Try our new research platform with insights from 80,000+ expert users

SUSE NeuVector vs Sysdig Secure comparison

SUSE and Sysdig are both solutions in the Container Security category. SUSE is ranked #18 with an average rating of 8.0, while Sysdig is ranked #12 with an average rating of 8.2. SUSE holds a 2.5% mindshare in Container Security, compared to Sysdig’s 2.7% mindshare. Additionally, 87% of SUSE users are willing to recommend the solution, compared to 100% of Sysdig users who would recommend it.
SUSE NeuVector
Read 8 SUSE NeuVector reviews
  • 3,046 Views
  • 2,863 Comparison Views
87% willing to recommend
Sysdig Secure
Read 10 Sysdig Secure reviews
  • 2,950 Views
  • 2,655 Comparison Views
100% willing to recommend
 

Comparison Buyer's Guide

Download the report
Executive SummaryUpdated on Sep 16, 2024

Sysdig Secure and SUSE NeuVector operate in the advanced security platform category. Users believe SUSE NeuVector holds the upper hand due to its comprehensive features and value-driven pricing.

Features: Sysdig Secure offers comprehensive monitoring, deep visibility into container environments, and Kubernetes insights. SUSE NeuVector provides robust runtime security, extensive policy enforcement, and strong feature sets.

Room for Improvement: Sysdig Secure needs better documentation, improved alerting features, and enhanced user support. SUSE NeuVector could improve scalability, tool integration, and customer support efficiency.

Ease of Deployment and Customer Service: Sysdig Secure is straightforward to deploy and has responsive customer support. SUSE NeuVector also has a good deployment experience but has mixed feedback on customer service.

Pricing and ROI: Sysdig Secure has a reasonable initial setup cost but mixed ROI. SUSE NeuVector has higher pricing but delivers strong ROI due to its robust features.

DOWNLOAD THE COMPLETE REPORT
To learn more, read our detailed SUSE NeuVector vs. Sysdig Secure Report (Updated: June 2025).
Buyer's Guide
SUSE NeuVector vs. Sysdig Secure
June 2025
Download the complete report
Helped 861,803 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Categories and Ranking

SUSE NeuVector
Ranking in Container Security
18th
Average Rating
7.8
Reviews Sentiment
7.3
Number of Reviews
8
Ranking in other categories
Cloud Workload Protection Platforms (CWPP) (19th)
Sysdig Secure
Ranking in Container Security
12th
Average Rating
8.2
Reviews Sentiment
7.5
Number of Reviews
10
Ranking in other categories
Cloud Security Posture Management (CSPM) (18th), Cloud-Native Application Protection Platforms (CNAPP) (12th), Cloud Detection and Response (CDR) (4th)
 

Mindshare comparison

As of July 2025, in the Container Security category, the mindshare of SUSE NeuVector is 2.5%, down from 3.2% compared to the previous year. The mindshare of Sysdig Secure is 2.7%, up from 2.4% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Container Security
 

Featured Reviews

Danie Joubert - PeerSpot reviewer
Good value for money; great for policy management
Our model of deployment for this solution is on-premises. For people looking into this solution and trying to use it for the first time, I'd say make your life easier by using the SUSE product as well on top of your community scale stack. That makes your integration points a lot easier and smoother. I would also say during your initial setup, make sure that your clusters are already in terms of the capabilities with the version required. I would rate this solution an eight, on a scale from one to 10, with one being the worst and 10 being the best. The reason for this rating is that what they offer is solid, but they could expand their service and add more features just to make more things integrated into an enterprise itself.
Read full review
Peter Du - PeerSpot reviewer
Gives real-time visibility and helps to articulate constantly-changing landscape
The main benefit for me personally is being able to articulate the ever-growing, dynamic, and constantly changing landscape. Just today, in a management leadership call, I was able to demonstrate that although we are solving a lot of these vulnerabilities, we are picking up new vulnerabilities each and every day. It allows me to articulate the importance of information security with actual real-time data. Sysdig's runtime insights help us detect and respond to threats that are happening in real-time. We can look at Sysdig dashboards or run reports to see precisely what happens in our runtime environment. A good use case of this was that when zero-day vulnerabilities came out, we could scan our environment to see if the vulnerabilities apply to any of our production workloads. Sysdig Secure helps us prioritize issues and distribute work. We are a small company, so we do not have multiple security or dev teams. We have two or three guys on my team. Having the ability to focus on critical vulnerabilities is crucial. It does not make sense to prioritize low-level threats when we have limited time. We do not use live threat investigation features as much as we would like because of different priorities, but it is something that we do use. Over time, it shows us whether we are putting the right effort into resolving issues. For example, when we look at the dashboard scene over a 30-day period, we can see whether the critical vulnerabilities are increasing or decreasing. It lets us know whether we are on the right track. We are currently using agentless scanning. Deploying it onto our cluster has enabled us to get full visibility into what is running on our cluster. Sysdig provides us with the contextual awareness we need to create an immediate incident response strategy. It provides links to the threat and explains the threat and the resolution possible. It equips us with the right information to make a decision on whether to address the threat immediately or take a risk in terms of deploying remediation. Sysdig has not enabled us to reduce the number of security tools we use. We were not using anything before Sysdig, and after choosing Sysdig, we did not have a need to look at anything else. Sysdig has not helped reduce external SOC costs. We are a very small business, so we do not have the budget for an external SOC. However, it has definitely alleviated the pressure to look for one and to source an external SOC. We have a project history to look at a virtual SOC and leverage tools that we do have, and Sysdig is a part of that. There is definitely a saving there because we have not had the need to go out and look for an external SOC. Sysdig has helped reduce the percentage of workloads that have security exposures that put the organization at risk. It has reduced the workload, mainly from an understanding of where we can assign work to cover the most ground in terms of resolving vulnerabilities.
Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"The solution includes many features, not only for container and client security but also for scanning nodes, networks, and vulnerabilities."
"The most valuable feature of SUSE NeuVector is its run-time security."
"The most valuable feature of SUSE NeuVector is the performance, deployment, and cost."
"When it comes to the price, we got a really good deal from the vendor instantly."
"The tool's deployment is simple. Also, I am impressed with its risk capabilities."
"The features of image scanning and anti-malware are really valuable."
"The initial setup is quite good, it's straightforward."
"The solution includes many features, not only for container and client security but also for scanning nodes, networks, and vulnerabilities."
More SUSE NeuVector pros
"From a container-based standpoint, it offers excellent scalability to its users...I would tell those planning to use the solution that, from a container standpoint, it's excellent."
"The tool has the capability to conduct scans initially. It can perform scans on your virtual machines, physical machines, containers, and container images. A standout feature is its ability to scan offline container images stored in your container registry. Additionally, it can scan runtime images in your cluster or on your host machine. This allows for the detection of vulnerabilities in running containers, including loaded libraries. Notably, the tool can identify which library vulnerabilities are already present in your system. An added advantage is its capacity to take action beyond threat detection. It has the ability to block access and respond to encountered threats."
"Sysdig Secure has many strong foundational features like compliance and benchmark, security, network access management, and vulnerability management."
"The proactiveness of the support has been fantastic. Every time we mention something in a meeting that we're trying to do, he proactively takes that as an investigation topic and looks into it. He'll provide the solution even though we might not have asked him to investigate it."
"The most valuable feature is the level of support that we get. Our solutions or customer success representative is very valuable. I see them as an extension of our security team."
"We appreciate this feature, especially when combined with CD monitoring. The implementation of requested features has been remarkable, such as scanning for compliance in CRM processes for the US government. We heavily rely on this feature to assess compliance with federal requirements."
"The log monitor is the most valuable feature."
"I see Sysdig as the most comprehensive solution in comparison to its competitors."
More Sysdig Secure pros
 

Cons

"SUSE NeuVector should provide more security protection rules and better container image scanning."
"The tool should offer seamless integration of other security tools while in a hybrid environment."
"SUSE NeuVector could improve by increasing its visibility into other elements of the DevSecOps pipeline. Additionally, scanning around infrastructure would be helpful."
"The image-scanning features need improvement."
"We are also working with IaaS VMS, but NeuVector doesn't support virtual machines."
"The documentation needs to improve a bit."
"Using a node port instead of a cluster IP is less ideal when implementing federation features between two clusters and could be improved."
"I would say that this solution should improve monitoring and reporting. I would also like to see more integrations so that we could essentially make it a part of a developing pipeline."
More SUSE NeuVector cons
"Sysdig's biggest weakness is dashboarding and reporting. You have access to the data and can get everything you need, but we need the ability to summarize the information quickly in a format that senior leaders can understand. We report to the executive level and global board. I need to roll all that in-depth information into a quick summary, and their maturity level isn't there. I'm seeing that on the future road map, but it isn't there now."
"Perhaps, it could support more custom implementations, as our company utilizes custom implementations rather than standard ones. Configuring it requires a deep understanding and adjustment to our specific needs, which took some time. Other than that, I'm unsure about potential improvements. We were considering the possibility of compartmentalizing their tools. Currently, in Sysdig Secure, they bundle multiple features, and we are unable to use them individually. For instance, if we only need compliance scanning, we have to deploy the entire secure package. This is because of the way their agent functions, but I can't delve into more details."
"The solution needs to improve overall from a CSPM standpoint since they can't compete with Wiz or Orca."
"There was a security concern related to a specific feature. While the feature itself was promising, it posed a challenge. The situation revolved around code scanning. If your source code is hosted within your own premises, say on Bitbucket, you naturally wouldn't want your code to be accessible to external parties beyond your company. Keeping your code base private is a standard practice. However, in the case of code scanning using Sysdig Secure, they copy your code to their SaaS platform. This posed an issue for us. When we inquired about this, their response acknowledged the concern. In an upcoming release, they plan to enable code scanning within your on-premises environment through the assistance of an agent. This change is already in progress. While this tool stands out compared to existing solutions in the market, it's important to note that there are still some limitations to consider. Another drawback we encountered relates to our expertise with Kubernetes. The tool can monitor Kubernetes audit logs, triggering alerts and notifications. However, it falls short in terms of taking direct action based on these alerts. There are different methods of event capture, including through system labels and system calls, as well as via Kubernetes audit events. Notably, at the system level, Sysdig Secure can both detect and respond to events, allowing actions like blocking and warning. This proactive approach is effective at the system call level. However, when it comes to monitoring Kubernetes audit events, Sysdig Secure can only notify without being able to execute any further actions. It can't block access or containers. The vendor likened their role to that of a monitoring camera, observing events and sending notifications without the capacity to intervene. This limitation applies to Kubernetes audit events. Given that everything operates within our system, there is a workaround available: configuring system-level policies to block containers as necessary."
"Reporting can definitely be better. Live dashboards should be configurable for a longer period of time rather than 30 days. Being able to go back in time to compare six months ago to today would be valuable."
"Sysdig Secure needs to scale more for complete cloud-native coverage."
"Banks and financial institutions cannot use Sysdig Secure because it doesn't sell SaaS-hosted versions for under two hundred working nodes."
"The dashboard could be more simple and show the more important issues that are detected first. We'd like to be able to set it up so more important issues show up more prominently in the dashboard."
More Sysdig Secure cons
 

Pricing and Cost Advice

"The solution's pricing could be better. The cost of a subscription is calculated on the basis of work."
"The price of SUSE NeuVector is low. There is an additional cost for support."
"Licensing fees are paid yearly."
"SUSE NeuVector is an open-source solution."
"I am always going to say that it could be a little bit cheaper. I do feel that it is a little bit on the expensive side."
"It is quite costly compared to other tools."
"Sysdig is competitive. The quality matches the pricing. Obviously, everyone wants things to be cheaper, but if you're realistic, you acknowledge that quality service comes with a price. Sysdig is the gold standard for Kubernetes, and I wouldn't choose anything else. We live in Kubernetes. Everything is containerized, so that means a lot to us, and we're willing to make an investment."
"The solution's pricing depends on the agents...In short, the price depends on the environment of its user."
"In comparison to other cloud solutions, it's reasonably priced. However, when compared to in-house built open-source projects, it might be considered somewhat costly. The cost depends on whether someone sees the support provided by Sysdig as an advantage or if it's deemed unnecessary. Personally, I find the support to be excellent and consider it a good value."
report
See which vendors are best for you
Use our free recommendation engine to learn which Container Security solutions are best for your needs.
See recommendations
861,803 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Computer Software Company
18%
Financial Services Firm
15%
Government
10%
Manufacturing Company
9%
Financial Services Firm
21%
Computer Software Company
17%
Manufacturing Company
8%
Comms Service Provider
6%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
 

Questions from the Community

What do you like most about NeuVector?
The most valuable feature of SUSE NeuVector is its run-time security.
See all answers
What is your experience regarding pricing and costs for NeuVector?
SUSE NeuVector is an open-source solution. You have to pay for the support.
See all answers
What needs improvement with NeuVector?
One area for improvement is NeuVector's ability to import CVEs from different sources. Additionally, using a node port instead of a cluster IP is less ideal when implementing federation features be...
See all answers
What do you like most about Sysdig Secure?
The proactiveness of the support has been fantastic. Every time we mention something in a meeting that we're trying to do, he proactively takes that as an investigation topic and looks into it. He'...
See all answers
What needs improvement with Sysdig Secure?
Sysdig Secure could improve in terms of scalability and expanding services to other areas like database monitoring and support. There is also room for improvement in enhancing their platform speed....
See all answers
What is your primary use case for Sysdig Secure?
Sysdig Secure ( /products/sysdig-secure-reviews ) is used for cloud-native infrastructure, application monitoring, and detection response.
See all answers
 

Comparisons

Trivy vs SUSE NeuVector Logo
Trivy vs SUSE NeuVector
Compared 15% of the time
Sysdig Falco vs SUSE NeuVector Logo
Sysdig Falco vs SUSE NeuVector
Compared 12% of the time
Red Hat Advanced Cluster Security for Kubernetes vs SUSE NeuVector Logo
Red Hat Advanced Cluster Security for Kubernetes vs SUSE NeuVector
Compared 11% of the time
Prisma Cloud by Palo Alto Networks vs SUSE NeuVector Logo
Prisma Cloud by Palo Alto Networks vs SUSE NeuVector
Compared 9% of the time
CrowdStrike Falcon Cloud Security vs SUSE NeuVector Logo
CrowdStrike Falcon Cloud Security vs SUSE NeuVector
Compared 4% of the time
More SUSE NeuVector Competitors
Wiz vs Sysdig Secure Logo
Wiz vs Sysdig Secure
Compared 24% of the time
Prisma Cloud by Palo Alto Networks vs Sysdig Secure Logo
Prisma Cloud by Palo Alto Networks vs Sysdig Secure
Compared 8% of the time
Trivy vs Sysdig Secure Logo
Trivy vs Sysdig Secure
Compared 7% of the time
Sysdig Falco vs Sysdig Secure Logo
Sysdig Falco vs Sysdig Secure
Compared 7% of the time
SentinelOne Singularity Cloud Security vs Sysdig Secure Logo
SentinelOne Singularity Cloud Security vs Sysdig Secure
Compared 5% of the time
More Sysdig Secure Competitors
 

Product Reports

Buyer's Guide
Container Security
June 2025
SUSE NeuVector reportDownload SUSE NeuVector product report
Buyer's Guide
Sysdig Secure
June 2025
Sysdig Secure reportDownload Sysdig Secure product report
 

Also Known As

NeuVector
No data available
 

Overview

SUSE NeuVector is a full lifecycle container security solution that helps your organization secure its container infrastructures, manage Kubernetes security risks, and block threats. The NeuVector continuous container security and compliance platform simplifies data protection from pipeline to production, enforces compliance, and provides complete visibility and automated controls for protection against known and unknown threats. In addition, NeuVector is the only Kubernetes-native container security solution that offers a comprehensive risk profile of known vulnerabilities and also delivers immediate protection from all vulnerabilities.

SUSE NeuVector Features

SUSE NueVector has many valuable key features. Some of the most useful ones include:

  • Container incident detection and prevention
  • Network security
  • Runtime security
  • Supply chain security
  • Container firewall
  • Host and platform security
  • Cloud-native automation and integration
  • Resource monitoring
  • Visualization and reporting
  • High availability
  • Security
  • Vulnerability management
  • Compliance and auditing
  • Alerting
  • Logging and Response

SUSE NeuVector Benefits

There are many benefits to implementing NeuVector. Some of the biggest advantages the solution offers include:

  • Deep packet inspection (DPI): NeuVector applies DPI to identify attacks, detect sensitive data, or verify application access to further reduce the attack surface. Only network layer analysis enables security to detect and verify the allowed protocols, helping security teams enforce business policy.
  • Real-time protection: NeuVector provides inspection, segmentation, and protection of all traffic into and out of a container. This includes container to container traffic, and ingress from external sources to containers, as well as egress from containers to external applications and the internet. The solution aims to protect your applications from internal application level attacks such as DDoS and DNS.
  • Capture packets for debugging and threat investigation: WIth NeuVector, you can view summary connection data and drill down into actual packet details for each container, as they scale up and down. When a threat is detected, NeuVector is able to automatically capture and display the packet info, making it easy for you to investigate.
  • Automated security policies: The NeuVector solution allows you to automate the creation of security policies to protect application workloads in production. The solution also enables you to automate and maintain run-time security policies using Kubernetes custom resource definitions (CRDs), and gives you the option to declare an application security policy at any stage in the pipeline.
  • Compliance: NeuVector offers detection capabilities and security policy enforcement that prevent PHI and PII exposure, exceed requirements, and simplify reporting for PCI-DSS, GDPR, HIPAA, and more. The solution helps you track critical vulnerabilities and compliance violations so you can quickly identify any that require immediate patching or followup alerts. It also makes it possible for you to manage vulnerability and compliance scan results, with no required integration to external workflow tools.

Reviews from Real Users

A Platform Solution Architect at a tech services company says, “The solution is feature-rich, easy to set up, and has good support.”

SUSE

In the cloud, every second counts. Attacks move at warp speed, and security teams must protect the business without slowing it down. Sysdig stops cloud attacks in real time, instantly detecting changes in risk with runtime insights, a unique AI architecture, and open source Falco. Sysdig delivers live visibility by correlating signals across cloud workloads, identities, and services to uncover hidden attack paths. By knowing what is running, teams can prioritize the vulnerabilities, misconfigurations, permissions, and threats that matter most. From prevention to defense, Sysdig helps enterprises move faster and focus on what matters: innovation.

Sysdig. Secure Every Second.

Sysdig
 

Sample Customers

Figo, Clear Review, Arvato Bertelsmann, Experian, Chime
SAP Concur, Goldman Sachs, Worldpay, Experian, BigCommerce, Arkose Labs, Calendly, Noteable, Bloomreach. More here: https://sysdig.com/customers/
Buyer's Guide
SUSE NeuVector vs. Sysdig Secure
June 2025
Free Report: SUSE NeuVector vs. Sysdig Secure
Find out what your peers are saying about SUSE NeuVector vs. Sysdig Secure and other solutions. Updated: June 2025.
DOWNLOAD NOW
861,803 professionals have used our research since 2012.
See our SUSE NeuVector vs. Sysdig Secure report.
See our list of best Container Security vendors.

We monitor all Container Security reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.