We performed a comparison between Elastic Observability and NetWitness Platform based on real PeerSpot user reviews.
Find out in this report how the two Log Management solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI."We use AppDynamics and Elastic. The reason why we're using Elastic APM is because of the license count. It's very favorable compared to AppDynamics. It's inexpensive; it's economical."
"The tool's most valuable feature is centralized logging. Elastic Common Search helps us to search for the logs across the organization."
"We can view and connect different sources to the dashboard using it."
"The architecture and system's stability are simple."
"The ability to ensure that the data is searchable and maintainable is highly valuable for our purposes."
"The most valuable feature of Elastic Observability is the text search."
"It's easy to deploy, and it's very flexible."
"I have built a mini business intelligence system based on Elastic Observability."
"The development of use cases on the SSA console is quite user friendly. This means that the security analyst or the researcher does not have to learn another language."
"Performance and reporting are very good."
"The product's initial setup phase was not at all difficult."
"The most valuable feature is the security that it provides."
"The most valuable features are the packet decoder, log decoder, and concentrator."
"The newer 11.5 version that my team is using has found it to have good mapping."
"The software is scalable to whatever is required, and you can also put a lot of resources in the cloud."
"The most valuable feature is that we can create our own connectors for any application, and NetWitness provides the training and tools to do it."
"The tool's scalability involves a more complex implementation process. It requires careful calculations to determine the number of nodes needed, the specifications of each node, and the configuration of hot, warm, and cold zones for data storage. Additionally, managing log retention policies adds further complexity. The solution's pricing also needs to be cheaper."
"In the future, Elastic APM needs a portfolio iTool. They can provide an easy way to develop the custom UI for Kibana."
"The price is the only issue in the solution. It can be made better and cheaper."
"Elastic APM's visualization is not that great compared to other tools. It's number of metrics is very low."
"Elastic Observability needs to have better standardization, logging, and schema."
"Elastic Observability is an excellent product for monitoring and visibility, but it lacks predictive analytics. Most solutions are aligned with the AIOps requirements, but this piece is missing in Elastic and should be included."
"Elastic Observability needs to improve the retrieval of logs and metrics from all the instances."
"There is room for improvement regarding its APM capabilities."
"I believe that integrating the solution with other products such as Oracle would be beneficial."
"They should implement algorithms to digest that data and produce additional, more advanced reporting, alerting and support of internal security teams."
"RSA NetWitness Logs and Packets can improve the threat level aspect, it is lacking compared to other solutions. Whenever any hacking activity or any other threat factor occurred they used to provide the coverages very fast when comparing RSA NetWitness Logs and Packets. I heard the other three solutions, from a discussion with my team members who had experience in other solutions, they used to say that. Whenever any issues happened across the globe RSA NetWitness Logs and Packets are a little bit slow improving those detection mechanisms."
"The system looks like it is a mix of a bunch of different systems, and nothing looked like it was quite together."
"The initial setup is complex. There are other solutions that are easier to implement."
"The solution should have more integration capabilities with different platforms."
"Security needs improvement."
"I'd like to see improvement in its ease of use. It's basically unusable. It's overly complex."
Elastic Observability is ranked 14th in Log Management with 22 reviews while NetWitness Platform is ranked 19th in Log Management with 36 reviews. Elastic Observability is rated 7.8, while NetWitness Platform is rated 7.4. The top reviewer of Elastic Observability writes "The user interface framework lets us do custom development when needed. ". On the other hand, the top reviewer of NetWitness Platform writes "Can find out if there is lateral movement, but integration and workflow need improvement". Elastic Observability is most compared with Dynatrace, New Relic, AppDynamics, Azure Monitor and Datadog, whereas NetWitness Platform is most compared with Splunk Enterprise Security, RSA enVision, IBM Security QRadar, Cisco Secure Network Analytics and Microsoft Sentinel. See our Elastic Observability vs. NetWitness Platform report.
See our list of best Log Management vendors.
We monitor all Log Management reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.
