Try our new research platform with insights from 80,000+ expert users

Cisco Secure Workload vs VMware NSX comparison

 

Comparison Buyer's Guide

Executive SummaryUpdated on Apr 20, 2025

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Categories and Ranking

Cisco Secure Workload
Ranking in Cloud and Data Center Security
8th
Ranking in Microsegmentation Software
4th
Average Rating
8.6
Reviews Sentiment
7.7
Number of Reviews
15
Ranking in other categories
Cloud Workload Protection Platforms (CWPP) (13th), Cisco Security Portfolio (9th)
VMware NSX
Ranking in Cloud and Data Center Security
2nd
Ranking in Microsegmentation Software
1st
Average Rating
8.0
Reviews Sentiment
6.8
Number of Reviews
105
Ranking in other categories
Network Virtualization (2nd), Network Traffic Analysis (NTA) (8th), Network Detection and Response (NDR) (7th), Network Automation (5th)
 

Mindshare comparison

As of July 2025, in the Cloud and Data Center Security category, the mindshare of Cisco Secure Workload is 13.8%, up from 12.4% compared to the previous year. The mindshare of VMware NSX is 12.4%, down from 19.1% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Cloud and Data Center Security
 

Featured Reviews

Raj Metkar - PeerSpot reviewer
Discover internal application dependencies and create a dependency map
We actively seek improvements in integrating the Infoblox DDI platform with Cisco Secure Workload. This integration allows Cisco Secure Workload to learn about our networks and network tags, providing valuable insights into vulnerabilities related to the operating system and various applications installed on our servers. Recently, Cisco announced a new product called HyperShield, an AI-based autonomous micro-segmentation solution. While Cisco has not stated that HyperShield will replace Cisco Secure Workload, it represents a natural evolution for the company. HyperShield features dynamic policy discovery and enforcement; however, once policies are enforced, they do not change until a discovery occurs, requiring a re-enforcement process. This new platform operates autonomously, minimizing the need for user or security engineer intervention. I would have expected Cisco to incorporate more automatic discovery and enforcement features within the existing Cisco Secure Workload product. Instead of enhancing the current product, they have introduced a new solution. Cisco plans to honor existing Tetration licenses, allowing users to transition to HyperShield without additional costs, reflecting the investment enterprises have already made. From Cisco’s perspective, this represents a natural progression in their product line. While the product name changes, it seems more of a rebranding effort. The enhancements are greater autonomy, improved discovery, and automatic enforcement, which are now being introduced in HyperShield. Cisco Secure Workload offers automatic policy enforcement but cannot adjust policies dynamically as the application needs to change. Having used the platform for the past five years, the recent announcement has been reassuring. Cisco has confirmed that our investment in the platform will not go to waste. They will honor our existing licenses, providing a natural migration path to the new solution without any disruption
MagdyRaafat - PeerSpot reviewer
Enhanced security and streamlined management drive efficient connectivity
Open source is a standard solution where you take a gray box or white box and put the software from your end. You can do programming with Ansible and make the network work in the software-defined mode, providing automation and management capabilities. I am currently working with VMware. It integrates easily with everything and can work with any system. When discussing micro-segmentation, it enhances security, providing more secure data in your data center while allowing for extra layers of security outside your data center. If you have an ACI, there is communication between locations, keeping your data secure in your data center and throughout the path it takes, such as to SD-WAN or the cloud. I work with cloud solutions including AWS, Azure, GCP, and private cloud. My overall rating for VMware NSX is 8.5 out of 10.

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"The most valuable feature is micro-segmentation, which is the most important with respect to visibility."
"The most valuable feature of the solution is that we don't have to do packet captures on the network."
"The solution offers 100% telemetry coverage. The telemetry you collect is not sampled, it's not intermittent. It's complete. You see everything in it, including full visibility of all activities on your endpoints and in your network."
"Scalability is its most valuable feature."
"A complete and powerful micro-segmentation solution."
"The only use case I can see that makes sense is micro-segmentation. I think there are other use cases for it. The main purpose of the product is to do micro-segmentation by collecting IP. That could be done by installing an agent, and then you have all the communication coming in and out. You could also use some flow sensors installed in the network that receive a copy of the traffic and then report that back to the system."
"The product offers great visibility into the network so we can enforce security measures."
"It's stable."
"The microsegmentation is a good feature. You can segment details, products, or hardware information."
"The most valuable features are ease of use and user interface."
"I am impressed with the tool's protection."
"To be able to do the DR and SRM migrations from datacenter to datacenter, we're able to do them with SRM with VXLAN, with the NSX product."
"Overall, I would say the solution has been quite stable."
"NSX gives us the ability to put our network, NSX, onto any network there is, which allows us not to have to go to the network team to create networks our VLANs for networks."
"The Distributed firewall is simple to add to the network and rules are easy to implement."
"NSX helps us by making IT management and operations more efficient. When VMs spin off from the DC to the DR site, all required settings on the network level are handled automatically."
 

Cons

"The integration could be better, especially with different types of solutions."
"It is not so easy to use and configure. It needs a bunch of further resources to work, which is mainly the biggest downside of it. The deployment is huge."
"There's room for improvement when it comes to Cisco Secure Workload. A couple of internal areas could be refined a little bit. They are trying to solve it, depending on where you suppose the agent is. Suppose you have the agent on both the server and the client, which could be the front-end server or web server connecting to the. In that case, if those two are communicating on RPC, the server can look into its configuration. It could go down and find the configuration file on the FTP server and then set the policies to it. But there are a lot of different FTP servers out there. It's also a complex case for the tool to support all FTP servers."
"I'd like to see better documentation for advanced features. The documentation is fairly basic. I would also like to see better integration with other applications."
"It has an uninviting interface."
"Secure Workload is a little complicated to use, and the dashboard isn't intuitive, so it takes a while to learn how to use it."
"It is highly scalable, but there is a limitation that it is only available on Cisco devices."
"They should scale down the hardware a bit. The initial hardware investment is two million dollars so it's a price point problem. The issue with the price comes from the fact that you have to have it with enormous storage and enormous computes."
"They have to work more and more on the integration for public cloud services and have cyber security platform integration."
"It takes time to do the initial setup. It is a bit slow, which is surprising."
"Its licensing model could be VM based."
"If there are other solutions already in place, it can be difficult to implement."
"Traffic flow introspection topology visibility is definitely needed because at the moment, NSX-T lacks in this area."
"We would like better integration with the standards on the market. For example, with OSPF, their integration in NSX is very low. It's not a full OSPF integration. It is too thin from a protocol perspective."
"It needs to be cheaper."
"The solution can improve by making it more straightforward, easier to install and maintain in the environment."
 

Pricing and Cost Advice

"The pricing is a bit higher than we anticipated."
"Pricing depends on the scope of the application and the features. Larger installations save more."
"It is not cheap and pricing may limit scalability."
"The price is outrageous. If you have money to throw at the product, then do it."
"Regarding price, Cisco Secure Workload can be expensive if you don't have a budget. If you're not doing micro-segmentation, every extra security measure or enforcement you're putting on top of your existing environment will be an extra cost. It's not a cheap solution at all. But from my point of view, if you need to do micro-segmentation, this is one of the best tools I've seen for it. I can't compare that to Microsoft's solution because I haven't looked into it. I've looked into VMware and Cisco. Those are the only two that I know of. I didn't know that Microsoft could do micro-segmentation at all. Maybe they can, but I haven't heard anything about it."
"The cost for the hardware is around 300k."
"The price is based on how many computers you're going to install it on."
"We have saved man-hours and decreased our security exposure."
"We haven't had to hire a dedicated network engineer because NSX handles 90 percent of it. The reduced overhead in terms of managing networks has been the biggest plus."
"The subscription is on a yearly basis."
"The price of VMware NSX is optimal. Additionally, the price of the solution can be negotiated with the vendor. Many areas of the solution can impact the cost, such as features, time for onboarding, and support needed."
"The licensing fees are expensive and we pay on a yearly basis."
"There is a license required for this solution, we pay annually."
"The licensing is renewed every three years. The cost for implementation and renovation are a huge portion of that price."
"Pricing and licensing could be improved as we are a government entity. Lower pricing could always help."
report
Use our free recommendation engine to learn which Cloud and Data Center Security solutions are best for your needs.
860,711 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Computer Software Company
24%
Manufacturing Company
10%
Financial Services Firm
9%
Government
7%
Computer Software Company
16%
Financial Services Firm
13%
Government
9%
Manufacturing Company
9%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
 

Questions from the Community

What do you like most about Cisco Secure Workload?
The product provides multiple-device integration.
What is your experience regarding pricing and costs for Cisco Secure Workload?
CloudStrike offers antivirus capabilities and firewall features for servers and VDI but lacks automatic policy discovery. This raises questions about the resources required to discover and write po...
What needs improvement with Cisco Secure Workload?
We actively seek improvements in integrating the Infoblox DDI platform with Cisco Secure Workload. This integration allows Cisco Secure Workload to learn about our networks and network tags, provid...
What are the biggest differences between Cisco ACI and VMware NSX?
There are some very major differences between both the Products and to name a few. -Cisco ACI have physical network gear (9K Switches) where the Code runs in ACI Policy Mode & the UCS server wh...
What are the biggest differences between Cisco ACI and VMware NSX?
Once you know your way around the Cisco ecosystem, using Cisco ACI is not so difficult. It is a global product, so when you change one interface, changes are automatically reflected on every switch...
What do you like most about VMware NSX?
The product has valuable features for security and network extension.
 

Also Known As

Cisco Tetration
VMware Nicira, Lastline Defender
 

Overview

 

Sample Customers

ADP, University of North Carolina Charlotte (UNCC)
City of Avondale, Lumeta, Kroll Ontrack, Heartland Payment Systems, Baystate Heallth, Exostar, Tribune Media, iGATE, NTT Communications, Synergent, California Natural Resources Agency, Bloomington Public Schools, Columbia Sportswear, Join Experience S.A, Schuberg Philis
Find out what your peers are saying about Cisco Secure Workload vs. VMware NSX and other solutions. Updated: May 2025.
860,711 professionals have used our research since 2012.