Red Hat Advanced Cluster Security for Kubernetes vs SUSE NeuVector comparison

Red Hat and SUSE are both solutions in the Container Security category. Red Hat is ranked #20 with an average rating of 8.1, while SUSE is ranked #22 with an average rating of 8.0. Red Hat holds a 2.3% mindshare in Container Security, compared to SUSE’s 2.8% mindshare. Additionally, 100% of Red Hat users are willing to recommend the solution, compared to 87% of SUSE users who would recommend it.

Comparison Buyer's Guide

Download the report

Executive SummaryUpdated on Sep 16, 2024

Red Hat Advanced Cluster Security for Kubernetes and SUSE NeuVector are two prominent security solutions for Kubernetes environments. SUSE NeuVector often has the upper hand due to its robust features, making it worth the investment despite higher costs.

Features: Red Hat offers policy management, integration with existing tools, and strong pricing support. SUSE NeuVector provides comprehensive runtime security, deep network visibility, and advanced security features.

Room for Improvement: Red Hat users desire better documentation, more intuitive configurations, and enhanced user interface. SUSE NeuVector users cite the need for enhanced automation, a more modern design, and user-friendly dashboards.

Ease of Deployment and Customer Service: Red Hat is noted for its smooth deployment process and responsive customer support. SUSE NeuVector, while slightly more complex to deploy, offers substantial support and documentation.

Pricing and ROI: Red Hat is viewed as more affordable, delivering solid ROI for its price. SUSE NeuVector, although more costly, is perceived to offer greater value through its advanced capabilities, justifying the higher investment.

To learn more, read our detailed Red Hat Advanced Cluster Security for Kubernetes vs. SUSE NeuVector Report (Updated: January 2025).

Buyer's Guide

Red Hat Advanced Cluster Security for Kubernetes vs. SUSE NeuVector

January 2025

Download the complete report

Helped 838,640 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Categories and Ranking

SentinelOne Singularity Clo...

Mindshare comparison

As of February 2025, in the Container Security category, the mindshare of SentinelOne Singularity Cloud Security is 2.0%, up from 0.9% compared to the previous year. The mindshare of Red Hat Advanced Cluster Security for Kubernetes is 2.3%, down from 3.1% compared to the previous year. The mindshare of SUSE NeuVector is 2.8%, down from 3.1% compared to the previous year. It is calculated based on PeerSpot user engagement data.

Container Security

Featured Reviews

Andrew W

VP - Information Technology at a financial services firm with 201-500 employees

Tells us about vulnerabilities as well as their impact and helps to focus on real issues

Looking at all the different pieces, it has got everything we need. Some of the pieces we do not even use. For example, we do not have Kubernetes Security. We are not running any K8 clusters, so it is good for us. Overall, we find the solution to be fantastic. There can be additional education components. This may not be truly fair to them because of what the product is going for, but it would be great to see additional education for compliance. It is not a criticism of the tool per se, but anything to help non-development resources understand some of the complexities of the cloud is always appreciated. Any additional educational resources are always helpful for security teams, especially those without a development background.

Read full review

Daniel Stevens

Software Engineer at Galley

Offers easy management and container connection with HTTPS, but the support needs to improve

I have experience with the solution's setup in Rio de Janeiro, Brazil and our company has assisted in the development of a cluster in a research department, but we didn't start from scratch because we have IT professionals who have installed Kubernetes across 12 nodes of a cluster and a new environment can be created for a new platform. I also had another setup experience of Red Hat Advanced Cluster Security for Kubernetes in Portugal where I had to implement the solution in a cluster of 22 computer servers, which was completed with assistance from the IT department of the company. The initial setup process of the solution can be considered as difficult. The setup process involves using the permissions, subnets and range of IPs, which makes it complex. Deploying Red Hat Advanced Cluster Security for Kubernetes takes around eight to ten hours for new clusters. The solution's deployment can be divided into three parts. The first part involves OpenStack, where the cluster's resources need to be identified. The second part involves virtualizing assets and identifying other physical assets, for which OpenStack, Kubernetes, or OpenShift are used. The third part of the deployment involves dividing the networks into subnetworks and implementing automation to deploy the microservices using Helm. The number of professionals required for the solution's deployment depends upon the presence of automated scripts. Ideally, two or three professionals are required to set up Red Hat Advanced Cluster Security for Kubernetes.

Read full review

Danie Joubert

Managing Director at ProQuanta

Good value for money; great for policy management

Our model of deployment for this solution is on-premises. For people looking into this solution and trying to use it for the first time, I'd say make your life easier by using the SUSE product as well on top of your community scale stack. That makes your integration points a lot easier and smoother. I would also say during your initial setup, make sure that your clusters are already in terms of the capabilities with the version required. I would rate this solution an eight, on a scale from one to 10, with one being the worst and 10 being the best. The reason for this rating is that what they offer is solid, but they could expand their service and add more features just to make more things integrated into an enterprise itself.

Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Pros

"It's helped free up staff time so that they can work on other projects."

"The most valuable feature of SentinelOne Singularity Cloud Security is its advanced AI and machine learning capabilities, which allow it to identify and respond to threats in real time."

"Overall, I would rate SentinelOne Singularity Cloud Security a ten out of ten."

"I would definitely recommend SentinelOne Singularity Cloud Security for infrastructure security."

"I like CSPM the most. It captures a lot of alerts within a short period of time. When an alert gets triggered on the cloud, it throws an alert within half an hour, which is very reasonable. It is a plus point for us."

"SentinelOne Singularity Cloud Security offers valuable scalability suitable for organizations of all sizes, from small businesses to large enterprises."

"The visibility PingSafe provides into the Cloud environment is a valuable feature."

"The user interface is well-designed and easy to navigate."

More SentinelOne Singularity Cloud Security pros

"Scalability-wise, I rate the solution a nine out of ten."

"Segmentation is the most powerful feature."

"I like virtualization and all those tools that come with OpenShift. I also like Advanced Cluster Management and the built-in security."

"The benefit of working with the solution is the fact that it's very straightforward...It is a perfectly stable product since the details are very accurate."

"I am impressed with the tool's visibility."

"The most valuable feature is the ability to share resources."

"One of the most valuable features I found was the ability of this solution to map the network and show you the communication between your containers and your different nodes."

"The most beneficial security feature of the product revolves around the areas of vulnerability and configuration."

More Red Hat Advanced Cluster Security for Kubernetes pros

"The solution includes many features, not only for container and client security but also for scanning nodes, networks, and vulnerabilities."

"The initial setup is quite good, it's straightforward."

"The UI has a lot of features."

"The tool's deployment is simple. Also, I am impressed with its risk capabilities."

"The most valuable feature of SUSE NeuVector is the performance, deployment, and cost."

"The features of image scanning and anti-malware are really valuable."

"When it comes to the price, we got a really good deal from the vendor instantly."

"The solution includes many features, not only for container and client security but also for scanning nodes, networks, and vulnerabilities."

More SUSE NeuVector pros

Cons

"The recommended actions aren't always specific, so it might suggest recommendations that don't apply to the particular infrastructure code I'm reviewing."

"PingSafe's current documentation could be improved to better assist customers during the cluster onboarding process."

"I used to work on AWS. At times, I would generate a normal bug in my system, and then I would check PingSafe. The alert used to come after about three and a half hours. It used to take that long to generate the alert about the vulnerability in my system. If a hacker attacks a system and PingSafe takes three to four hours to generate an alert, it will not be beneficial for the company. It would be helpful if we get the alert in five to ten minutes."

"The Infrastructure as Code service available in PingSafe and the services available in AWS cloud security can be merged so that we can get the security data directly from AWS cloud in PingSafe. This way, all the data related to security will be in one single place. Currently, we have to check a couple of things on PingSafe, and we have to validate that same data on the AWS Cloud to be sure. If they can collaborate like that, it will be great."

"A beneficial improvement for PingSafe would be integration with Jira, allowing for a more streamlined ticketing system."

"For vulnerabilities, they are showing CVE ID. The naming convention should be better so that it indicates the container where a vulnerability is present. Currently, they are only showing CVE ID, but the same CVE ID might be present in multiple containers. We would like to have the container name so that we can easily fix the issue."

"I would like PingSafe to add real-time detection of vulnerabilities and cloud misconfigurations."

"We recently adopted a new ticket management solution, so we've asked them to include a connector to integrate that tool with Cloud Native Security directly. We'd also like to see Cloud Native Security add a scan for personally identifying information. We're looking at other tools for this capability, but having that functionality built into Cloud Native Security would be nice. Monitoring PII data is critical to us as an organization."

More SentinelOne Singularity Cloud Security cons

"The deprecation of APIs is a concern since the deprecation of APIs will cause issues for us every time we upgrade."

"They're trying to convert it to the platform as a source. They are moving in the direction of Cloud Foundry so it can be easier for a developer to deploy it."

"The testing process could be improved."

"The solution's visibility and vulnerability prevention should be improved."

"The initial setup is pretty complex. There's a learning curve, and its cost varies across different environments. It's difficult."

"The support and specifications need to be up to date for the cluster technologies"

"I do see that some features associated with the IAST part are not included in the tool, making it an area where improvements are required."

"The solution's price could be better."

More Red Hat Advanced Cluster Security for Kubernetes cons

"We are also working with IaaS VMS, but NeuVector doesn't support virtual machines."

"I would say that this solution should improve monitoring and reporting. I would also like to see more integrations so that we could essentially make it a part of a developing pipeline."

"However, I found that the support in Egypt was not very qualified, and there was a need to upgrade to a higher support layer to solve my issues."

"SUSE NeuVector should provide more security protection rules and better container image scanning."

"SUSE NeuVector could improve by increasing its visibility into other elements of the DevSecOps pipeline. Additionally, scanning around infrastructure would be helpful."

"Using a node port instead of a cluster IP is less ideal when implementing federation features between two clusters and could be improved."

"The image-scanning features need improvement."

"The tool should offer seamless integration of other security tools while in a hybrid environment."

More SUSE NeuVector cons

Pricing and Cost Advice

"The licensing is easy to understand and implement, with some flexibility to accommodate dynamic environments."

"It is a little expensive. I would rate it a four out of ten for pricing."

"I understand that SentinelOne is a market leader, but the bill we received was astronomical."

"PingSafe is less expensive than other options."

"SentinelOne Singularity Cloud Security is costly."

"PingSafe falls somewhere in the middle price range, neither particularly cheap nor expensive."

"Its pricing is okay. It is in line with what other providers were providing. It is not cheap. It is not expensive."

"The price depends on the extension of the solution that you want to buy. If you want to buy just EDR, the price is less. XDR is a little bit more expensive. There are going to be different add-ons for Singularity."

More SentinelOne Singularity Cloud Security pricing and cost advice

"Red Hat offers two pricing options for their solution: a separate price, and a bundled price under the OpenShift Platform Plus."

"It's a costly solution"

"We purchase a yearly basis license for the solution."

"The price of Red Hat Advanced Cluster Security for Kubernetes is better than Palo Alto Prisma."

"The pricing model is moderate, meaning it is not very expensive."

"The solution's pricing could be better. The cost of a subscription is calculated on the basis of work."

"The price of SUSE NeuVector is low. There is an additional cost for support."

"SUSE NeuVector is an open-source solution."

"Licensing fees are paid yearly."

See which vendors are best for you

Use our free recommendation engine to learn which Container Security solutions are best for your needs.

See recommendations

838,640 professionals have used our research since 2012.

Top Industries

By visitors reading reviews

Computer Software Company

18%

Financial Services Firm

15%

Manufacturing Company

Government

Financial Services Firm

25%

Computer Software Company

15%

Government

Manufacturing Company

Computer Software Company

18%

Financial Services Firm

15%

Manufacturing Company

Government

Company Size

By reviewers

Large Enterprise

Midsize Enterprise

Small Business

Questions from the Community

What do you like most about PingSafe?

The dashboard gives me an overview of all the things happening in the product, making it one of the tool's best featu...

See all answers

What is your experience regarding pricing and costs for PingSafe?

SentinelOne is relatively cheap. If ten is the most expensive, I would rate it a seven.

See all answers

What needs improvement with PingSafe?

From my personal experience, the alerting system needs to be faster. If something happens in our infrastructure, the ...

See all answers

What do you like most about Red Hat Advanced Cluster Security for Kubernetes?

I like virtualization and all those tools that come with OpenShift. I also like Advanced Cluster Management and the b...

See all answers

What needs improvement with Red Hat Advanced Cluster Security for Kubernetes?

From an improvement perspective, I would like to create new policies in the tool, especially if it is deployed for th...

See all answers

What is your primary use case for Red Hat Advanced Cluster Security for Kubernetes?

I use the solution in my company for vulnerability management, configuration management, compliance, safety handling,...

See all answers

What do you like most about NeuVector?

The most valuable feature of SUSE NeuVector is its run-time security.

See all answers

What is your experience regarding pricing and costs for NeuVector?

SUSE NeuVector is an open-source solution. You have to pay for the support.

See all answers

What needs improvement with NeuVector?

One area for improvement is NeuVector's ability to import CVEs from different sources. Additionally, using a node por...

See all answers

Comparisons

Wiz vs SentinelOne Singularity Cloud Security

Compared 25% of the time

Cortex Cloud by Palo Alto Networks vs SentinelOne Singularity Cloud Security

Compared 22% of the time

AWS GuardDuty vs SentinelOne Singularity Cloud Security

Compared 8% of the time

Microsoft Defender for Cloud vs SentinelOne Singularity Cloud Security

Compared 7% of the time

More SentinelOne Singularity Cloud Security Competitors

Cortex Cloud by Palo Alto Networks vs Red Hat Advanced Cluster Security for Kubernetes

Compared 26% of the time

CrowdStrike Falcon Cloud Security vs Red Hat Advanced Cluster Security for Kubernetes

Compared 12% of the time

Aqua Cloud Security Platform vs Red Hat Advanced Cluster Security for Kubernetes

Compared 12% of the time

Qualys VMDR vs Red Hat Advanced Cluster Security for Kubernetes

Compared 5% of the time

Sysdig Secure vs Red Hat Advanced Cluster Security for Kubernetes

Compared 5% of the time

More Red Hat Advanced Cluster Security for Kubernetes Competitors

Sysdig Falco vs SUSE NeuVector

Compared 13% of the time

Trivy vs SUSE NeuVector

Compared 13% of the time

Cortex Cloud by Palo Alto Networks vs SUSE NeuVector

Compared 12% of the time

Aqua Cloud Security Platform vs SUSE NeuVector

Compared 11% of the time

Sysdig Secure vs SUSE NeuVector

Compared 7% of the time

More SUSE NeuVector Competitors

Product Reports

Buyer's Guide

SentinelOne Singularity Cloud Security

January 2025

SentinelOne Singularity Cloud Security report

Download SentinelOne Singularity Cloud Security product report

Buyer's Guide

Red Hat Advanced Cluster Security for Kubernetes

February 2025

Red Hat Advanced Cluster Security for Kubernetes report

Download Red Hat Advanced Cluster Security for Kubernetes product report

Buyer's Guide

Container Security

February 2025

Download SUSE NeuVector product report

Also Known As

PingSafe

StackRox

NeuVector

Overview

SentinelOne Singularity Cloud Security protects cloud workloads, offering advanced threat detection and automated response. It integrates seamlessly with cloud environments and secures containerized applications and virtual machines against vulnerabilities.

SentinelOne Singularity Cloud Security is renowned for its efficiency in mitigating threats in real-time. The platform integrates effortlessly with existing cloud environments, ensuring robust cloud security management with minimal manual intervention. Securing containerized applications and virtual machines, it excels in threat intelligence and endpoint protection. However, improvements are needed in performance during high workload periods, and more integrations with third-party tools and better documentation would be beneficial. Users often find the installation process complex, support response times slow, and the dashboard's navigation unintuitive.

What are the key features of SentinelOne Singularity Cloud Security?

Real-time Threat Detection: Identifies and mitigates threats as they occur.
Automated Response: Automatically responds to threats to minimize impact.
Ease of Deployment: Simple setup process with scalable options.
Machine Learning Insights: AI-driven insights enhance threat prevention.
Seamless Integration: Integrates with cloud environments for unified security management.

What are the primary benefits or ROI to expect from SentinelOne Singularity Cloud Security?

Enhanced Threat Mitigation: Improved security against real-time threats.
Reduced Manual Intervention: Automated processes save time and resources.
Scalability: Easily adapts to growing security requirements.
Centralized Management: Manage security across platforms from a single console.
Advanced Threat Intelligence: Provides in-depth analysis and protection.

In specific industries, SentinelOne Singularity Cloud Security is implemented to safeguard critical data and infrastructure. Organizations in finance, healthcare, and technology depend on its real-time threat detection and automated response to protect sensitive information. Its ability to secure containerized applications and virtual machines is particularly valuable in dynamic environments where rapid scaling is necessary.

SentinelOne

Red Hat Advanced Cluster Security for Kubernetes is a Kubernetes-native container security solution that enables your organization to more securely build, deploy, and run cloud-native applications from anywhere. With its built-in security across the entire software development life cycle, you can lower your operational costs, reduce operational risk, and increase developer productivity while improving your security posture immediately. In addition, Red Hat Advanced Cluster Security integrates with security tools and DevOps in an effort to help you mitigate threats and enforce security policies that minimize operational risk to your applications. It also enables you to provide developers with actionable, context-rich guidelines integrated into existing workflows, along with tooling to support developer productivity. The solution is suitable for small, medium, and large-sized companies.

Red Hat Advanced Cluster Security for Kubernetes Features

Red Hat Advanced Cluster Security for Kubernetes has many valuable key features. Some of the most useful ones include:

Vulnerability management: With the Red Hat Advanced Cluster Security for Kubernetes solution, you gain full visibility into your entire cloud-native landscape. The solution makes it possible for your organization to identify and remediate vulnerabilities in Kubernetes configurations and container images, as well as running applications. It also enables you to provide developers with clear and prioritized guidance on fixable vulnerabilities.

Configuration management: The solution makes configuration management easy. To identify missed best practices, you can understand how images, containers, and deployments are configured prior to running. It also allows you to leverage Kubernetes-native capabilities - like admission controllers - to prevent misconfigured workloads from deploying or running.

Compliance: Using Red Hat Advanced Cluster Security for Kubernetes helps you manage compliance with standard-specific checks across CIS Benchmarks, NIST, PCI, and HIPAA, with more than 300 controls and continuous compliance assessments and one-click audit reporting.

Network segmentation: The solution enables you to enforce network policies by using the native capabilities in Kubernetes. You can simulate new policies, visualize existing ones, generate updated YAML files, and apply them directly to Kubernetes.

Multifactor risk profiling: With Red Hat Advanced Cluster Security for Kubernetes, you can use risk rankings by combining vulnerability (CVE) details with rich Kubernetes context and artifact data. This allows you to assess and prioritize risk across your entire environment. In turn, you can accelerate remediation times and productivity.

Threat detection and incident response: By combining custom policies, process allow lists, application and network baselines, and behavioral modeling to identify anomalous behavior, the solution enables you to protect your applications at runtime. You can then leverage Kubernetes-native enforcement capabilities to respond.

Red Hat Advanced Cluster Security for Kubernetes Benefits

There are many benefits to implementing Red Hat Advanced Cluster Security for Kubernetes. Some of the biggest advantages the solution offers include:

Increases protection, scalability, and portability.
Eliminates blind spots.
Reduces time and costs.
Reduces the effort needed to implement security.
Streamlines security analysis, investigation, and remediation by using the rich context Kubernetes provides.
Provides scalability and resiliency native to Kubernetes

Reviews from Real Users

PeerSpot user Igor K., Owner/Full Stack Software Engineer at Maraphonic, Inc., says, “The solution allows teams to create their own virtual spaces and share resources. The most valuable feature is the ability to share resources.”

Red Hat

SUSE NeuVector is a full lifecycle container security solution that helps your organization secure its container infrastructures, manage Kubernetes security risks, and block threats. The NeuVector continuous container security and compliance platform simplifies data protection from pipeline to production, enforces compliance, and provides complete visibility and automated controls for protection against known and unknown threats. In addition, NeuVector is the only Kubernetes-native container security solution that offers a comprehensive risk profile of known vulnerabilities and also delivers immediate protection from all vulnerabilities.

SUSE NeuVector Features

SUSE NueVector has many valuable key features. Some of the most useful ones include:

Container incident detection and prevention
Network security
Runtime security
Supply chain security
Container firewall
Host and platform security
Cloud-native automation and integration
Resource monitoring
Visualization and reporting
High availability
Security
Vulnerability management
Compliance and auditing
Alerting
Logging and Response

SUSE NeuVector Benefits

There are many benefits to implementing NeuVector. Some of the biggest advantages the solution offers include:

Deep packet inspection (DPI): NeuVector applies DPI to identify attacks, detect sensitive data, or verify application access to further reduce the attack surface. Only network layer analysis enables security to detect and verify the allowed protocols, helping security teams enforce business policy.

Real-time protection: NeuVector provides inspection, segmentation, and protection of all traffic into and out of a container. This includes container to container traffic, and ingress from external sources to containers, as well as egress from containers to external applications and the internet. The solution aims to protect your applications from internal application level attacks such as DDoS and DNS.

Capture packets for debugging and threat investigation: WIth NeuVector, you can view summary connection data and drill down into actual packet details for each container, as they scale up and down. When a threat is detected, NeuVector is able to automatically capture and display the packet info, making it easy for you to investigate.

Automated security policies: The NeuVector solution allows you to automate the creation of security policies to protect application workloads in production. The solution also enables you to automate and maintain run-time security policies using Kubernetes custom resource definitions (CRDs), and gives you the option to declare an application security policy at any stage in the pipeline.

Compliance: NeuVector offers detection capabilities and security policy enforcement that prevent PHI and PII exposure, exceed requirements, and simplify reporting for PCI-DSS, GDPR, HIPAA, and more. The solution helps you track critical vulnerabilities and compliance violations so you can quickly identify any that require immediate patching or followup alerts. It also makes it possible for you to manage vulnerability and compliance scan results, with no required integration to external workflow tools.

Reviews from Real Users

A Platform Solution Architect at a tech services company says, “The solution is feature-rich, easy to set up, and has good support.”

SUSE

Sample Customers

Information Not Available

City National Bank, U.S. Department of Homeland Security

Figo, Clear Review, Arvato Bertelsmann, Experian, Chime

Buyer's Guide

Red Hat Advanced Cluster Security for Kubernetes vs. SUSE NeuVector

January 2025

Free Report: Red Hat Advanced Cluster Security for Kubernetes vs. SUSE NeuVector

Find out what your peers are saying about Red Hat Advanced Cluster Security for Kubernetes vs. SUSE NeuVector and other solutions. Updated: January 2025.

DOWNLOAD NOW

838,640 professionals have used our research since 2012.

See our Red Hat Advanced Cluster Security for Kubernetes vs. SUSE NeuVector report.

See our list of best Container Security vendors.

We monitor all Container Security reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.