Cisco Secure IPS (NGIPS) vs Cisco Secure Network Analytics comparison

The compared Cisco Secure IPS (NGIPS) and Cisco Secure Network Analytics solutions aren't in the same category. Cisco Secure IPS (NGIPS) is ranked #6 in ID , with an average rating of 8.2, and holds a 4.3% mindshare in the category. Cisco Secure Network Analytics is ranked #24 in NMS , with an average rating of 8.2, and holds a 1.5% mindshare. Additionally, 93% of Cisco Secure IPS (NGIPS) users are willing to recommend the solution, compared to 87% of Cisco Secure Network Analytics users who would recommend it.

Cisco Secure IPS (NGIPS)

Read 63 Cisco Secure IPS (NGIPS) reviews

2,428 Views
1,385 Comparison Views

93% willing to recommend

Cisco Secure Network Analytics

Read 58 Cisco Secure Network Analytics reviews

2,554 Views
1,993 Comparison Views

87% willing to recommend

Cisco Secure IPS (NGIPS)

Cisco Secure Network Analytics

Comparison Buyer's Guide

Download the report

Executive Summary

We performed a comparison between Cisco Secure IPS (NGIPS) and Cisco Secure Network Analytics based on real PeerSpot user reviews.

Find out in this report how the two Intrusion Detection and Prevention Software (IDPS) solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI.

To learn more, read our detailed Cisco Secure IPS (NGIPS) vs. Cisco Secure Network Analytics Report (Updated: January 2020).

Buyer's Guide

Cisco Secure IPS (NGIPS) vs. Cisco Secure Network Analytics

January 2020

Download the complete report

Helped 802,829 peers since 2012

Categories and Ranking

Cisco Secure IPS (NGIPS)

Average Rating

8.2

Number of Reviews

Ranking in other categories

Intrusion Detection and Prevention Software (IDPS) (6th)

Cisco Secure Network Analytics

Average Rating

8.2

Number of Reviews

Ranking in other categories

Network Monitoring Software (24th), Network Traffic Analysis (NTA) (3rd), Network Detection and Response (NDR) (5th), Cisco Security Portfolio (3rd)

Mindshare comparison

While both are Network Security Systems solutions, they serve different purposes. Cisco Secure IPS (NGIPS) is designed for Intrusion Detection and Prevention Software (IDPS) and holds a mindshare of 4.3%, down 4.6% compared to last year.
Cisco Secure Network Analytics, on the other hand, focuses on Network Monitoring Software, holds 1.5% mindshare, down 1.7% since last year.

Intrusion Detection and Prevention Software (IDPS)

Network Monitoring Software

Featured Reviews

Carlos Bracamonte

Senior Network Support Engineer at Amadeus

Mar 15, 2023

Good protection, reliable and responsive support

Some of our customers are having DDOS attacks and ransomware attacks Earlier in July 2019, I noted that there was an attack. To mitigate future attacks from the ransomware in Columbia Bank and other similar situations, we at Cisco Talent, which is responsible for security intelligence, provided…

Read full review

reviewer2108079

Development Manager at a healthcare company with 10,001+ employees

Feb 20, 2023

Increased the visibility of what is happening in our network

We're currently using it to figure out what is happening in our network. For example, to see whether there's any incorrect traffic in our network. We are also using it to monitor traffic coming from the internet into our network. We have about 30,000 end users and about 60,000 end devices in the…

Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Pros

"NGIPS lets you map web requests to a specific user to determine who is downloading files and what they are accessing. You can use it to identify users downloading malware or track time wasters using Facebook or something like that. It gives you visibility into what your users are doing on the Internet."

"The most valuable feature is its IPS ability. You are able to balance security and connectivity."

"The solution is stable. This is one of the good things in Firepower. Especially if we use ESE with it."

"I like how NGIPS has everything in one console."

"I like the security solutions from Cisco."

"In the virtual deployment, you have a couple of choices depending on your needs and how much bandwidth you have that needs to be inspected."

"It has good intelligence. It does a great job at stopping threats."

"The most valuable feature is that it is able to detect any form of infiltration."

More Cisco Secure IPS (NGIPS) pros

"It provides good visibility to the customers. People are still evaluating it, but it provides visibility and helps them to take action to remediate and mitigate the issues that are highlighted on the dashboard. It has good integration with the Cisco switching platform."

"From a security standpoint, it is just seeing pockets as well. Visibility is very key for us."

"The feature most valuable for us is to gain visibility of what is actually floating through, so we can stop it based on whether it's good or bad traffic."

"The most valuable feature is NetFlow. The beginning of any security investigation starts with NetFlow data."

"StealthWatch lets me see the ports running in and out and the country. It has excellent reporting, telemetry, and artificial intelligence features. With the telemetry, I can set thresholds to detect sudden changes and the alarms go through the PLC parts. I can see all the ports running on that trunk."

"It has been pretty stable since we deployed it, and everything seems to be working fine."

"The deployment was a breeze. It is a very innovative and robust platform that allows us to bi-directionally stitch together data elements from Netflow-enabled devices to provide a context for network utilization."

"Provides easily identifiable anomalies that you can't see with signature detections."

More Cisco Secure Network Analytics pros

Cons

"The price of Cisco NGIPS could improve."

"The GUI could be improved. The pain point is really only focused toward the security engineer who configures it and the operation engineer who manages it."

"I would like to see better integration with SIEMs."

"The only thing I think they may need to improve on a little bit is identifying software more correctly when you do network discovery."

"The SSL decrypt could be improved, but it's normal. All the devices in our platform need a lot of memory or CPU to do the SSL decrypt. This is an issue to improve in all platforms, not only in Cisco."

"If there was a software-based solution for scaling up then it would be much better."

"The look and feel of the console could be updated."

"There are certain limitations that need to be addressed."

More Cisco Secure IPS (NGIPS) cons

"We've run into some issues with the configuration."

"It's a good solid solution but integration with Network Access Control products with Cisco ISE would be good."

"The version with the Dell server had iDRAC problems. Often, it reported iDRAC failure."

"It is time-consuming to set it up and understand how the tool works."

"There could be better integration on the programming side, which uses Python. StealthWatch could provide a template for Python to manage the switches. For example, it would be nice if StealthWatch bounced a port automatically it detected something anomalous."

"Cisco Stealthwatch needs more integration with device discovery. We have to do a lot of hard work to figure out what things are. Better service integration is required."

"The visualization could be improved, the GUI is not the best."

"Cisco Stealthwatch can improve by having bundled packages for popular add-ons. It would be a lot easier for people implementing it, have let's say a better way to use the product."

More Cisco Secure Network Analytics cons

Pricing and Cost Advice

"The pricing could be improved. Our customers have a yearly license."

"I would rate the pricing four out of 10."

"The licensing can be billed annually or in multi-year contracts such as three, four, or five years."

"It is expensive. It has separate licensing for all the features, and every feature set seems to require another license. Licensing is on a yearly basis. There are no additional costs besides the standard licensing fee."

"The price of Cisco NGIPS could be reduced. It is more expensive than other solutions."

"The weakness of Cisco Firepower is the cost. Some of the customers see it as very expensive."

"When it comes to pricing you pay for a permanent licensing structure. One, three, and five-year options. There are no extra costs."

"The price of the solution is expensive to a degree it cannot be used by small businesses. It is best suited for medium and enterprise businesses."

More Cisco Secure IPS (NGIPS) pricing and cost advice

"Pricing is much higher compared to other solutions."

"Licensing is on a yearly basis."

"This is an expensive product. We have quit paying for support because we don't want to have to upgrade it and keep paying for it."

"The licensing costs are outrageous."

"NetFlow is very expensive."

"One of the things which bugs me about Lancope is the licensing. We understand how licensing works. Our problem is when we bought and purchased most of these Lancope devices, we did so with our sister company. Somewhere within the purchase and distribution, licensing got mixed up. That is all on Cisco, and it is their responsibility. They allotted some of our sister company's equipment to us, and some of our equipment to them. To date, they have never been able to fix it."

"The yearly licensing cost is about $50,000."

"Today, we are part of the big Cisco ELA, and it is a la carte. We can get orders for whatever we want. At the end of the day, we have to pay for it in one big expense, but that is fine. We are okay with that."

More Cisco Secure Network Analytics pricing and cost advice

See which vendors are best for you

Use our free recommendation engine to learn which Intrusion Detection and Prevention Software (IDPS) solutions are best for your needs.

See recommendations

802,829 professionals have used our research since 2012.

Top Industries

By visitors reading reviews

Computer Software Company

20%

University

12%

Financial Services Firm

Government

Computer Software Company

32%

Financial Services Firm

11%

Government

Manufacturing Company

Company Size

By reviewers

Large Enterprise

Midsize Enterprise

Small Business

Questions from the Community

What do you like most about Cisco NGIPS?

The product's initial setup phase was easy.

See all answers

What is your experience regarding pricing and costs for Cisco NGIPS?

Cisco NGIPS is an expensive product.

See all answers

What needs improvement with Cisco NGIPS?

There are certain limitations that need to be addressed.

See all answers

What do you like most about Cisco Stealthwatch?

The most valuable feature of Cisco Secure Network Analytics is the Threat Intelligence integration.

See all answers

What is your experience regarding pricing and costs for Cisco Stealthwatch?

I would rate Cisco SNA as a nine out of ten in terms of costliness.

See all answers

What needs improvement with Cisco Stealthwatch?

One area that could be improved in SNA is the integration with Cisco ISE for user and session details, which currently requires additional setup.

See all answers

Comparisons

Check Point IPS vs Cisco Secure IPS (NGIPS)

Compared 22% of the time

Trend Micro TippingPoint Threat Protection System vs Cisco Secure IPS (NGIPS)

Compared 20% of the time

Fortinet FortiGate IPS vs Cisco Secure IPS (NGIPS)

Compared 19% of the time

Trellix Intrusion Prevention System vs Cisco Secure IPS (NGIPS)

Compared 12% of the time

Palo Alto Networks Advanced Threat Prevention vs Cisco Secure IPS (NGIPS)

Compared 11% of the time

More Cisco Secure IPS (NGIPS) Competitors

Darktrace vs Cisco Secure Network Analytics

Compared 17% of the time

ThousandEyes vs Cisco Secure Network Analytics

Compared 9% of the time

Vectra AI vs Cisco Secure Network Analytics

Compared 7% of the time

Arista NDR vs Cisco Secure Network Analytics

Compared 4% of the time

ExtraHop Reveal(x) vs Cisco Secure Network Analytics

Compared 4% of the time

More Cisco Secure Network Analytics Competitors

Product Reports

Buyer's Guide

Cisco Secure IPS (NGIPS)

September 2024

Download Cisco Secure IPS (NGIPS) product report

Buyer's Guide

Cisco Secure Network Analytics

September 2024

Download Cisco Secure Network Analytics product report

Also Known As

Sourcefire NGIPS, Firepower NGIPS

Cisco Stealthwatch, Cisco Stealthwatch Enterprise, Lancope StealthWatch

Learn More

Cisco

Video not available

Cisco

Overview

Cisco Secure IPS (NGIPS) is designed for intrusion prevention, firewalling, and application filtering. It's deployed on-premises to secure networks and perform real-time traffic inspection, defining security policies to prevent malicious attacks.

Organizations use Cisco Secure IPS (NGIPS) to safeguard data centers, enterprise networks, and server environments. This technology integrates with advanced threat intelligence and multiple security features to enhance cybersecurity. Users deploy it at network perimeters, for firewall replacement, and to secure critical infrastructure. The platform supports modularity, anomaly detection, scalability, and centralized management, making it a comprehensive solution for modern security needs.

What are the key features of Cisco Secure IPS (NGIPS)?

Intrusion Prevention: Detects and blocks various network threats.
Automation: Streamlines security processes for efficiency.
Advanced Threat Detection: Identifies and mitigates sophisticated attacks.
Centralized Management: Simplifies oversight with a unified interface.
Anomaly Detection: Flags unusual behaviors and potential threats.
Compatibility with Firepower: Integrates seamlessly with other Cisco solutions.
DDoS Protection: Mitigates distributed denial-of-service attacks.
Signature Updates: Ensures the latest threat definitions are in use.
Access Policy Management: Enables precise control over user access.
Real-Time Traffic Inspection: Monitors traffic to detect threats immediately.

What benefits and ROI should users look for in reviews?

Enhanced Security: Improved protection against cyber threats.
Operational Efficiency: Reduced time and effort in managing security.
Scalability: Seamless scaling to accommodate growing network demands.
Compliance: Helps meet regulatory and industry standards.
Risk Mitigation: Reduced risk of data breaches and cyber attacks.
Visibility: Increased insight into network traffic and threats.

This technology is widely implemented across industries such as finance, healthcare, and retail, ensuring robust security for sensitive data and critical infrastructure. Typical deployments include network perimeters and data centers, providing real-time threat detection and unified security management. The combination of integrated threat intelligence and advanced security features helps enterprises strengthen their defenses against evolving cyber threats.

Cisco Secure Network Analytics is a highly effective network traffic analysis (NTA) solution that enables users to find threats in their network traffic even if those threats are encrypted. It turns an organization’s network telemetry into a tool that creates a complete field of vision for the organization’s administrators. Users can find threats that may have infiltrated their systems and stop them before they can do irreparable harm.

Cisco Secure Network Analytics Benefits

A few ways that organizations can benefit by choosing to deploy Cisco Secure Network Analytics include:

Security scaling. Secure Network Analytics makes it easy for organizations to scale up their level of network protection to match the growth that their business is experiencing. It can be deployed on whatever type of system is necessary. Users will have their growth needs met at every stage of their business journey because the solution offers users the ability to use it on-premises or in the cloud and it can be consumed as a SaaS-based or license-based solution. Whenever any kind of device is added, Secure Network Analytics can automatically classify that device so that it is seamlessly integrated into its network protection system.

Detects threats as they appear. Users gain the ability to scan their network traffic for even the most advanced threats at all times. Secure Network Analytics easily identifies the early warning signs that are typically initiated before attacks are conducted by bad actors. Once these signs are found, users are warned so that they can take steps to prevent those threats from escalating. This also enables users to determine the source of the threat and whether it might have spread further than initially thought.

Eliminate blind spots. Organizations that use Secure Network Analytics can view their network traffic across both private networks and public cloud environments. The scanning power of the solution allows users to gain complete visibility with a fewer number of sensors than their competitors require to achieve a similar level of protection.

Cisco Secure Network Analytics Features

Some of the many features that Cisco Secure Network Analytics offers include:

Centralized security management. Secure Network Analytics’ Identity Services Engine feature enables users to control their network from a single graphical user interface. Administrators can simplify their jobs by controlling profiler, posture, guest, authentication, and authorization services from a single pane of glass.

Machine learning tools. Secure Network Analytics uses machine learning to generate alerts when malicious or suspicious activity is detected. It also analyzes the threat so that users gain insight into the nature of the dangers that confront them. Additionally, it examines the threats to determine whether they are actual threats or false alarms. This significantly reduces the number of false alarms that administrators have to spend time attempting to resolve.

Automation. Users can automate routine tasks that users would otherwise have to handle manually. This automation feature frees administrators and employees to handle other more critical tasks.

Reviews from Real Users

Cisco Secure Network Analytics is a solution that stands out even when compared to many other comparable products. Two major advantages that it offers are the way that it enables users to define the threshold at which the solution will issue a warning to administrators and the predefined alerts that it offers straight out of the box.

Gerald J., the information technology operations supervisor at Aboitiz Equity Ventures, Inc., writes, “StealthWatch lets me see the ports running in and out and the country. It has excellent reporting, telemetry, and artificial intelligence features. With the telemetry, I can set thresholds to detect sudden changes and the alarms go through the PLC parts. I can see all the ports running on that trunk.”

A senior security engineer at a tech services company, says, “Cisco Stealthwatch has predefined alerts for different types of security issues that might happen in the network. Whether it's PCs or servers that are used for botnets or Bitcoin mining we receive the alerts automatically. This functionality is what we receive from the solution out of the box.”

Sample Customers

American Electric Power, Huntington Bank, Keycorp, Nationwide, Transunion, Marriott, Inova Health, Ford, Thomson Reuters, Dow Chemical, Equifax, Chevron, Walmart, Coca Cola

Edge Web Hosting, Telenor Norway, Ivy Tech Community College of Indiana, Webster Financial Corporation, Westinghouse Electric, VMware, TIAA-CREF

Buyer's Guide

Cisco Secure IPS (NGIPS) vs. Cisco Secure Network Analytics

January 2020

Free Report: Cisco Secure IPS (NGIPS) vs. Cisco Secure Network Analytics

Find out what your peers are saying about Cisco Secure IPS (NGIPS) vs. Cisco Secure Network Analytics and other solutions. Updated: January 2020.

DOWNLOAD NOW

802,829 professionals have used our research since 2012.

See our Cisco Secure IPS (NGIPS) vs. Cisco Secure Network Analytics report.

We monitor all Intrusion Detection and Prevention Software (IDPS) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.