We performed a comparison between Cisco NGIPS and Cisco Secure Network Analytics based on real PeerSpot user reviews.
Find out in this report how the two Intrusion Detection and Prevention Software (IDPS) solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI."The most valuable feature of this solution is its modularity, so whenever you need to upgrade or add another service, you don't need to buy another box."
"The solution very effectively provides malware protection and signature-based anomaly detection."
"We have found the IPS detection to be a very valuable feature of this solution. It is easy to use to stop policy violations."
"Its ease of use and its ability to block and allow ports in and out of our organization are the most valuable features. It works very well. It gives us all the information that we need."
"The most valuable features are the intrusion detection ones."
"The solution is very stable."
"It is salable and technically sound."
"I like the way the tool pushes the packets from the node level."
"The solution has increased our threat detection rate. Cisco Stealthwatch has not reduced our incident response times. It has not reduced the amount of time it takes us to detect immediate threats. It has reduced false positives."
"The solution allowed us to not only get gain insight but also start collaborating with other tools."
"It has been pretty stable since we deployed it, and everything seems to be working fine."
"The most valuable feature is anomaly detection, where it finds things that are not allowed internally."
"It's a dependable product that is able to pinpoint where we have vulnerabilities if they occur."
"I value the feature which enables me to detect devices talking to suspect IPs."
"Cisco Stealthwatch has reduced the amount of time to detect an immediate threat."
"It has definitely helped us improve our mean time to resolution on network issues."
"The product's high price is an area of concern where improvements are required."
"Our customers are still facing many bugs on the system. It has matured noticeably, but we are still facing multiple stability issues on Firepower. There are more than 80 or 90 bugs for each release node. It's a considerable number of bugs."
"We would like an option to search through the logs to be added to this solution."
"We don't like its licensing model. It has separate licensing for all the features. For instance, to get URL filtering, you need to buy another license. Every feature set seems to require another license. Unless you purchase them all upfront, you find some surprises and realize that you can't do that because you need another license. Its logging isn't quite as good as it used to be in our previous solution. We used to have Cisco ASA, and we could view the logs a lot easier than NGIPS (also known as Firepower). We saw real-time logging, but we don't see that as much in Firepower."
"The SSL decrypt could be improved, but it's normal. All the devices in our platform need a lot of memory or CPU to do the SSL decrypt. This is an issue to improve in all platforms, not only in Cisco."
"The integration can be more secure."
"I think that some initiation scripts might be helpful because they would make the configuration easier and more user-friendly for customers."
"The only thing I think they may need to improve on a little bit is identifying software more correctly when you do network discovery."
"The initial setup is complex, as there is a lot to configure."
"Cisco could improve the administration for the customers."
"The configuration of the solution was quite complex."
"Many of these tools require extensive on-premises hardware to run."
"I would like Cisco to make it easier for the administrators to use it."
"One update I would like to see is an agent-based client. Currently StealthWatch is network based."
"I would like to see interoperability with other Cisco products because we have ThousandEyes, Cisco Prime, and others. The interaction among these is important to us."
"The reporting of day-to-day metrics still has room for improvement."
More Cisco Secure Network Analytics Pricing and Cost Advice →
Cisco NGIPS is ranked 5th in Intrusion Detection and Prevention Software (IDPS) with 62 reviews while Cisco Secure Network Analytics is ranked 24th in Network Monitoring Software with 57 reviews. Cisco NGIPS is rated 8.2, while Cisco Secure Network Analytics is rated 8.2. The top reviewer of Cisco NGIPS writes "Very effective for malware and signature-based anomalies but stability needs improvement". On the other hand, the top reviewer of Cisco Secure Network Analytics writes "Increased the visibility of what is happening in our network". Cisco NGIPS is most compared with Check Point IPS, Fortinet FortiGate IPS, Trend Micro TippingPoint Threat Protection System and Cisco Sourcefire SNORT, whereas Cisco Secure Network Analytics is most compared with Darktrace, Cisco Secure Cloud Analytics, ThousandEyes, Vectra AI and Arista NDR. See our Cisco NGIPS vs. Cisco Secure Network Analytics report.
We monitor all Intrusion Detection and Prevention Software (IDPS) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.