We performed a comparison between Cisco Secure Network Analytics and Trellix Network Detection and Response based on real PeerSpot user reviews.
Find out in this report how the two Network Detection and Response (NDR) solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI."Most valuable features are the network maps and server and network response time."
"The fact that it can identify down to an IP address of a system that is causing problems, or potentially causing problems, is very valuable."
"Stability is the most valuable feature we have seen in this solution."
"Provides easily identifiable anomalies that you can't see with signature detections."
"From a security standpoint, it is just seeing pockets as well. Visibility is very key for us."
"Great network monitoring, looking at anomaly detection and evaluation."
"The most valuable features provided by this solution are visibility and information."
"The solution has increased our threat detection rate. Cisco Stealthwatch has not reduced our incident response times. It has not reduced the amount of time it takes us to detect immediate threats. It has reduced false positives."
"The features that I find most valuable are the MIR (Mandiant Incident Response) for checks on our inbound security."
"The solution can scale."
"If we are receiving spam emails, or other types of malicious email coming from a particular email ID, then we are able to block them using this solution."
"Support is very helpful and responsive."
"Before FireEye, most of the times that an incident would happen nobody would be able to find out where or why the incident occurred and that the system is compromised. FireEye is a better product because if the incident already happened I know that the breach is there and that the system is compromised so we can take appropriate action to prevent anything from happening."
"The server appliance is good."
"Very functional and good for detecting malicious traffic."
"The installation phase was easy."
"Initially, I felt Cisco Secure Network Analytics lacked integration with Splunk."
"At my company, we might not be using it enough with other applications that we have that can integrate with it."
"It's too complicated to install, when starting out."
"The usability of this solution needs to be improved."
"Reliance on Java. Get away from that."
"We've had problems with element licensing costs so scalability is a concern."
"The customizability of the UI should improve."
"If there was one improvement I’d suggest it would be that it detect traffic through an intranet. The product requires that traffic flow through a managed network device. The product is designed mostly for enterprise environments and not smaller environments or businesses."
"The world is currently shifting to AI, but FIreEye is not following suit."
"The initial setup was complex because of the nature of our environment. When it comes to the type of applications and functions which we were looking at in terms of identifying malicious threats, there would be some level of complexity, if we were doing it right."
"It would be a good idea if we could get an option to block based upon the content of an email, or the content of a file attachment."
"FireEye Network Security should have better integration with other vendors' firewalls or proxies, such as Palo Alto and Fortinet. Files that are being submitted should happen through the API or automatically."
"The product's integration capabilities are an area of concern where improvements are required."
"Management of the appliance could be greatly improved."
"They can maybe consider supporting some compliance standards. When we are configuring rules and policies, it can guide whether they are compliant with a particular compliance authority. In addition, if I have configured some rules that have not been used, it should give a report saying that these rules have not been used in the last three months or six months so that I disable or delete those rules."
"I would love to see better reporting. Because you can't export some of the reports in proper formats, it is hard to extract the data from reports."
More Cisco Secure Network Analytics Pricing and Cost Advice →
More Trellix Network Detection and Response Pricing and Cost Advice →
Cisco Secure Network Analytics is ranked 3rd in Network Detection and Response (NDR) with 57 reviews while Trellix Network Detection and Response is ranked 7th in Network Detection and Response (NDR) with 35 reviews. Cisco Secure Network Analytics is rated 8.2, while Trellix Network Detection and Response is rated 8.6. The top reviewer of Cisco Secure Network Analytics writes "Increased the visibility of what is happening in our network". On the other hand, the top reviewer of Trellix Network Detection and Response writes "Blocks traffic and DDoS attacks ". Cisco Secure Network Analytics is most compared with Darktrace, Cisco Secure Cloud Analytics, ThousandEyes, Vectra AI and Arista NDR, whereas Trellix Network Detection and Response is most compared with Fortinet FortiSandbox, Palo Alto Networks WildFire, Zscaler Internet Access, Fortinet FortiGate and Trellix Advanced Threat Defense. See our Cisco Secure Network Analytics vs. Trellix Network Detection and Response report.
See our list of best Network Detection and Response (NDR) vendors.
We monitor all Network Detection and Response (NDR) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.