Try our new research platform with insights from 80,000+ expert users

NetWitness Platform vs Palo Alto Networks VM-Series comparison

 

Comparison Buyer's Guide

Executive Summary

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Categories and Ranking

NetWitness Platform
Average Rating
7.4
Reviews Sentiment
7.4
Number of Reviews
36
Ranking in other categories
Log Management (33rd), Security Information and Event Management (SIEM) (30th)
Palo Alto Networks VM-Series
Average Rating
8.6
Reviews Sentiment
7.0
Number of Reviews
65
Ranking in other categories
Firewalls (12th), Advanced Threat Protection (ATP) (9th)
 

Mindshare comparison

NetWitness Platform and Palo Alto Networks VM-Series aren’t in the same category and serve different purposes. NetWitness Platform is designed for Log Management and holds a mindshare of 0.4%, up 0.3% compared to last year.
Palo Alto Networks VM-Series, on the other hand, focuses on Firewalls, holds 1.1% mindshare, up 0.7% since last year.
Log Management Market Share Distribution
ProductMarket Share (%)
NetWitness Platform0.4%
Wazuh12.2%
Grafana Loki7.9%
Other79.5%
Log Management
Firewalls Market Share Distribution
ProductMarket Share (%)
Palo Alto Networks VM-Series1.1%
Fortinet FortiGate20.4%
OPNsense11.0%
Other67.5%
Firewalls
 

Featured Reviews

MOTASHIM Al Razi - PeerSpot reviewer
It is a stable solution, but they should make the user interface easier to understand
The solution's initial setup takes work. We have to organize multiple paths and many features. The deployment process takes less than a week. But it takes a month to complete if we want to make the solution smarter by integrating it with various devices. I rate the process as a six out of ten.
RonnieYazdani - PeerSpot reviewer
User-friendly CLI and efficient dashboard streamline operations with robust security features
I find Palo Alto Networks VM-Series easy to deploy, and none of my customers have had significant complaints. My customers have high certifications provided by Palo Alto Networks. The friendly dashboard and the ability to easily command and use the CLI make Palo Alto Networks VM-Series a better product. It offers robust solutions, making it valuable to my customers.

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"The most valuable features are the integration and ease of use."
"The most valuable feature of RSA NetWitness Logs and Packets are the alerts and correlations tools."
"The most valuable feature is the correlation. It can report in real-time and monitor the management."
"The most valuable feature is that we can create our own connectors for any application, and NetWitness provides the training and tools to do it."
"I can have enterprise security, email security, next generation firewall security log, HIDS and NIDS logs, etc. all on the same dashboard. It makes it easy to pinpoint or correlate our server to this. I can find out if there is lateral movement. This is the biggest advantage of this solution."
"The newer 11.5 version that my team is using has found it to have good mapping."
"It's fully scalable. There is no limit. Of course, the license limits per day the number of terabytes. In my opinion, it's very flexible."
"The development of use cases on the SSA console is quite user friendly. This means that the security analyst or the researcher does not have to learn another language."
"AWS has improved our agility to apply firewall rules. It has reduced the amount of time that it takes to apply firewall rules because everything is based in the cloud."
"The most valuable feature is that you can launch it in a very short time. You don't have to wait for the hardware to arrive and get it staged and installed. From that perspective, it is easy to launch. It is also scalable."
"Using Palo Alto Networks Panorama, we were able to deploy a single point of management and visualization of the firewall infrastructure in cloud, on-premise and integrated with Azure to automate scale up. Its security features, i.e. anti-malware, threat prevention, URL Filtering, VPN, and antivirus are the most valuable. The ID-User integrated with AD and 2FA features are also very useful to provide secure access to servers and some users in the company. "
"It helps in offering advanced protection against malware and anti-spyware, which is based on customer feedback stating the product has very good threat prevention capabilities."
"It ensures that every interaction, pre and post-loan processing, undergoes a thorough inspection, leveraging VPN features and comprehensive security protocols."
"The VM-Series reports how much bandwidth a particular IP is using. You don't need to regularly log into a website, like a Cisco command, to see what kind of ACL it's getting. There isn't an ACL use portal event. You can go there and see how much my ACL has been getting me."
"A solid operating system with all the necessary data center security features."
"The solution enables organizations to enforce policies."
 

Cons

"I'd like to see improvement in its ease of use. It's basically unusable. It's overly complex."
"Lots of competing products have vulnerability protection built into their products, and this solution would be improved by including that support."
"It should have a monitoring feature. It would help us analyze the current state of attacks faster from a single platform."
"The initial setup was complex because it takes a lot of time to complete the implementation."
"The system architecture is complex and sometimes it’s hard to troubleshoot potential problems."
"The user interface is a little bit difficult for new users and it needs to be improved."
"Sometimes, it gives me static when integrating Windows-based systems. It should produce a precise log of sorts as to where the problem is. For example, a few days ago because of the McAfee application firewall, I couldn't get access to the particular Windows machine. So, my team and I had to figure out by ourselves that there was a virus responsible for the obstacle. This solution should trigger a meaningful log or message indicating the reason the user or implementer can't get into the machine."
"The threat detection capability and centralizing and upgrading capability need to be improved. The threat alert capability needs to be improved as well because there is some lag time at present. They need to work on their database search too."
"If additional web application firewall capabilities could be integrated into the existing firewall, it would negate the need for additional products."
"There is a need for two-factor authentication, particularly for VPN and CloudProtect."
"Recently, they introduced their Prisma Cloud solution. Compared to the previous technologies, like Panorama, which is used for centralized firewall management, or even the individual firewalls, it's a bit challenging to integrate the traditional firewall policies into Prisma Cloud."
"Enhancing the ease of accessing technical support would be useful."
"People are less aware of Palo Alto."
"There is no proper support channel to follow up on cases."
"The DLP functionality or data classification can be improved in the solution's basic firewalling."
"With Palo Alto Networks VM-Series, it is hard for me to manage its network configuration part."
 

Pricing and Cost Advice

"The tool is very expensive, so I rate the pricing a ten out of ten. The solution has an annual subscription."
"It’s cheaper to run virtual machines in a VMware environment."
"This is a pricey solution; it's not cheap."
"Many clients are not able to purchase the packet capability because there is a huge amount of data, and the cost depends on the number of EPS (Events per second), as well as the number of gigabytes of data per day."
"There is a licensing fee and the customer can choose whether he wishes this to be subscription-based or perpetual."
"The licenses are good but the cost is very expensive."
"The product price was reasonable for my region and the market."
"We are on an annual license for the use of the solution."
"This is not the cheapest firewall but it's not the most expensive of the options on the market."
"The product's most valuable feature is pricing."
"Palo Alto can be as much as two times the price of competing products that have twice the capabilities."
"The solution is expensive. I rate its pricing a three out of ten."
"There is a need to make payments toward a yearly subscription-based model in which you need to add modules that you want to use in your company."
"Palo Alto is more expensive than other products."
"The price of this solution is very high for some parts of Africa, which makes it a challenge."
"Palo Alto Networks VM-Series is an expensive product but the best one in the market."
report
Use our free recommendation engine to learn which Log Management solutions are best for your needs.
870,623 professionals have used our research since 2012.
 

Comparison Review

VS
Feb 26, 2015
HP ArcSight vs. IBM QRadar vs. ​McAfee Nitro vs. Splunk vs. RSA Security vs. LogRhythm
We at Infosecnirvana.com have done several posts on SIEM. After the Dummies Guide on SIEM, we are following it up with a SIEM Product Comparison – 101 deck. So, here it is for your viewing pleasure. Let me know what you think by posting your comments below. The key products compared here are…
 

Top Industries

By visitors reading reviews
Financial Services Firm
13%
Computer Software Company
12%
Comms Service Provider
7%
Performing Arts
7%
Computer Software Company
14%
Financial Services Firm
11%
Manufacturing Company
10%
Performing Arts
5%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
By reviewers
Company SizeCount
Small Business8
Midsize Enterprise7
Large Enterprise20
By reviewers
Company SizeCount
Small Business27
Midsize Enterprise17
Large Enterprise25
 

Questions from the Community

What do you like most about NetWitness Platform?
The product's initial setup phase was not at all difficult.
What is your experience regarding pricing and costs for NetWitness Platform?
The pricing is comparable to others, and I consider the cost to be intermediate. Specific cost details are unknown to me.
What needs improvement with NetWitness Platform?
There is currently no need for improvement in the SIEM ( /categories/security-information-and-event-management-siem ), though there could be potential enhancements by integrating with AI.
Features comparison between Palo Alto and Fortinet firewalls
In the best tradition of these questions, Feature-wise both are quite similar, but each has things it's better at, it kind of depends what you value most. PA is good at app control, web filtering a...
How does Azure Firewall compare with Palo Alto Networks VM Series?
Both products are very stable and easily scalable. The setup of Azure Firewall is easy and very user-friendly and the overall cost is reasonable. Azure Firewall offers a solid threat awareness, can...
 

Also Known As

RSA Security Analytics
No data available
 

Overview

 

Sample Customers

Los Angeles World Airports, Reply
Warren Rogers Associates
Find out what your peers are saying about NetWitness Platform vs. Palo Alto Networks VM-Series and other solutions. Updated: September 2022.
870,623 professionals have used our research since 2012.