We performed a comparison between Cisco Secure Network Analytics and Rapid7 InsightIDR based on real PeerSpot user reviews.
Find out what your peers are saying about Zabbix, Datadog, Auvik and others in Network Monitoring Software."We can manage the entire system across the network and troubleshoot the pain points."
"The single dashboard is a valuable feature."
"I believe this solution has reduced our incident response time."
"Stability is the most valuable feature we have seen in this solution."
"The most valuable feature of this solution is the way the net flow is being merged together in a single pane. That's been extremely useful for us, because can see what's going on with traffic in one single place."
"We find that Stealthwatch can detect the unseen."
"Provides easily identifiable anomalies that you can't see with signature detections."
"Cisco Stealthwatch has reduced the amount of time to detect an immediate threat."
"The most valuable feature is having visibility into the data segments throughout our network."
"The search options on Cisco Stealthwatch are the most valuable. You can get very granular with it, down to the kilobits or the seconds if you want. The product supports any time frame that you need, so that is nice."
"User behavioral analytics allows us to pinpoint abnormal or suspicious behavior among millions of events every day."
"Another very important part of insightIDR is the ability to collect data from endpoint devices via agent software. With a large remote workforce, this allows visibility into the endpoints that are connected to the internet, but not to the corporate network."
"Very intuitive and easy to set up."
"Simple configuration and automatically syncs to the cloud platform."
"We were able to identify criminals attempting to login from China and put a stop on their IP locations."
"Rapid7 InsightIDR integrates well with other solutions. It's also easy to configure because Rapid7 InsightIDR has a lot of instructions posted on their website that customers can follow if they need to get the source log."
"The solution's initial setup is easy."
"The ability to ingest Office 365 log files, then process them into events and display them on a map."
"The technical support needs improvement."
"The Wi-Fi side needs improvement."
"We've had problems with element licensing costs so scalability is a concern."
"We've run into some issues with the configuration."
"Cisco Stealthwatch needs more integration with device discovery. We have to do a lot of hard work to figure out what things are. Better service integration is required."
"It's a good solid solution but integration with Network Access Control products with Cisco ISE would be good."
"I think the interface is a little lacking. The interface seems like it just needs to be modernized. It's been the same interface now, ever since I've seen it probably four years ago."
"I would like to see a hybrid solution that can work without being connected directly to the internet for those destinations."
"We determined that Stealthwatch wouldn't provide the machine learning model that we required."
"The reporting of day-to-day metrics still has room for improvement."
"InsightIDR's integration with other solutions could be improved. Also, I'd like more control from the portal over what's happening on the endpoint side. For example, when I see an attack on an endpoint, I want to be able to stop it from the portal."
"The reporting is the weakest aspect. There needs to be multi-level grouping for events (for example, group by user and destination). Right now, we can do a group by user and a separate table or group by destination. But I'd be more interested in where a person was logging into instead of who was logging in or where he was logging in."
"I would like the ability to adjust the threshold of certain existing alerts. Currently the only option is to change the notifications or create my own alert."
"The ability to tune the collector for custom logs would greatly help."
"One thing that springs to mind is easier API integration with ITSMs. We are evaluating a new ITSM and I would like to have InsightIDR create a ticket when an attack is identified, and the ticket would be closed in InsightIDR when the ITSM resolution is completed. This would take out the "single point of failure" we currently have, if the email recipient is somehow absent, in recording the risk appetite for the incident and the actions taken to mitigate or not."
"The dashboard is an area that could be simplified."
"Needs a better ability to customize the check within the console."
"Currently, it lacks the functionalities provided by Rapid7's User Behavior Analytics (UBA)."
More Juniper Mist Premium Analytics Pricing and Cost Advice →
More Cisco Secure Network Analytics Pricing and Cost Advice →
Cisco Secure Network Analytics is ranked 24th in Network Monitoring Software with 57 reviews while Rapid7 InsightIDR is ranked 10th in Security Information and Event Management (SIEM) with 29 reviews. Cisco Secure Network Analytics is rated 8.2, while Rapid7 InsightIDR is rated 8.4. The top reviewer of Cisco Secure Network Analytics writes "Increased the visibility of what is happening in our network". On the other hand, the top reviewer of Rapid7 InsightIDR writes "An affordable product that is easy to use and has many advanced features and default templates". Cisco Secure Network Analytics is most compared with Darktrace, Cisco Secure Cloud Analytics, ThousandEyes, Vectra AI and Arista NDR, whereas Rapid7 InsightIDR is most compared with Darktrace, Microsoft Sentinel, Splunk Enterprise Security, Rapid7 InsightVM and IBM Security QRadar.
We monitor all Network Monitoring Software reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.