Try our new research platform with insights from 80,000+ expert users

NetWitness Platform vs Symantec Advanced Threat Protection comparison

The compared NetWitness and Broadcom solutions aren't in the same category. NetWitness is ranked #34 in Log Management , with an average rating of 8.0, and holds a 0.4% mindshare in the category. Broadcom is ranked #19 in ATP , with an average rating of 8.5, and holds a 2.0% mindshare. Additionally, 75% of NetWitness users are willing to recommend the solution, compared to 91% of Broadcom users who would recommend it.
NetWitness Platform
Read 37 NetWitness Platform reviews
  • 1,537 Views
  • 738 Comparison Views
75% willing to recommend
Symantec Advanced Threat Pr...
Read 16 Symantec Advanced Threat Protection reviews
  • 536 Views
  • 418 Comparison Views
91% willing to recommend
 

Comparison Buyer's Guide

Download the report
Executive Summary
We performed a comparison between NetWitness Platform and Symantec Advanced Threat Protection based on real PeerSpot user reviews.

Find out in this report how the two Log Management solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI.

DOWNLOAD THE COMPLETE REPORT
To learn more, read our detailed NetWitness Platform vs. Symantec Advanced Threat Protection Report (Updated: September 2022).
Buyer's Guide
NetWitness Platform vs. Symantec Advanced Threat Protection
September 2022
Download the complete report
Helped 867,497 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Categories and Ranking

NetWitness Platform
Average Rating
7.4
Reviews Sentiment
7.4
Number of Reviews
37
Ranking in other categories
Log Management (34th), Security Information and Event Management (SIEM) (30th)
Symantec Advanced Threat Pr...
Average Rating
7.8
Reviews Sentiment
7.1
Number of Reviews
16
Ranking in other categories
Advanced Threat Protection (ATP) (19th)
 

Mindshare comparison

NetWitness Platform and Symantec Advanced Threat Protection aren’t in the same category and serve different purposes. NetWitness Platform is designed for Log Management and holds a mindshare of 0.4%, up 0.3% compared to last year.
Symantec Advanced Threat Protection, on the other hand, focuses on Advanced Threat Protection (ATP), holds 2.0% mindshare, down 2.1% since last year.
Log Management Market Share Distribution
ProductMarket Share (%)
NetWitness Platform0.4%
Wazuh12.6%
Grafana Loki8.1%
Other78.9%
Log Management
Advanced Threat Protection (ATP) Market Share Distribution
ProductMarket Share (%)
Symantec Advanced Threat Protection2.0%
Palo Alto Networks WildFire10.7%
Microsoft Defender for Endpoint8.9%
Other78.4%
Advanced Threat Protection (ATP)
 

Featured Reviews

MOTASHIM Al Razi - PeerSpot reviewer
It is a stable solution, but they should make the user interface easier to understand
The solution's initial setup takes work. We have to organize multiple paths and many features. The deployment process takes less than a week. But it takes a month to complete if we want to make the solution smarter by integrating it with various devices. I rate the process as a six out of ten.
Read full review
TapabrataSamanta - PeerSpot reviewer
Reliable platform with effective integration capabilities
Our primary use case for the product is to provide advanced threat protection to our clients, primarily in the banking and financial sectors Symantec ATP has been beneficial in ensuring robust security for our clients. Its effectiveness in detecting and mitigating threats has improved customer…
Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"Alerting Module: It provides real-time event processing language on all the logs/packets stream for advanced alerting, i.e., using SQL LIKE statements."
"The most valuable features are the threat prediction and network forensics."
"Performance and reporting are very good."
"The product's initial setup phase was not at all difficult."
"It's fully scalable. There is no limit. Of course, the license limits per day the number of terabytes. In my opinion, it's very flexible."
"In my opinion, the solution's most valuable feature is its capacity to monitor network traffic, logs from devices within the network, and network captures. This capability extends beyond logs to include full network capturing."
"The most valuable feature of RSA NetWitness Logs and Packets are the alerts and correlations tools."
"The software is scalable to whatever is required, and you can also put a lot of resources in the cloud."
More NetWitness Platform pros
"All of the solution's features are quite valuable for us. We especially like the threat protection it provides."
"Real-time threat analysis is quick and takes action on threats immediately."
"The incident management on the solution is very good. You get a lot of detailed information about an incident. You also get a lot of documentation in connection with the CVI or integration."
"The most valuable feature is Click-time URL protection."
"Technical support has been helpful and responsive."
"The product integrates well with our systems, and we have not encountered any problems."
"It has certainly helped out our audit efforts because we each stay compliant in terms of various security standards."
"The great advantage in using this product is it creates multiple services."
More Symantec Advanced Threat Protection pros
 

Cons

"The system looks like it is a mix of a bunch of different systems, and nothing looked like it was quite together."
"The documentation is not as structured as I would like, personally, and I think that it can be improved and made much more user-friendly."
"It should have a monitoring feature. It would help us analyze the current state of attacks faster from a single platform."
"RSA NetWitness Logs and Packets can improve the threat level aspect, it is lacking compared to other solutions. Whenever any hacking activity or any other threat factor occurred they used to provide the coverages very fast when comparing RSA NetWitness Logs and Packets. I heard the other three solutions, from a discussion with my team members who had experience in other solutions, they used to say that. Whenever any issues happened across the globe RSA NetWitness Logs and Packets are a little bit slow improving those detection mechanisms."
"Health monitoring of the event sources and devices."
"The user interface is a little bit difficult for new users and it needs to be improved."
"More customizability is required, which is something that they need to improve on."
"The implementation needs assistance."
More NetWitness Platform cons
"Not ideal for advanced threat protection."
"The administration interface needs a lot of improvement. It should be UI based, and simple. They need to improve it. It's pretty much not that friendly compared to what we were using as Bitdefender before. It's okay but is improving, actually."
"Entire threat protection is not available for the advanced features."
"One area for improvement could be the pricing model."
"It also needs network-based threat protection for shared folders and files."
"Scalability could be better."
"There are limits with respect to blocking files by hash value or blocking IP addresses, and these limits should be removed."
"The product's support services need improvement."
More Symantec Advanced Threat Protection cons
 

Pricing and Cost Advice

"We have a perpetual license, so the total cost of ownership is not very expensive. It's a good investment."
"The tool is very expensive, so I rate the pricing a ten out of ten. The solution has an annual subscription."
"The product is expensive."
"We have yearly licensing costs. The license fee can be based on the volume of EPS. Some organizations may have, as a gentlemanly gesture, 10,000 EPS and get a 3,000 EPS license but actually use 5,000 EPS."
"We are on an annual license for the use of the solution."
"Compared to the competition, the is price is not that high."
"The licenses are good but the cost is very expensive."
"It’s cheaper to run virtual machines in a VMware environment."
More NetWitness Platform pricing and cost advice
"The pricing of this solution is inexpensive and affordable."
"Symantec Endpoint Protection has an average price."
"Symantec Advanced Threat Protection's pricing is comparable."
"The price is quite expensive."
"Pricing is good. It is nice to have a great product at a fair price."
report
See which vendors are best for you
Use our free recommendation engine to learn which Log Management solutions are best for your needs.
See recommendations
867,497 professionals have used our research since 2012.
 

Comparison Review

VS
Feb 26, 2015
HP ArcSight vs. IBM QRadar vs. ​McAfee Nitro vs. Splunk vs. RSA Security vs. LogRhythm
We at Infosecnirvana.com have done several posts on SIEM. After the Dummies Guide on SIEM, we are following it up with a SIEM Product Comparison – 101 deck. So, here it is for your viewing pleasure. Let me know what you think by posting your comments below. The key products compared here are…
Read full review
 

Top Industries

By visitors reading reviews
Financial Services Firm
13%
Computer Software Company
12%
Performing Arts
7%
Manufacturing Company
6%
University
11%
Manufacturing Company
11%
Financial Services Firm
11%
Retailer
6%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
By reviewers
Company SizeCount
Small Business9
Midsize Enterprise7
Large Enterprise20
By reviewers
Company SizeCount
Small Business9
Midsize Enterprise3
Large Enterprise13
 

Questions from the Community

What do you like most about NetWitness Platform?
The product's initial setup phase was not at all difficult.
See all answers
What is your experience regarding pricing and costs for NetWitness Platform?
The pricing is comparable to others, and I consider the cost to be intermediate. Specific cost details are unknown to me.
See all answers
What needs improvement with NetWitness Platform?
There is currently no need for improvement in the SIEM ( /categories/security-information-and-event-management-siem ), though there could be potential enhancements by integrating with AI.
See all answers
What do you like most about Symantec Advanced Threat Protection?
Symantec Endpoint Protection provides end-to-end protection. Along with antivirus protection, it has a lot of key areas, including intrusive prevention, firewall features, and application and devic...
See all answers
What is your experience regarding pricing and costs for Symantec Advanced Threat Protection?
The price is quite expensive because a different entity has taken over the company.
See all answers
What needs improvement with Symantec Advanced Threat Protection?
One area for improvement could be the pricing model. Future releases could further enhance integration capabilities with other platforms and simplify the licensing model to compete more with Micros...
See all answers
 

Comparisons

IBM Security QRadar vs NetWitness Platform Logo
IBM Security QRadar vs NetWitness Platform
Compared 20% of the time
Splunk Enterprise Security vs NetWitness Platform Logo
Splunk Enterprise Security vs NetWitness Platform
Compared 20% of the time
Elastic Security vs NetWitness Platform Logo
Elastic Security vs NetWitness Platform
Compared 13% of the time
RSA enVision vs NetWitness Platform Logo
RSA enVision vs NetWitness Platform
Compared 10% of the time
USM Anywhere vs NetWitness Platform Logo
USM Anywhere vs NetWitness Platform
Compared 9% of the time
More NetWitness Platform Competitors
Palo Alto Networks WildFire vs Symantec Advanced Threat Protection Logo
Palo Alto Networks WildFire vs Symantec Advanced Threat Protection
Compared 37% of the time
Trellix Network Detection and Response vs Symantec Advanced Threat Protection Logo
Trellix Network Detection and Response vs Symantec Advanced Threat Protection
Compared 19% of the time
CyberArk Privileged Access Manager vs Symantec Advanced Threat Protection Logo
CyberArk Privileged Access Manager vs Symantec Advanced Threat Protection
Compared 17% of the time
Cisco Secure Network Analytics vs Symantec Advanced Threat Protection Logo
Cisco Secure Network Analytics vs Symantec Advanced Threat Protection
Compared 13% of the time
Check Point SandBlast Network vs Symantec Advanced Threat Protection Logo
Check Point SandBlast Network vs Symantec Advanced Threat Protection
Compared 13% of the time
More Symantec Advanced Threat Protection Competitors
 

Product Reports

Buyer's Guide
NetWitness Platform
August 2025
NetWitness Platform reportDownload NetWitness Platform product report
Buyer's Guide
Symantec Advanced Threat Protection
August 2025
Symantec Advanced Threat Protection reportDownload Symantec Advanced Threat Protection product report
 

Also Known As

RSA Security Analytics
No data available
 

Overview

NetWitness Platform is an evolved SIEM and threat detection and response solution that functions as a single, unified platform for ALL your security data. It features an advanced analyst workbench for triaging alerts and incidents, and it orchestrates security operations programs end to end. In short: NetWitness Platform is all you need to run an intelligent SOC.

NetWitness

Symantec Advanced Threat Protection is a single unified solution that uncovers, prioritizes, and remediates advanced attacks. The product fuses intelligence from endpoint, network, and email control points, as well as Symantec’s massive global sensor network, to stop threats that evade individual security products. It leverages your existing Symantec Endpoint Protection and Symantec Email Security.cloud investments, so it does not require the deployment of any new agents. You can deploy a new installation of Symantec Advanced Threat Protection and start to discover suspicious activity in under an hour. Using the proven technology in Symantec Insight reputation based detection, Symantec SONAR behavioral analysis with the new Symantec Cynic sandbox and file analysis platform, Symantec Advanced Threat Protection provides better detection and prioritization than other vendors, allowing security analysts to “zero in” on just those specific security events of importance.

Broadcom
 

Sample Customers

Los Angeles World Airports, Reply
ECI
Buyer's Guide
NetWitness Platform vs. Symantec Advanced Threat Protection
September 2022
Free Report: NetWitness Platform vs. Symantec Advanced Threat Protection
Find out what your peers are saying about NetWitness Platform vs. Symantec Advanced Threat Protection and other solutions. Updated: September 2022.
DOWNLOAD NOW
867,497 professionals have used our research since 2012.
See our NetWitness Platform vs. Symantec Advanced Threat Protection report.

We monitor all Log Management reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.