We performed a comparison between Cisco NGIPS and Cisco Secure Network Analytics based on real PeerSpot user reviews.
Find out in this report how the two Intrusion Detection and Prevention Software (IDPS) solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI."We use the solution for cybersecurity purposes. The tool helps us to identify anomalies that come from internal or external networks."
"The Malware Detection, threat defense, sandboxing, VPN and mail security have all been valuable features of Cisco NGIPS."
"The solution is very stable."
"The top features of Cisco NGIPS, which have been working very well, include stateful inspection and the access list-based security configuration. But from my perspective, the best part of Cisco NGIPS is the licensing process, which is very easy and straightforward. It's essentially copy-paste licensing."
"This solution has helped improve productivity and detect attacks before they happen."
"It has helped to improve our cybersecurity and our network security posture."
"In the virtual deployment, you have a couple of choices depending on your needs and how much bandwidth you have that needs to be inspected."
"I like the way the tool pushes the packets from the node level."
"Using this solution has helped us to detect and identify viruses or malicious activity in the network early on."
"It has improved our internal knowledge of what's going on with the network, and that's helpful."
"Cisco Stealthwatch has reduced the amount of time to detect an immediate threat."
"Ease of deployment, once you get your ducks in a row."
"The deployment was a breeze. It is a very innovative and robust platform that allows us to bi-directionally stitch together data elements from Netflow-enabled devices to provide a context for network utilization."
"Most of the engineers I've worked with have been really good. Very knowledgeable and easy to work with."
"Cisco Stealthwatch has predefined alerts for different types of security issues that might happen in the network. Whether it's PCs or servers that are used for botnets or Bitcoin mining we receive the alerts automatically. This functionality is what we receive from the solution out of the box."
"The solution has increased our threat detection rate. Cisco Stealthwatch has not reduced our incident response times. It has not reduced the amount of time it takes us to detect immediate threats. It has reduced false positives."
"Our customers are still facing many bugs on the system. It has matured noticeably, but we are still facing multiple stability issues on Firepower. There are more than 80 or 90 bugs for each release node. It's a considerable number of bugs."
"The GUI could be improved. The pain point is really only focused toward the security engineer who configures it and the operation engineer who manages it."
"We don't like its licensing model. It has separate licensing for all the features. For instance, to get URL filtering, you need to buy another license. Every feature set seems to require another license. Unless you purchase them all upfront, you find some surprises and realize that you can't do that because you need another license. Its logging isn't quite as good as it used to be in our previous solution. We used to have Cisco ASA, and we could view the logs a lot easier than NGIPS (also known as Firepower). We saw real-time logging, but we don't see that as much in Firepower."
"More flexibility with the dashboards is needed because some of them are not fully developed."
"NGIPS' GUI interface could be improved and made more user-friendly."
"Overall, it lacks user-friendliness. It could be easier to manage. I can train any customer using FortiGate or Palo Alto in a few days, but with Cisco, it takes much more time because the systems aren't easy to use."
"There are some features not found in Firepower, like data loss prevention, and SSO, to have a connection between Cisco and Active Directory which was introduced on other products."
"The price could be improved."
"One update I would like to see is an agent-based client. Currently StealthWatch is network based."
"I think the interface is a little lacking. The interface seems like it just needs to be modernized. It's been the same interface now, ever since I've seen it probably four years ago."
"We had some trouble with the installation as we migrated from our previous solution."
"It hasn't really improved our direct detection rate but it has definitely reduced our incident response time as we wouldn't have been able to detect threats or immediate risks without this solution."
"Many of these tools require extensive on-premises hardware to run."
"There's a lot of traffic on our network that we don't see sometimes."
"I would like the search page available with Cisco Stealthwatch to be more intuitive. The previous release was better than the current one for the UI."
"We determined that Stealthwatch wouldn't provide the machine learning model that we required."
More Cisco Secure Network Analytics Pricing and Cost Advice →
Cisco NGIPS is ranked 5th in Intrusion Detection and Prevention Software (IDPS) with 63 reviews while Cisco Secure Network Analytics is ranked 24th in Network Monitoring Software with 57 reviews. Cisco NGIPS is rated 8.2, while Cisco Secure Network Analytics is rated 8.2. The top reviewer of Cisco NGIPS writes "Very effective for malware and signature-based anomalies but stability needs improvement". On the other hand, the top reviewer of Cisco Secure Network Analytics writes "Increased the visibility of what is happening in our network". Cisco NGIPS is most compared with Check Point IPS, Fortinet FortiGate IPS, Trend Micro TippingPoint Threat Protection System and Cisco Sourcefire SNORT, whereas Cisco Secure Network Analytics is most compared with Darktrace, Cisco Secure Cloud Analytics, ThousandEyes, Vectra AI and Arista NDR. See our Cisco NGIPS vs. Cisco Secure Network Analytics report.
We monitor all Intrusion Detection and Prevention Software (IDPS) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.