Please share with the community what you think needs improvement with Cisco Stealthwatch Cloud.
What are its weaknesses? What would you like to see changed in a future version?
We are in South Africa, and their cloud service is located in the US or the UK. We don't have a local instance in South Africa, and this is still a concern from a customer-experience point of view. We do get some resistance from that point of view. Even though it is only managed in the cloud, people feel that they would prefer a local instance in South Africa, specifically in my region. From a forensics point of view, they can maybe add a little bit more forensic or solid evidence, instead of just doing logs. For example, if there is a lateral-movement attack internally, it can capture the whole path and present that as evidence in a forensic exercise. This is something that could be added at some stage.
I would like to see more forensic tools or more forensic features.
We all know it's really hard to get good pricing and cost information.
Please share what you can so you can help your peers.
Let the community know what you think. Share your opinions now!