Try our new research platform with insights from 80,000+ expert users

Cisco Secure Workload vs VMware NSX comparison

 

Comparison Buyer's Guide

Executive SummaryUpdated on Jul 27, 2025

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Categories and Ranking

Cisco Secure Workload
Ranking in Cloud and Data Center Security
9th
Ranking in Microsegmentation Software
4th
Average Rating
8.6
Reviews Sentiment
7.7
Number of Reviews
15
Ranking in other categories
Cloud Workload Protection Platforms (CWPP) (14th), Cisco Security Portfolio (8th)
VMware NSX
Ranking in Cloud and Data Center Security
3rd
Ranking in Microsegmentation Software
1st
Average Rating
8.0
Reviews Sentiment
6.8
Number of Reviews
106
Ranking in other categories
Network Virtualization (2nd), Network Traffic Analysis (NTA) (7th), Network Detection and Response (NDR) (9th), Network Automation (5th)
 

Mindshare comparison

As of October 2025, in the Cloud and Data Center Security category, the mindshare of Cisco Secure Workload is 13.2%, up from 12.2% compared to the previous year. The mindshare of VMware NSX is 11.5%, down from 16.7% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Cloud and Data Center Security Market Share Distribution
ProductMarket Share (%)
VMware NSX11.5%
Cisco Secure Workload13.2%
Other75.3%
Cloud and Data Center Security
 

Featured Reviews

Raj Metkar - PeerSpot reviewer
Discover internal application dependencies and create a dependency map
We actively seek improvements in integrating the Infoblox DDI platform with Cisco Secure Workload. This integration allows Cisco Secure Workload to learn about our networks and network tags, providing valuable insights into vulnerabilities related to the operating system and various applications installed on our servers. Recently, Cisco announced a new product called HyperShield, an AI-based autonomous micro-segmentation solution. While Cisco has not stated that HyperShield will replace Cisco Secure Workload, it represents a natural evolution for the company. HyperShield features dynamic policy discovery and enforcement; however, once policies are enforced, they do not change until a discovery occurs, requiring a re-enforcement process. This new platform operates autonomously, minimizing the need for user or security engineer intervention. I would have expected Cisco to incorporate more automatic discovery and enforcement features within the existing Cisco Secure Workload product. Instead of enhancing the current product, they have introduced a new solution. Cisco plans to honor existing Tetration licenses, allowing users to transition to HyperShield without additional costs, reflecting the investment enterprises have already made. From Cisco’s perspective, this represents a natural progression in their product line. While the product name changes, it seems more of a rebranding effort. The enhancements are greater autonomy, improved discovery, and automatic enforcement, which are now being introduced in HyperShield. Cisco Secure Workload offers automatic policy enforcement but cannot adjust policies dynamically as the application needs to change. Having used the platform for the past five years, the recent announcement has been reassuring. Cisco has confirmed that our investment in the platform will not go to waste. They will honor our existing licenses, providing a natural migration path to the new solution without any disruption
TAIYAB HASAN - PeerSpot reviewer
Has improved network visibility and security through micro-segmentation and SDN capabilities
This feature gives us flexibility and allows us to manage everything under one pane. We can see everything on one console, including network operations and behavior. Monitoring and security are among the best features for VMware NSX. For micro-segmentation, it's integrated with our endpoint security. If there are any issues with servers or VMs, it notifies us so we can isolate the servers and investigate. It provides distributed security features such as firewall and intrusion, IDS, IPS. The security level with IPS and IDS in VMware NSX is excellent. It also provides logical switching and routing which gives an extra layer for Layer 2 and Layer 3 switching requirements. The solution provides flexibility, automation, and self-service capabilities, resulting in cost savings as extensive expertise isn't required. Once automation and self-service are implemented, many tasks can be completed automatically. Load balancing is another excellent feature. Multiple servers can run on load balancing features, which is particularly useful since we have many application servers running. Sharing loads between servers provides the best performance.

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"The most valuable feature of this solution is security."
"The product offers great visibility into the network so we can enforce security measures."
"The most valuable feature is micro-segmentation, which is the most important with respect to visibility."
"It's stable."
"Scalability is its most valuable feature."
"By using Tetration insight, we are able to get the latency on our level accounts and we can determine whatever the issue is with the application latency itself."
"Instead of proving that all the access control lists are in place and all the EPGs are correct, we can just point the auditor to a dashboard and point out that there aren't any escaped conversations. It saves an enormous, enormous amount of time."
"The most valuable feature of the solution is that we don't have to do packet captures on the network."
"From a security standpoint, the customer was able to better secure critical workloads while routing L2/L3 worked normally, giving them more confidence that they would be ready for any potential security incident mitigation or outage (DR)."
"The installation is straightforward, it took a couple of hours."
"We secured our organisation with Micro-segmentation."
"Some of the key features I find most valuable are the highly graphical user interface, virtualization of networks, and Microsoft application compatibility. It has all the functionality that we require."
"The most valuable features are its security aspects, especially the IPS and IDS for intrusion detection and protection."
"The solution is robust as it covers everything we want to do and is stable, so we're happy enough with it. We have had no problems so far. Everything is great."
"The microsegmentation is great, and the security team thinks it is great."
"Their technical support is very good. They help us figure out solutions when we have problems."
 

Cons

"The integration could be better, especially with different types of solutions."
"There was a controversy when Cisco reduced the amount of data they kept, and the solution became quite cost-intensive, which made its adoption challenging….Although they have modified it now, I preferred the previous version, and I wish all the functionality were back under the same product."
"The interface is really helpful for technical people, but it is not user-friendly."
"I'd like to see better documentation for advanced features. The documentation is fairly basic. I would also like to see better integration with other applications."
"There's room for improvement when it comes to Cisco Secure Workload. A couple of internal areas could be refined a little bit. They are trying to solve it, depending on where you suppose the agent is. Suppose you have the agent on both the server and the client, which could be the front-end server or web server connecting to the. In that case, if those two are communicating on RPC, the server can look into its configuration. It could go down and find the configuration file on the FTP server and then set the policies to it. But there are a lot of different FTP servers out there. It's also a complex case for the tool to support all FTP servers."
"The emailed notifications are either hard to find or they are not available. Search capabilities can be improved."
"They should scale down the hardware a bit. The initial hardware investment is two million dollars so it's a price point problem. The issue with the price comes from the fact that you have to have it with enormous storage and enormous computes."
"It is highly scalable, but there is a limitation that it is only available on Cisco devices."
"We have done three installations and we have not had any critical issues. The time it took for the installation was approximately two days. However, they should provide better documentation."
"NSX could better integrate with open-source products. Of course, it integrates with some, but I know many people are uncomfortable deploying NSX with certain open-source solutions, such as Radar."
"The training costs a minimum of $3,000, which is expensive and should be reduced."
"We had some complexities implementing into the other parts of a network."
"I would like to have automating reporting built into common service management platforms, such as JIRA, Serviceaide, and ServiceNow."
"We've have had good and bad experiences with them. We don't always find them to be so impactful. Sometimes the support guy isn't so on top of resolving the issue and it can take a while to sort out."
"The tool's setup is complex and we need support to implement it."
"They have some limitations in the firewall features as compared to the on-prem or dedicated hardware appliance. They can add more features, such as IPS and IDS, to the cloud firewall."
 

Pricing and Cost Advice

"The cost for the hardware is around 300k."
"Regarding price, Cisco Secure Workload can be expensive if you don't have a budget. If you're not doing micro-segmentation, every extra security measure or enforcement you're putting on top of your existing environment will be an extra cost. It's not a cheap solution at all. But from my point of view, if you need to do micro-segmentation, this is one of the best tools I've seen for it. I can't compare that to Microsoft's solution because I haven't looked into it. I've looked into VMware and Cisco. Those are the only two that I know of. I didn't know that Microsoft could do micro-segmentation at all. Maybe they can, but I haven't heard anything about it."
"It is not cheap and pricing may limit scalability."
"The pricing is a bit higher than we anticipated."
"Pricing depends on the scope of the application and the features. Larger installations save more."
"The price is outrageous. If you have money to throw at the product, then do it."
"The price is based on how many computers you're going to install it on."
"The price of VMware NSX is reasonable."
"If five is a good price and one is a high price, I would rate the price a one out of five."
"The price is significantly high and it can be a hurdle for many potential users."
"The licensing is renewed every three years. The cost for implementation and renovation are a huge portion of that price."
"We are using a perpetual license to use the solution and we have support."
"Our customers have definitely complained about its cost. It's expensive. I'd rate it a nine out of ten in terms of pricing where ten represents a high price. There are other products out there that are equally expensive."
"VMware NSX is a cheaper product compared to its competitor, Cisco."
"This solution requires a licence."
report
Use our free recommendation engine to learn which Cloud and Data Center Security solutions are best for your needs.
869,095 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Computer Software Company
21%
Manufacturing Company
11%
Financial Services Firm
10%
Government
7%
Computer Software Company
15%
Financial Services Firm
12%
Government
9%
Manufacturing Company
8%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
By reviewers
Company SizeCount
Small Business5
Midsize Enterprise3
Large Enterprise8
By reviewers
Company SizeCount
Small Business33
Midsize Enterprise23
Large Enterprise69
 

Questions from the Community

What do you like most about Cisco Secure Workload?
The product provides multiple-device integration.
What is your experience regarding pricing and costs for Cisco Secure Workload?
CloudStrike offers antivirus capabilities and firewall features for servers and VDI but lacks automatic policy discovery. This raises questions about the resources required to discover and write po...
What needs improvement with Cisco Secure Workload?
We actively seek improvements in integrating the Infoblox DDI platform with Cisco Secure Workload. This integration allows Cisco Secure Workload to learn about our networks and network tags, provid...
What are the biggest differences between Cisco ACI and VMware NSX?
There are some very major differences between both the Products and to name a few. -Cisco ACI have physical network gear (9K Switches) where the Code runs in ACI Policy Mode & the UCS server wh...
What are the biggest differences between Cisco ACI and VMware NSX?
Once you know your way around the Cisco ecosystem, using Cisco ACI is not so difficult. It is a global product, so when you change one interface, changes are automatically reflected on every switch...
What do you like most about VMware NSX?
The product has valuable features for security and network extension.
 

Also Known As

Cisco Tetration
VMware Nicira, Lastline Defender
 

Overview

 

Sample Customers

ADP, University of North Carolina Charlotte (UNCC)
City of Avondale, Lumeta, Kroll Ontrack, Heartland Payment Systems, Baystate Heallth, Exostar, Tribune Media, iGATE, NTT Communications, Synergent, California Natural Resources Agency, Bloomington Public Schools, Columbia Sportswear, Join Experience S.A, Schuberg Philis
Find out what your peers are saying about Cisco Secure Workload vs. VMware NSX and other solutions. Updated: September 2025.
869,095 professionals have used our research since 2012.