deep Security, whereas Illumio Adaptive Security Platform is most compared with Guardicore Centra, VMware NSX, Zscaler Internet Access, Forescout Platform and Appgate SDP.

    See our list of best Cloud and Data Center Security vendors, best CWPP (Cloud Workload Protection Platforms) vendors, and best Microsegmentation Software vendors.

    We monitor all Cloud and Data Center Security reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.