Try our new research platform with insights from 80,000+ expert users

Vectra AI vs Zscaler Cloud IPS comparison

 

Comparison Buyer's Guide

Executive SummaryUpdated on Dec 19, 2024

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Categories and Ranking

Vectra AI
Ranking in Intrusion Detection and Prevention Software (IDPS)
3rd
Average Rating
8.6
Reviews Sentiment
7.1
Number of Reviews
44
Ranking in other categories
Network Detection and Response (NDR) (2nd), Extended Detection and Response (XDR) (15th), Identity Threat Detection and Response (ITDR) (10th), AI-Powered Cybersecurity Platforms (6th)
Zscaler Cloud IPS
Ranking in Intrusion Detection and Prevention Software (IDPS)
16th
Average Rating
9.0
Reviews Sentiment
6.8
Number of Reviews
5
Ranking in other categories
No ranking in other categories
 

Mindshare comparison

As of April 2025, in the Intrusion Detection and Prevention Software (IDPS) category, the mindshare of Vectra AI is 11.3%, up from 10.9% compared to the previous year. The mindshare of Zscaler Cloud IPS is 1.4%, up from 1.2% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Intrusion Detection and Prevention Software (IDPS)
 

Featured Reviews

Mohammad Alkurdi - PeerSpot reviewer
Innovative detection features enhance monitoring
The advantages of the integration are not entirely out-of-the-box. You have to do it manually. When I'm doing tier response, an out-of-the-box solution is not available. You need to have a Linux server, and from the Linux server, you must perform AI tasks, and there is a lot to be handled in the back end. This is a major consideration about them. The recall feature, if it can be placed in some areas instead of the cloud, and charged for, would be better. Recall the storage where you watch all the traffic, and you can recall it and try to analyze it in the back end. It’s cloud-based. If they offer it on-prem, it would be better. I think they have a solution, but I have never tested it, to be honest with you.
Atdhe Zyhranaj - PeerSpot reviewer
It allows for a separation between cloud applications and URL filtering
We recently had a significant issue with Zscaler. I think they have too many customers and some of their connection edge nodes went down because there were too many requests. I think they aren't scaling enough to keep up with the demand in some areas. That's one thing they should improve.

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"It has helped us to organize our security. We get a better overview on what is happening on the network, which has helped us get quicker responses to users. If we see malicious activity, then we can quickly take action on it. Previously, we weren't getting an overview as fast as we are now, so we can now provide a quicker response."
"Vectra AI helped our team be more productive and save time. We have less work thanks to it."
"It does a reliable job of parsing out the logs of all the network traffic so that we can ingest them into our SIEM and utilize them for threat hunting and case investigations. It is pretty robust and reliable. The administration time that we spend maintaining it or troubleshooting it is very low. So, the labor hour overhead is probably our largest benefit from it. We spend 99% of our time in Vectra investigating cases, responding to incidents, or hunting, and only around 1% of our time is spent patching, troubleshooting, or doing anything else. That's our largest benefit from Vectra."
"The biggest feature for us, because we are heavy Microsoft users, is its integration with Office 365. On top of Vectra AI, we use all of the Microsoft security platforms, such as Defender ATP and Sentinel. Having full integration and a central platform to look at all of the threats that are coming through from the different platforms is a huge benefit for us."
"Vectra AI is the best. It is a major product in our cybersecurity."
"One of the things that we didn't expect to happen was that our network team also jumped on it faster than we thought. In most cases, if it's a security tool that's working on the network part, they can also use it to find out certain flaws that have been in the system. Certain flaws, related to some legacy stuff, were already there for quite a few years, which they couldn't explain at first, but we could explain them based on the timing of certain things."
"It provides various dashboards that facilitate the identification of connections and can detect data exfiltration, meaning data sent from your environment to another."
"The administrative privilege detection feature is the most valuable feature. The admin accounts are often highly accessible to the high-risk component of the environment. If those accounts are compromised or are being used in a suspicious manner, that's high-fidelity events for us to look into."
"The initial setup is straightforward and easy in comparison with other solutions."
"The best feature is that Zscaler allows for a separation between cloud applications and URL filtering. For example, under the cloud application segment, I can bypass Microsoft Office 365 without the need to add URLs manually. It's one click, so that's handy."
"The product's most valuable feature is complete SSL inspection."
"Cloud IPS integration is seamless, and it uses a Zero Trust model. It also simplifies overall user access management."
"The initial setup process is easy."
 

Cons

"It would be commercially beneficial if Vectra AI had something like Darktrace's Antigena Email or something similar to email protection."
"Some of the customization could be improved. Everything is provided for you as an easy solution to use, but working with it and doing specific development could be worked on a bit more in the scope of an incident response team."
"The advantages of the integration are not entirely out-of-the-box. You have to do it manually."
"The false positives and the tuning side of it is something that could use improvement. But that could be from our side."
"Vectra is still limited to packet management. It's only monitoring packet exchanges. While it can see a lot of things, it can't see everything, depending on where it's deployed. It has its limits and that's why I still have my SIEM."
"It does a little bit of packet capture on alert so you can look at the packet capture activity going on, but it doesn't collect a whole lot of data. Sometimes it's only one or two frames, sometimes it does collect more. That's why they have the addition of their Recall platform, because that really does help expand the capability."
"The solution has not reduced the security analyst workload in our organization because we still need to SIEM. Unfortunately, while Vectra, for us, is a brilliant tool for network investigations, giving wonderful visibility, it doesn't go the whole way to replace our SIEM that is needed for compliance. So, I still have the same amount of alerting and logging that I did before. It gives us more defined ability to see incidents, but it doesn't give us enough information to satisfy a PCI or 27001 audit."
"A blind spot that I have is around the ease with which you can automate threat intervention."
"We encounter issues sharing IP addresses with other companies using the software."
"They have given limited free access for a year. Instead, they should increase the file size and give limited free access for around two months. It will allow engineers to evaluate the product."
"We recently had a significant issue with Zscaler. I think they have too many customers and some of their connection edge nodes went down because there were too many requests. I think they aren't scaling enough to keep up with the demand in some areas. That's one thing they should improve."
"There is always room for improvement."
"When it comes to scalability, the IPsec could be improved."
 

Pricing and Cost Advice

"The upfront pricing model that we have would have been more beneficial if it had been a recurring license fee, but that wasn't a massive issue for us. It's fairly priced."
"The solution's pricing was 50 percent lower than the other vendors shortlisted."
"Vectra is a bit on the higher side in terms of price, but they have always been transparent. The reason that they are this good is that they invest, so they need to charge accordingly."
"From a pricing perspective, they are very commercially competitive. From a licensing perspective, just be conscious that some of their future cloud solutions come with additional subscriptions. Also, if you're outside of the US, you will get charged freight for the device back to your country."
"The pricing and licensing are quite straightforward because they're based on the IP licenses. As a result, they are easy to count."
"Their licensing model is antiquated. I'm not a fan of their licensing model. We have to pay for licensing based on four different things. You have to pay based on the number of unique IPs, the number of logs that we send through Recall and Stream, and the size of our environment. They need to simplify their licensing down to just one thing. It should be based on the amount of data, the number of devices, or something else, but there should be just one thing for everything. That's what they need to base their licensing on. Cost-wise, they're not cheap. They were definitely the most expensive option, but you get what you pay for. They're not the cheapest option."
"Its cost is too much. It's an investment that we can afford. It's a lot, but it's worth it."
"Cost is a big factor, as always. However, I think we have a very good price–performance ratio."
"Zscaler has so far been solely responsible for all the sales we have done with it, so it would be more suited than us to address any issues concerning the pricing."
"The software has become more expensive at present."
"The product is not affordable for small and medium enterprises."
report
Use our free recommendation engine to learn which Intrusion Detection and Prevention Software (IDPS) solutions are best for your needs.
845,040 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Financial Services Firm
13%
Computer Software Company
13%
Manufacturing Company
8%
Government
7%
Financial Services Firm
13%
Computer Software Company
13%
Manufacturing Company
12%
Healthcare Company
7%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
No data available
 

Questions from the Community

What is the biggest difference between Corelight and Vectra AI?
The two platforms take a fundamentally different approach to NDR. Corelight is limited to use cases that require the eventual forwarding of events and parsed data logs to a security team’s SIEM or ...
What do you like most about Vectra AI?
The solution is currently used as a central threat detection and response system.
What is your experience regarding pricing and costs for Vectra AI?
It is very acceptable when you compare it with Darktrace, for example.
What do you like most about Zscaler Cloud IPS?
The product's most valuable feature is complete SSL inspection.
What is your experience regarding pricing and costs for Zscaler Cloud IPS?
The product is not affordable for small and medium enterprises.
What needs improvement with Zscaler Cloud IPS?
They have given limited free access for a year. Instead, they should increase the file size and give limited free access for around two months. It will allow engineers to evaluate the product.
 

Also Known As

Vectra Networks, Vectra AI NDR
No data available
 

Overview

 

Sample Customers

Tribune Media Group, Barry University, Aruba Networks, Good Technology, Riverbed, Santa Clara University, Securities Exchange, Tri-State Generation and Transmission Association
Zenith Live, Azure, Carlsberg Group
Find out what your peers are saying about Vectra AI vs. Zscaler Cloud IPS and other solutions. Updated: March 2025.
845,040 professionals have used our research since 2012.