Ram BalajiPre-sales Engineer at VFM Systems And Services
We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
"The most valuable feature is the integration with firewalls. It's integrated with AMP so the ecosystem with equal solutions from Threat Grid is good with CISCO products."
"It is easy to implement and is very scalable. It also comes with very good documentation. Cisco provides good technical support as well."
"The feature that I like best is the dashboard."
"The most valuable feature is alerting."
"It integrates well with other solutions and provides good threat intelligence in terms of external threats."
"They come in and have multiple management solutions but it doesn't scan or doesn't have the ability to look at every file extension."
"I was told that the user interface could be more user friendly and easy in comparison to that of competitors. I remember that there is a competitor who has a much easier interface for many users to interact with."
"I would like to have more technical documentation that contains greater detail on the types of threats that are occurring."
"It would be better if they used the threat intelligence feeds directly from their side and changing the verdict instead of us requesting it."
"It is a completely cloud-based product at present."
"If I remember correctly, the licensing cost is a little bit higher than that of the competitor."
Cisco Threat Grid crowd-sources malware from a closed community and analyzes all samples using proprietary, highly secure techniques that include static and dynamic (sandboxing) analysis. It correlates the results with hundreds of millions of other analyzed malware artifacts to provide a global view of malware attacks, campaigns, and their distribution. Security teams can quickly correlate a single samples of observed activity and characteristics against millions of other samples to fully understand its behaviors in a historical and global context. This ability helps analysts effectively defend against both targeted attacks and the broader threats from advanced malware. Threat Grid’s detailed reports, including the identification of important behavioral indicators and the assignment of threat scores, let you quickly prioritize and recover from advanced attacks.
AutoFocus contextual threat intelligence service accelerates analysis, correlation and prevention workflows. Unique, targeted attacks are automatically prioritized with full context, allowing security teams to respond to critical attacks faster, without additional IT security resources.
Cisco Threat Grid is ranked 9th in Threat Intelligence Platforms with 2 reviews while Palo Alto Networks AutoFocus is ranked 12th in Threat Intelligence Platforms with 3 reviews. Cisco Threat Grid is rated 9.0, while Palo Alto Networks AutoFocus is rated 8.0. The top reviewer of Cisco Threat Grid writes "Has good integration with firewalls but has limited file extensions". On the other hand, the top reviewer of Palo Alto Networks AutoFocus writes "Identifies critical attacks, easy to use, stable, and integrates well ". Cisco Threat Grid is most compared with ReversingLabs Titanium Platform, ThreatConnect Threat Intelligence Platform (TIP), AT&T AlienVault USM, CrowdStrike Falcon and Recorded Future, whereas Palo Alto Networks AutoFocus is most compared with LogRhythm NextGen SIEM, Trend Micro Deep Discovery, Recorded Future, ThreatStream and Rapid7 InsightIDR. See our Cisco Threat Grid vs. Palo Alto Networks AutoFocus report.
See our list of best Threat Intelligence Platforms vendors.
We monitor all Threat Intelligence Platforms reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.