CrowdStrike Observability vs NetWitness Platform comparison

"The intelligence database provided by CrowdStrike is very impressive."

"The price is worth it."

"The intelligence database provided by CrowdStrike is very impressive."

"The log aggregation and correlation of data are notable features that enhance our operations."

"I find the most effective feature of CrowdStrike Observability to be its cloud vision and attack surface vision, which enhance network traffic analysis."

"The newer 11.5 version that my team is using has found it to have good mapping."

"The most valuable features are the integration and ease of use."

"Performance and reporting are very good."

"It's quite economical compared to other solutions in the market."

"NetWitness can be highly beneficial for incident detection and response."

"The product's initial setup phase was not at all difficult."

"The product has a user-friendly interface and a valuable feature for threat intelligence integration."

"NetWitness Platform is valuable for creating rules that the solution must detect."

"For reporting or log management, having a longer duration for backup without needing to purchase a paid subscription would be beneficial."

"Integration with Huawei should be more straightforward."

"For reporting or log management, having a longer duration for backup without needing to purchase a paid subscription would be beneficial. Currently, there is a default ninety-day backup period."

"Integration with Huawei should be more straightforward."

"The customer service is not satisfactory for me. The support is only available in English, and my users in LATAM regions such as Peru and Colombia require local language support, which is not currently provided."

"The user interface is a little bit difficult for new users and it needs to be improved."

"The system looks like it is a mix of a bunch of different systems, and nothing looked like it was quite together."

"An area for improvement would be better automation and more inbuilt use cases."

"They should implement algorithms to digest that data and produce additional, more advanced reporting, alerting and support of internal security teams."

"The documentation is not as structured as I would like, personally, and I think that it can be improved and made much more user-friendly."

"RSA NetWitness Logs and Packets can improve the threat level aspect, it is lacking compared to other solutions. Whenever any hacking activity or any other threat factor occurred they used to provide the coverages very fast when comparing RSA NetWitness Logs and Packets. I heard the other three solutions, from a discussion with my team members who had experience in other solutions, they used to say that. Whenever any issues happened across the globe RSA NetWitness Logs and Packets are a little bit slow improving those detection mechanisms."

"The tool's integration capability isn't so great."

"Nowadays, their support is a little subpar compared to other solutions. I rate RSA support six out of 10."

"We are on an annual license for the use of the solution."

"The new pricing and licensing mechanisms are fair. I would advise always to get the full solution (i.e., not only Logs)."

"There is a licensing fee and the customer can choose whether he wishes this to be subscription-based or perpetual."

"RSA NetWitness Logs and Packets do not have a subscription model, it's a one-time purchase. There is only a perpetual license."

"In comparison to other SIEM solutions such as Splunk, NetWitness is less costly."

"It’s cheaper to run virtual machines in a VMware environment."

"Many clients are not able to purchase the packet capability because there is a huge amount of data, and the cost depends on the number of EPS (Events per second), as well as the number of gigabytes of data per day."

"We have yearly licensing costs. The license fee can be based on the volume of EPS. Some organizations may have, as a gentlemanly gesture, 10,000 EPS and get a 3,000 EPS license but actually use 5,000 EPS."