Cisco Stealthwatch Archived Reviews (More than two years old)

Filter by:
Industry
Loading...
Filter Unavailable
Company Size
Loading...
Filter Unavailable
Job Level
Loading...
Filter Unavailable
Rating
Loading...
Filter Unavailable
Considered
Loading...
Filter Unavailable
Order by:
Loading...
  • Date
  • Highest Rating
  • Lowest Rating
  • Review Length
Search:
Showingreviews based on the current filters. Reset all filters
Real User
Forensic Analyst at a pharma/biotech company with 1,001-5,000 employees
Mar 29 2018

What is most valuable?

It enables a holistic view of network traffic and general packet analysis. It's easy to identify anomalies without the use of signatures. The way in which we implemented Stealthwatch Cloud has enabled… more »

How has it helped my organization?

This tool provides another method for security analysts to triage security alerts. The artifacts available in the tool provide better information for analyzing network traffic.

What needs improvement?

I have nothing negative to say about the product. I've become very familiar with it, it is intuitive and easy to learn. I'm happy that the deployment worked well. If there was one improvement I’d… more »

What's my experience with pricing, setup cost, and licensing?

One thing to keep in mind is that pricing is based on flow. If your environment is a Cisco shop, there should be an option to bundle it with certain purchases.

Which solution did I use previously and why did I switch?

No previous solution.

What other advice do I have?

I do not use this product on AWS but I would be interested in doing so. AWS continues to be an expanding initiative. Stealthwatch is a great product. It's a paid product with a need for licensing but… more »
Consultant
Consultant at a healthcare company with 1,001-5,000 employees
Mar 26 2018

What is most valuable?

Visibility. The ability to look East and West. To see what is passing through your circuits, where it is coming from, and how big it is. This is pretty key for us. It is… more »

How has it helped my organization?

Our company is global and has various manufacturing plants over the globe along with branches. What we have found from a productivity policing perspective is we have had… more »

What needs improvement?

In the last year or two, we have been working with our Cisco NAS engineers to improve our security posturing. It is more our being proactive rather than reactive. While… more »

What's my experience with pricing, setup cost, and licensing?

Today, the company is part of the big Cisco ELA, and it is a la carte. We can get orders for whatever we want. At the end of the day, we have to pay for it in one big… more »

Which solution did I use previously and why did I switch?

We used Riverbed, and it is probably still around as some people can't let go of their old tools. When we saw what Lancope can do, not just from a visibility perspective… more »

What other advice do I have?

Come up with a template, then choose a center, choose a region, choose a plant, etc. Figure out how you want the deployment to go, then replicate it. Turn it into some… more »

Which other solutions did I evaluate?

The only other option was the one we were using at the time, which may not even be comparable because of visibility, and that was Riverbed. Riverbed was extremely… more »
Learn what your peers think about Cisco Stealthwatch. Get advice and tips from experienced pros sharing their opinions. Updated: April 2020.
438,944 professionals have used our research since 2012.
Real User
Senior Information Security Engineer at a transportation company with 10,001+ employees
Mar 08 2018

What is most valuable?

NetFlow: The beginning of any security investigation starts with NetFlow data.

How has it helped my organization?

Provides easily identifiable anomalies that you can't see with signature detections.

What needs improvement?

One update that I would like to see is an agent-based client. Currently, Stealthwatch is network-based. A local agent could help manage endpoints.

What's my experience with pricing, setup cost, and licensing?

Licensing is done by flows per second, not including outside (in traffic).

Which solution did I use previously and why did I switch?

We did not have a previous solution.

What other advice do I have?

There is nothing like it. It is a dream to operate. It is very intuitive. Go for it. Also, it is great for a network segmentation project.

Which other solutions did I evaluate?

I have tried the Sourcefire solution, but Stealthwatch won out through its ease of use.
Consultant
Senior Technical Consultant
Sep 14 2017

What is most valuable?

SMC and FC, though they are components, not features. Most valuable features are the network maps and server and network response time. Maps is a unique feature which provides logical grouping of… more »

How has it helped my organization?

Provided complete network visibility and made troubleshooting easy.

What's my experience with pricing, setup cost, and licensing?

Pricing is much higher compared to other solutions.

Which solution did I use previously and why did I switch?

No, we did not use a different solution.

What other advice do I have?

It is a good product. I don't see any matching product with level of detailed information.

Which other solutions did I evaluate?

Yes, SolarWinds.
Vendor
Highly motivated Security Engineer incident Response, Vuln Mgmt, Malware Analysis, IDS/IPS, DLP, Network Security +more at a transportation company with 10,001+ employees
Sep 12 2017

What is most valuable?

There's nothing like it and a dream to operate, very intuitive. The most valuable feature is NetFlow. The beginning of any security investigation starts with NetFlow data.

How has it helped my organization?

Easily identifiable anomalies that you can't see with signature detections.

What needs improvement?

I am so familiar with the product I would say none. Lancope has always listened to customer input for product enhancements. One update I would like to see is an… more »

What's my experience with pricing, setup cost, and licensing?

Licensing is done by flows per second, not including outside>in traffic.

Which solution did I use previously and why did I switch?

No.

What other advice do I have?

Go for it. Also great for your network segmentation project.

Which other solutions did I evaluate?

I have tried the Sourcefire solution but StealthWatch wins because of ease of use.
Real User
Information Security Analyst at a non-profit with 1,001-5,000 employees
Jun 05 2017

What do you think of Cisco Stealthwatch?

What is most valuable?

I value the feature which enables me to detect devices talking to suspect IPs.

How has it helped my organization?

We can now see what is going on in our network.

What needs improvement?

We need to be able to filter out internal IPs as non-threats.

For how long have I used the solution?

We have been using the product since 2008.

What do I think about the stability of the solution?

We did not encounter any issues with stability.

What do I think about the scalability of the solution?

We did not encounter any issues with scalability.

How are customer service and technical support?

The technical support is good.

Which solution did I use previously and why did I switch?

We did not use any other solution previously.

How was the initial setup?

What is Cisco Stealthwatch?

Cisco Stealthwatch uses NetFlow to provide visibility across the network, data center, branch offices, and cloud. Its advanced security analytics uncover stealthy attacks on the extended network. Stealthwatch helps you use your existing network as a security sensor and enforcer to dramatically improve your threat defense.

Also known as
Cisco Stealthwatch Enterprise, Lancope StealthWatch
Cisco Stealthwatch customers

Edge Web Hosting, Telenor Norway, Ivy Tech Community College of Indiana, Webster Financial Corporation, Westinghouse Electric, VMware, TIAA-CREF

BUYER'S GUIDE
Download our free Cisco Stealthwatch Report and get advice and tips from experienced pros sharing their opinions.