Try our new research platform with insights from 80,000+ expert users

NetWitness Platform vs Palo Alto Networks WildFire comparison

 

Comparison Buyer's Guide

Executive Summary

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Categories and Ranking

NetWitness Platform
Average Rating
7.4
Reviews Sentiment
7.4
Number of Reviews
37
Ranking in other categories
Log Management (37th), Security Information and Event Management (SIEM) (29th)
Palo Alto Networks WildFire
Average Rating
8.4
Reviews Sentiment
7.3
Number of Reviews
69
Ranking in other categories
Advanced Threat Protection (ATP) (1st)
 

Mindshare comparison

NetWitness Platform and Palo Alto Networks WildFire aren’t in the same category and serve different purposes. NetWitness Platform is designed for Log Management and holds a mindshare of 0.3%, down 0.4% compared to last year.
Palo Alto Networks WildFire, on the other hand, focuses on Advanced Threat Protection (ATP), holds 11.6% mindshare, down 12.4% since last year.
Log Management
Advanced Threat Protection (ATP)
 

Featured Reviews

MOTASHIM Al Razi - PeerSpot reviewer
It is a stable solution, but they should make the user interface easier to understand
The solution's initial setup takes work. We have to organize multiple paths and many features. The deployment process takes less than a week. But it takes a month to complete if we want to make the solution smarter by integrating it with various devices. I rate the process as a six out of ten.
AjayKumar17 - PeerSpot reviewer
Enhanced cybersecurity with advanced sandboxing and effective in controlling DNS issues
Improvements are needed in the UI part. The dashboard should provide better visibility, especially in showing how many files are sent to Wildfire and their findings. This information should be integrated with the Dashboard so that system admins can see what is happening. Furthermore, technical support needs a lot of improvement, particularly in terms of responsiveness and adhering to service level agreements.

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"Their technical support responds quickly and are knowledgable."
"The most valuable features are its ingestion of logs and raising of alerts based on those logs."
"The software is scalable to whatever is required, and you can also put a lot of resources in the cloud."
"Setting up NetWitness is straightforward. There are multiple connectors, including standard and specialized connectors. One purpose of the connectors is the enhanced capability integrate the custom applications. NetWitness comes with E6 appliances and application images that we use for the initial configurations and for the OS stack information. From there, you can consider the correlation rules, integrate the different log sources, and easily create correlation rules and backlog reports."
"The most valuable feature is the correlation. It can report in real-time and monitor the management."
"The most valuable feature of RSA NetWitness Logs and Packets are the alerts and correlations tools."
"The newer 11.5 version that my team is using has found it to have good mapping."
"The most valuable features are the integration and ease of use."
"The most valuable features are all of the security features in terms of protection and SSL and VPN."
"It is stable and pretty much scalable."
"Being an application-based firewall, this is one of the critical focus factors along with the threat prevention services it provides."
"The most effective feature of WildFire for threat analysis is its collaboration with other security profiles on our Palo Alto firewall."
"The most valuable features of this solution are sandbox capabilities."
"The graphic user interface of Palo Alto is good and it's easy to configure."
"The scalability is acceptable."
"I have files tickets and their support was great. I was able to solve the problems of my customers."
 

Cons

"We have encountered issues with unresolved crashes."
"The initial setup was complex because it takes a lot of time to complete the implementation."
"There are instances where you try to run the reports and then it does not give you the desired outcome."
"The initial setup is very complex and should be simplified."
"The solution should have more integration capabilities with different platforms."
"More customizability is required, which is something that they need to improve on."
"The tool's integration capability isn't so great."
"The implementation needs assistance."
"It's not really their problem, it's a problem across the board. There will always be problems with interrupted traffic. We have to set it up where we're playing a middle man game where we're stripping it out, looking at it, and then putting it back together and sending it on its way. That requires CPU cycles. And there's some overhead with that."
"The price could be better."
"Palo Alto doesn't do much to support the on-premise version. It wants too much self-support for the on-premise version of WildFire."
"There are some formats that the solution cannot support ."
"They can keep on doing more updates. As new malware and viruses are coming out, they can make sure that WildFire is up to date."
"Improvements are needed in the UI part."
"I would like to see them continue on their developmental roadmap for the product."
"I don't think it needs to improve anything, except maybe the speed to deploy the changes."
 

Pricing and Cost Advice

"Compared to the competition, the is price is not that high."
"We are on an annual license for the use of the solution."
"The new pricing and licensing mechanisms are fair. I would advise always to get the full solution (i.e., not only Logs)."
"We have a perpetual license, so the total cost of ownership is not very expensive. It's a good investment."
"Our license is for one year."
"In comparison to other SIEM solutions such as Splunk, NetWitness is less costly."
"The tool is very expensive, so I rate the pricing a ten out of ten. The solution has an annual subscription."
"Many clients are not able to purchase the packet capability because there is a huge amount of data, and the cost depends on the number of EPS (Events per second), as well as the number of gigabytes of data per day."
"It IS a bit expensive, but I think you get what you pay for. Value is there."
"WildFire is a little bit pricey. Sometimes it's difficult to sell it to customers at the current price."
"Palo Alto Networks WildFire is an expensive product."
"For the last three years, the price of Palo Alto in Vietnam has been very high."
"The pricing and licensing option should be categorized for various countries such as for Bangladesh."
"Palo Alto Networks WildFire is quite expensive, and this is what puts people off."
"The physical appliance is around €3,000 or €4,000, and then, you have the licensing for a year for around €3,000."
"The solution is a bit expensive."
report
Use our free recommendation engine to learn which Log Management solutions are best for your needs.
860,825 professionals have used our research since 2012.
 

Comparison Review

VS
Feb 26, 2015
HP ArcSight vs. IBM QRadar vs. ​McAfee Nitro vs. Splunk vs. RSA Security vs. LogRhythm
We at Infosecnirvana.com have done several posts on SIEM. After the Dummies Guide on SIEM, we are following it up with a SIEM Product Comparison – 101 deck. So, here it is for your viewing pleasure. Let me know what you think by posting your comments below. The key products compared here are…
 

Top Industries

By visitors reading reviews
Financial Services Firm
17%
Computer Software Company
17%
Manufacturing Company
5%
Government
5%
Computer Software Company
15%
Financial Services Firm
10%
Manufacturing Company
9%
Government
8%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
 

Questions from the Community

What do you like most about NetWitness Platform?
The product's initial setup phase was not at all difficult.
What is your experience regarding pricing and costs for NetWitness Platform?
The pricing is comparable to others, and I consider the cost to be intermediate. Specific cost details are unknown to me.
What needs improvement with NetWitness Platform?
There is currently no need for improvement in the SIEM ( /categories/security-information-and-event-management-siem ), though there could be potential enhancements by integrating with AI.
How does Cisco Firepower NGFW Firewall compare with Palo Alto Networks Wildfire?
The Cisco Firepower NGFW Firewall is a very powerful and very complex piece of anti-viral software. When one considers that fact, it is all the more impressive that the setup is a fairly straightf...
Which is better - Wildfire or FortiGate?
FortiGate has a lot going for it and I consider it to be the best, most user-friendly firewall out there. What I like the most about it is that it has an attractive web dashboard with very easy nav...
How does Cisco ASA Firewall compare with Palo Alto's WildFire?
When looking to change our ASA Firewall, we looked into Palo Alto’s WildFire. It works especially in preventing advanced malware and zero-day exploits with real-time intelligence. The sandbox featu...
 

Also Known As

RSA Security Analytics
No data available
 

Overview

 

Sample Customers

Los Angeles World Airports, Reply
Novamedia, Nexon Asia Pacific, Lenovo, Samsonite, IOOF, Sinogrid, SanDisk Corporation
Find out what your peers are saying about NetWitness Platform vs. Palo Alto Networks WildFire and other solutions. Updated: September 2022.
860,825 professionals have used our research since 2012.