We changed our name from IT Central Station: Here's why

Palo Alto Networks VM-Series vs RSA NetWitness Logs and Packets (RSA SIEM) comparison

Cancel
You must select at least 2 products to compare!
Featured Review
Find out what your peers are saying about Palo Alto Networks VM-Series vs. RSA NetWitness Logs and Packets (RSA SIEM) and other solutions. Updated: January 2022.
564,729 professionals have used our research since 2012.
Quotes From Members
We asked business professionals to review the solutions they use.
Here are some excerpts of what they said:
Pros
"The VM series has an advantage over the physical version because we are able to change the sources that the machine has, such as the amount of available RAM.""The interface with Panorama makes it very easy to use.""The initial setup was straightforward.""The most valuable features are web control and IPS/IDS.""Using Palo Alto Networks Panorama, we were able to deploy a single point of management and visualization of the firewall infrastructure in cloud, on-premise and integrated with Azure to automate scale up. Its security features, i.e. anti-malware, threat prevention, URL Filtering, VPN, and antivirus are the most valuable. The ID-User integrated with AD and 2FA features are also very useful to provide secure access to servers and some users in the company. ""The most valuable features are the User ID, URL filtering, and application filtering.""Palo Alto Networks VM-Series is very easy to use.""What I like about the VM-Series is that you can launch them in a very short time."

More Palo Alto Networks VM-Series Pros →

"The solution is really scalable for the high-end power, enterprise customer.""What we are mainly using are the RSA concentrator, RSA Decoder, Archiver, Broker, and Log Decoder.""The most valuable features are the integration and ease of use.""Performance and reporting are very good.""The packet capture aspect of it is a valuable feature because it is quite different from a traditional SIEM solution that only carries out investigations based on captured logs.""The most valuable features are the threat prediction and network forensics.""The most valuable features are the packet inspection and the automated incident response.""Offers a good wireless feature."

More RSA NetWitness Logs and Packets (RSA SIEM) Pros →

Cons
"The product needs improvement in their Secure Access Service Edge.""In the next release, I would like to see better integration between the endpoints and the firewalls.""At the beginning of the implementation, we had some difficulties with the scripts, but Palo Alto Networks support together with a local partner finally fixed it.""It'll help if Palo Alto Networks provided better documentation.""It would be good if the common features work consistently in physical and virtual environments. There was an integration issue in the virtual deployment where it didn't report the interface counters, and we had to upgrade to the latest version, whereas the same thing has been working in the physical deployment for ages now. It seems that it was because of Azure. We were using VMware before, and we didn't have any such issues. We do see such small issues where we expect things to work, but they don't because of some incompatibilities. There also seems to be a limitation on how to do high availability in a virtualized environment. All features should be consistently available in physical and virtual environments. It is not always easy to integrate Palo Alto in the network management system. We would like to be able to compare two network management systems. They can maybe allow monitoring an interface through the GUI to create a reference or do a baseline check about whether your network monitoring system is actually giving you the correct traffic figures. You need traffic figures to be able to recognize the trends and plan the capacity.""Palo Alto is that it is really bad when it comes to technical support.""They made only a halfhearted attempt to put in DLP (Data Loss Prevention).""I would like to have automatic daily reporting, such as how many users have connected via SSL VPN."

More Palo Alto Networks VM-Series Cons →

"The multi-tenant capabilities are lagging compared to IBM QRadar.""It is not so easy to customize this product.""Technical support could be improved.""More customizability is required, which is something that they need to improve on.""The solution should have more integration capabilities with different platforms.""Security needs improvement.""The documentation is not as structured as I would like, personally, and I think that it can be improved and made much more user-friendly.""The initial setup is complex. There are other solutions that are easier to implement."

More RSA NetWitness Logs and Packets (RSA SIEM) Cons →

Pricing and Cost Advice
  • "The price of this solution is very high for some parts of Africa, which makes it a challenge."
  • "Palo Alto can be as much as two times the price of competing products that have twice the capabilities."
  • "The cost of this product varies from customer to customer and the relationship with IBM, including how many offerings from IBM are already being used."
  • "Because I work for a university and the URL is for the institution, it's a free license for us."
  • "It is not the cheapest on the market. The total cost for two firewall instances is $75,000. This includes licenses, deployment fees, and support for two years."
  • "The VM series is licensed annually."
  • "Palo Alto definitely needs to be more competitive compared to other products. The problem that I have faced is that the price of licensing is very high and not very competitive."
  • More Palo Alto Networks VM-Series Pricing and Cost Advice →

  • "Our license is for one year."
  • "There is a licensing fee and the customer can choose whether he wishes this to be subscription-based or perpetual."
  • "We are on an annual license for the use of the solution."
  • More RSA NetWitness Logs and Packets (RSA SIEM) Pricing and Cost Advice →

    report
    Use our free recommendation engine to learn which Advanced Threat Protection (ATP) solutions are best for your needs.
    564,729 professionals have used our research since 2012.
    Questions from the Community
    Top Answer: 
    In the best tradition of these questions, Feature-wise both are quite similar, but each has things it's better at, it kind of depends what you value most. PA is good at app control, web filtering… more »
    Top Answer: 
    Both products are very stable and easily scalable. The setup of Azure Firewall is easy and very user-friendly and the overall cost is reasonable. Azure Firewall offers a solid threat awareness, can… more »
    Top Answer: 
    With the improved visibility we now have, the traffic is being properly monitored, which means that we are better able to manage it. These are improvements that we saw very quickly.
    Top Answer: 
    It would help if they could provide the malware analytics in the core package as that would make the cost more reasonable. Licensing is paid annually and I believe the cost is somewhere between 12,000… more »
    Top Answer: 
    I believe they could improve their support, there are often delays. The price of the solution could be reduced, it's very costly.
    Ranking
    Views
    9,554
    Comparisons
    6,515
    Reviews
    15
    Average Words per Review
    668
    Rating
    8.5
    Views
    6,020
    Comparisons
    4,013
    Reviews
    12
    Average Words per Review
    510
    Rating
    7.8
    Comparisons
    Also Known As
    RSA Security Analytics
    Learn More
    Overview

    The VM-Series is a virtualized form factor of our next-generation firewall that can be deployed in a range of private and public cloud computing environments based on technologies from VMware, Amazon Web Services, Microsoft, Citrix and KVM.

    The VM-Series natively analyzes all traffic in a single pass to determine the application identity, the content within, and the user identity. These core elements of your business can then be used as integral components of your security policy, enabling you to improve your security efficacy through a positive control model and reduce your incident response time though complete visibility into applications across all ports.

    In both private and public cloud environments, the VM-Series can be deployed as a perimeter gateway, an IPsec VPN termination point, and a segmentation gateway, protecting your workloads with application enablement and threat prevention policies.

    If you’re relying on log data to detect and prevent cyber threats, you’re in trouble. Attackers increasingly evade detection of log-centric security and network monitoring tools. But logs combined with full packet, endpoint NetFlow data are proven to provide the essential details for early threat detection. Here’s a closer look at our solution.

    Offer
    Learn more about Palo Alto Networks VM-Series
    Learn more about RSA NetWitness Logs and Packets (RSA SIEM)
    Sample Customers
    Warren Rogers Associates
    Los Angeles World Airports, Reply
    Top Industries
    REVIEWERS
    Financial Services Firm23%
    Government15%
    Manufacturing Company15%
    Healthcare Company8%
    VISITORS READING REVIEWS
    Computer Software Company29%
    Comms Service Provider20%
    Financial Services Firm5%
    Government5%
    REVIEWERS
    Comms Service Provider31%
    Financial Services Firm23%
    Computer Software Company23%
    Healthcare Company8%
    VISITORS READING REVIEWS
    Computer Software Company28%
    Comms Service Provider23%
    Financial Services Firm8%
    Government7%
    Company Size
    REVIEWERS
    Small Business38%
    Midsize Enterprise31%
    Large Enterprise31%
    VISITORS READING REVIEWS
    Small Business29%
    Midsize Enterprise10%
    Large Enterprise62%
    REVIEWERS
    Small Business27%
    Midsize Enterprise14%
    Large Enterprise59%
    Find out what your peers are saying about Palo Alto Networks VM-Series vs. RSA NetWitness Logs and Packets (RSA SIEM) and other solutions. Updated: January 2022.
    564,729 professionals have used our research since 2012.

    Palo Alto Networks VM-Series is ranked 2nd in Advanced Threat Protection (ATP) with 16 reviews while RSA NetWitness Logs and Packets (RSA SIEM) is ranked 3rd in Advanced Threat Protection (ATP) with 11 reviews. Palo Alto Networks VM-Series is rated 8.6, while RSA NetWitness Logs and Packets (RSA SIEM) is rated 8.0. The top reviewer of Palo Alto Networks VM-Series writes "An excellent solution for the right situations and businesses". On the other hand, the top reviewer of RSA NetWitness Logs and Packets (RSA SIEM) writes "Economical with good technical support and is easily scalable". Palo Alto Networks VM-Series is most compared with Azure Firewall, Fortinet FortiGate, Cisco ASA Firewall, Juniper SRX and Fortinet FortiGate-VM, whereas RSA NetWitness Logs and Packets (RSA SIEM) is most compared with IBM QRadar, Splunk, RSA enVision, ArcSight Enterprise Security Manager (ESM) and LogRhythm NextGen SIEM. See our Palo Alto Networks VM-Series vs. RSA NetWitness Logs and Packets (RSA SIEM) report.

    See our list of best Advanced Threat Protection (ATP) vendors.

    We monitor all Advanced Threat Protection (ATP) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.