We just raised a $30M Series A: Read our story

Compare Check Point SandBlast Network vs. Cisco Stealthwatch

Cancel
You must select at least 2 products to compare!
Featured Review
Find out what your peers are saying about Palo Alto Networks, RSA, Microsoft and others in Advanced Threat Protection (ATP). Updated: November 2021.
554,676 professionals have used our research since 2012.
Quotes From Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Pros
"Threat Emulation gives networks the necessary protection against unknown threats in files that are attached to emails. The Threat Emulation engine picks up malware at the exploit phase before it enters the network. It quickly quarantines and runs the files in a virtual sandbox, which imitates a standard operating system, to discover malicious behavior before hackers can apply evasion techniques to bypass the sandbox.""Preventing zero-day threats and extracting potential threats from incoming files with Threat Extraction is the most valuable feature for us.""The sandbox is able to scan files without adding a delay or compromising productivity.""You do not need to risk your network by using the in-line sandbox.""When our workers are downloading software, SandBlast Cloud is useful to emulate the downloads that the workers are doing. Then, there are no threats coming into the company.""Threat extraction can help us to remove malicious content from documents by converting them to PDF.""It provides a high rate of catching the zero-day advanced threats.""Check Point SandBlast Network Solution provides signature-based as well as zero-day threat protection. Also sandboxing can be performed on an on-premise device, cloud as well as the combination of both. Threat emulation is done on multiple OS & verdict is provided."

More Check Point SandBlast Network Pros »

"It has definitely helped us improve our mean time to resolution on network issues.""From what I understand, you can encrypt and unencrypt traffic moving in transit. This is one of the features that we liked about it.""Overall, the implementation is very good.""Great network monitoring, looking at anomaly detection and evaluation.""We find that Stealthwatch can detect the unseen.""It's easy to set up. The deployment takes one or two days. You need to collect the data from a device and then direct it to the portal."

More Cisco Stealthwatch Pros »

Cons
"Many Important controls are only available in CLI & very very complicated. All tecli command features should available on GUI so that it will become easy for normal users to monitor & control queue.""We have noticed a slight performance hit when the Threat Emulation and Extraction features were enabled, but the protection trade-off is worth it for us.""The file types that can be scanned are limited, which means that if the file type is not listed or enabled for the sandbox, they are bypassed and it can lead to a security issue.""I would like if it could emulate bigger files and somehow improve this usability. I don't know if this would be possible. However, if it was able to scan or emulate bigger files, then it would be safer for a company using it.""The Threat Emulation software blade significantly affects the performance of the NGFWs, we have a significant increase in the CPU and memory consumption.""EDR and EPM solutions like Carbon Black or CyberArk have integrations with the cloud version of Sandblast, however, there must be on-premise Sandblast options also.""In Check Point SandBlast, improvement has to be made with respect to the GUI.""I think Check Point provides standard time which ideally most other vendors take to identify behaviors of a file by sending them into a sandbox environment for inspection."

More Check Point SandBlast Network Cons »

"Cisco could improve the administration for the customers.""The visualization could be improved, the GUI is not the best.""We would like the solution to make more advances in the way that Extreme Networks has been doing.""It's a good solid solution but integration with Network Access Control products with Cisco ISE would be good.""Many of these tools require extensive on-premises hardware to run.""We determined that Stealthwatch wouldn't provide the machine learning model that we required."

More Cisco Stealthwatch Cons »

Pricing and Cost Advice
"The cost is not significantly high and it can be negotiated during any purchase of NGFW.""I think the overall cost for introducing Check Point with SandBlast was reasonable and competitive in the market.""Choosing the correct set of licenses is essential because, without the additional software blade licenses, the Check Point gateways are just a stateful firewall."

More Check Point SandBlast Network Pricing and Cost Advice »

"This is an expensive product. We have quit paying for support because we don't want to have to upgrade it and keep paying for it."

More Cisco Stealthwatch Pricing and Cost Advice »

report
Use our free recommendation engine to learn which Advanced Threat Protection (ATP) solutions are best for your needs.
554,676 professionals have used our research since 2012.
Questions from the Community
Top Answer: You do not need to risk your network by using the in-line sandbox.
Top Answer: If you already have Check Point NGFW and it's underutilized and sized properly, there is a benefit both in terms of commercial/security and operation. This is because everything is available from a… more »
Top Answer: EDR and EPM solutions like Carbon Black or CyberArk have integrations with the cloud version of Sandblast, however, there must be on-premise Sandblast options also (due to the fact that there are… more »
Top Answer: Great network monitoring, looking at anomaly detection and evaluation.
Top Answer: This is an expensive solution and the license is expensive. The cost is an area where a lot of clients are a little uncomfortable. The license cost is based on the size of the environment you're… more »
Top Answer: The visualization could be improved, the GUI is not the best. Stealthwatch was purchased from a company called Lancope and the look and feel of the tool is a little different from some of Cisco's… more »
Ranking
Views
3,027
Comparisons
2,006
Reviews
7
Average Words per Review
649
Rating
8.3
Views
24,547
Comparisons
17,432
Reviews
6
Average Words per Review
569
Rating
8.3
Comparisons
Also Known As
Cisco Stealthwatch Enterprise, Lancope StealthWatch
Learn More
Overview

Check Point’s evasion-resistant technology maximizes zero-day protection without compromising business productivity. For the first time, businesses can reduce the risk of unknown attacks by implementing a prevent-first approach. Learn More about Check Point Sandblast

Cisco Stealthwatch uses NetFlow to provide visibility across the network, data center, branch offices, and cloud. Its advanced security analytics uncover stealthy attacks on the extended network. Stealthwatch helps you use your existing network as a security sensor and enforcer to dramatically improve your threat defense.

Offer
Learn more about Check Point SandBlast Network
Learn more about Cisco Stealthwatch
Sample Customers
Edenred, State Transport Leasing Company (STLC), Edel AG, Laurenty, Conseil Départemental du Val de Marne, Koch Media
Edge Web Hosting, Telenor Norway, Ivy Tech Community College of Indiana, Webster Financial Corporation, Westinghouse Electric, VMware, TIAA-CREF
Top Industries
REVIEWERS
Financial Services Firm15%
Computer Software Company15%
Security Firm15%
Individual & Family Service8%
VISITORS READING REVIEWS
Comms Service Provider25%
Computer Software Company23%
Government8%
Financial Services Firm7%
REVIEWERS
Healthcare Company23%
Financial Services Firm15%
Manufacturing Company8%
Transportation Company5%
VISITORS READING REVIEWS
Comms Service Provider36%
Computer Software Company19%
Government6%
Financial Services Firm5%
Company Size
REVIEWERS
Small Business39%
Midsize Enterprise22%
Large Enterprise39%
REVIEWERS
Small Business14%
Midsize Enterprise7%
Large Enterprise79%
VISITORS READING REVIEWS
Small Business16%
Midsize Enterprise13%
Large Enterprise71%
Find out what your peers are saying about Palo Alto Networks, RSA, Microsoft and others in Advanced Threat Protection (ATP). Updated: November 2021.
554,676 professionals have used our research since 2012.

Check Point SandBlast Network is ranked 5th in Advanced Threat Protection (ATP) with 8 reviews while Cisco Stealthwatch is ranked 5th in Network Traffic Analysis (NTA) with 6 reviews. Check Point SandBlast Network is rated 8.2, while Cisco Stealthwatch is rated 8.4. The top reviewer of Check Point SandBlast Network writes "Automatically cleans known file types, can detect local file changes, and offers Zero-day attack protection". On the other hand, the top reviewer of Cisco Stealthwatch writes "Provides valuable security knowledge and helps us improve network performance". Check Point SandBlast Network is most compared with Palo Alto Networks WildFire, Fortinet FortiSandbox, FireEye Network Security, Proofpoint Email Protection and Microsoft Defender for Office 365, whereas Cisco Stealthwatch is most compared with Darktrace, SolarWinds NetFlow Traffic Analyzer, Palo Alto Networks Threat Prevention, Cisco Stealthwatch Cloud and ThousandEyes.

We monitor all Advanced Threat Protection (ATP) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.