NetWitness XDR Pros

PS
Manager, Soc
The log correlation is good.
View full review »
Dr Trust Tshepo Mapoka - PeerSpot reviewer
Senior Cybersecurity Consultant at CIA Botswana
They have recently updated the features and the most valuable ones are the instant threat response, ease of use, web interface, integration, and easy access. RSA NetWitness Endpoint is very compatible with other solutions and technologies. However, they do not rely on third-party solutions and have most features built-in.
View full review »
HS
Senior Cyber Security Analyst (SAFe Agile) at a transportation company with 1,001-5,000 employees
NetWitness Endpoint's most valuable features are its interoperability across many different operating systems and the ease of pivoting from network to endpoint via a single console.
View full review »
Buyer's Guide
Extended Detection and Response (XDR)
November 2022
Find out what your peers are saying about NetWitness, Trellix, Palo Alto Networks and others in Extended Detection and Response (XDR). Updated: November 2022.
655,113 professionals have used our research since 2012.
AO
Manager, IT Security Operations at a non-profit with 11-50 employees
Technical support is knowledgeable.
View full review »
SupravatMaji - PeerSpot reviewer
Associate Vice President - IT Security at Inspira Enterprise
The most valuable feature of RSA NetWitness Network is the single unified dashboard from which you can manage all the different products of RSA. Additionally, the integration with native applications is good.
View full review »
HananSyed - PeerSpot reviewer
Cyber Security Consultant at Mideast Data Systems
The stability of the RSA NetWitness Endpoint is very good.
View full review »
Jakaria Udoy - PeerSpot reviewer
Information Security Engineer at Nhq Distribution Ltd
It's a scalable solution. We have around five to eight customers using RSA NetWitness Endpoint, and we hope to increase the number of users.
View full review »
HT
Security information and incident handling. at a financial services firm with 501-1,000 employees
Ability to isolate the machine when there are malicious files.
View full review »
Maged Magdy - PeerSpot reviewer
Security Consultant at Global Solutions
It is very easy to use, and its usability is great. The use cases are also very easy. The visualizations of the use cases are magnificent. You cannot find this in any other solution. From my point of view, it is great.
View full review »
Amr Abdelaziz - PeerSpot reviewer
Information Security Specialist at Masria Digital payments
The interface of this solution is very flexible and easy to use.
View full review »

NetWitness XDR Cons

PS
Manager, Soc
The deployment process is complex. I don't know why, but this solution will suddenly stop working. Logs stop coming. Often, one thing or another stops working. Most of the time, one of my team members is working with troubleshooting and working with technical support. Log passing is also one of the biggest challenge.
View full review »
HS
Senior Cyber Security Analyst (SAFe Agile) at a transportation company with 1,001-5,000 employees
NetWitness Endpoint's blocking feature does not work properly - if there's a malicious process, it's not possible to kill it via a custom rule unless and until it's flagged as malicious.
View full review »
AO
Manager, IT Security Operations at a non-profit with 11-50 employees
Threat detection could be better.
View full review »
Buyer's Guide
Extended Detection and Response (XDR)
November 2022
Find out what your peers are saying about NetWitness, Trellix, Palo Alto Networks and others in Extended Detection and Response (XDR). Updated: November 2022.
655,113 professionals have used our research since 2012.
SupravatMaji - PeerSpot reviewer
Associate Vice President - IT Security at Inspira Enterprise
RSA NetWitness Network could improve on integration with non-native application integration.
View full review »
HananSyed - PeerSpot reviewer
Cyber Security Consultant at Mideast Data Systems
The threat intelligence could improve in RSA NetWitness Endpoint.
View full review »
Jakaria Udoy - PeerSpot reviewer
Information Security Engineer at Nhq Distribution Ltd
The integration of the solution needs to be improved. The dashboard needs lots of updates as well. In the next release, we would like to see advanced fraud detection features.
View full review »
HT
Security information and incident handling. at a financial services firm with 501-1,000 employees
The solution lacks a reporting engine.
View full review »
Maged Magdy - PeerSpot reviewer
Security Consultant at Global Solutions
Its price could be improved. It is an expensive product. Its training is also too expensive. It would be great if they can have a better pricing scheme for the training.
View full review »
Amr Abdelaziz - PeerSpot reviewer
Information Security Specialist at Masria Digital payments
We would like to see the hunting and investigation features of this solution improved, in order to provide better visibility of issues.
View full review »
Buyer's Guide
Extended Detection and Response (XDR)
November 2022
Find out what your peers are saying about NetWitness, Trellix, Palo Alto Networks and others in Extended Detection and Response (XDR). Updated: November 2022.
655,113 professionals have used our research since 2012.