We performed a comparison between Cisco NGIPS and Darktrace based on real PeerSpot user reviews.
Find out in this report how the two Intrusion Detection and Prevention Software (IDPS) solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI."Technical support is quite good. With firewalls, the last cases I had with Cisco were professionally handled quite quickly and it was great."
"The IPS functionality is useful if you have offices all over the place. It's nice to have centralized management instead of going to a separate ASA or FirePOWER device."
"The most valuable features of Cisco NGIPS are protection and reporting."
"The thing about this solution that I like the most is that it's intuitive."
"This is a stable solution."
"The initial setup wasn't complex or complicated."
"I think their fingerprints are good in terms of how they whitelist and blacklist."
"The top features of Cisco NGIPS, which have been working very well, include stateful inspection and the access list-based security configuration. But from my perspective, the best part of Cisco NGIPS is the licensing process, which is very easy and straightforward. It's essentially copy-paste licensing."
"It's a very stable product."
"We allow customers to access our Wi-Fi as guests, and some of them were going to restricted sites. Darktrace showed us what they were doing so we could block them."
"The solution can scale."
"I am impressed with the product's ability to give insights into network traffic."
"It has helped the organization to detect any malware affecting the machines...The network monitoring and the email monitoring features are very valuable for us."
"It provides a comprehensive, detailed view of network activity and whatever is happening inside it."
"The models, triggers, and alerts are customizable."
"I like the dashboards, which are cool. They are more user-friendly, in my experience. Its learning capabilities are really good."
"We have a separate management controller for Cisco NGIPS. If they have not done it already they should integrate Cisco NGIPS with the Cloud Portal."
"There are some features not found in Firepower, like data loss prevention, and SSO, to have a connection between Cisco and Active Directory which was introduced on other products."
"The GUI could be improved. The pain point is really only focused toward the security engineer who configures it and the operation engineer who manages it."
"What I don't like about Cisco recently is they keep changing the names, which makes it hard for customers and sometimes even us as engineers to know what is the solution they are speaking about. For example, with AMP, now they call it Secure Endpoint and I don't know if in the next couple of years they're going to change it to something else. They should keep the names the same."
"It has room for improvement when it comes to integrating machine learning and AI into it where even if you don't have a baseline that is of length for anomaly detection, it could do more like an AI style machine learning. It learns on its own."
"The pricing is very expensive. They should make their equipment more affordable."
"The biggest problem with most Cisco products is that the interface is lagging behind the competition. The user interface could be updated and improved."
"The attack patterns and payloads go undetected in Cisco. We would like to see a new solution with more effective detection of attack patterns. There should be more data analyzing patterns as well which provides useful information."
"It would be good if they can include some endpoint protection for remote workers. Nowadays, most people are working remotely. Therefore, they should include some type of sensors that can be installed on the endpoint in order to directly report the main usage and protect remotely. Phone protection will also be a great feature to add to Darktrace."
"I did not use the AI features because they should make it more user-friendly which would be a benefit. Additionally, the solution could integrate with more SIEM or SOAR tools."
"Upper management wasn't sold on the value proposition."
"It's quite expensive to have."
"The solution can improve the reporting."
"The level of tracking within the network from the transmission level up to the machine level can use improvement."
"This is quite an expensive product so the pricing is something that can be improved."
"There aren't so many third-party vendor platforms natively integrated with the platform."
Cisco NGIPS is ranked 5th in Intrusion Detection and Prevention Software (IDPS) with 63 reviews while Darktrace is ranked 1st in Intrusion Detection and Prevention Software (IDPS) with 65 reviews. Cisco NGIPS is rated 8.2, while Darktrace is rated 8.2. The top reviewer of Cisco NGIPS writes "Very effective for malware and signature-based anomalies but stability needs improvement". On the other hand, the top reviewer of Darktrace writes "Great autonomous support, offers an easy setup, and has responsive support". Cisco NGIPS is most compared with Check Point IPS, Fortinet FortiGate IPS, Trend Micro TippingPoint Threat Protection System, Cisco Sourcefire SNORT and Cisco Secure Network Analytics, whereas Darktrace is most compared with CrowdStrike Falcon, Vectra AI, SentinelOne Singularity Complete, Cortex XDR by Palo Alto Networks and Cisco Secure Network Analytics. See our Cisco NGIPS vs. Darktrace report.
See our list of best Intrusion Detection and Prevention Software (IDPS) vendors.
We monitor all Intrusion Detection and Prevention Software (IDPS) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.