Try our new research platform with insights from 80,000+ expert users

Vectra AI vs Zscaler Cloud IPS comparison

 

Comparison Buyer's Guide

Executive SummaryUpdated on Dec 19, 2024

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Categories and Ranking

Vectra AI
Ranking in Intrusion Detection and Prevention Software (IDPS)
3rd
Average Rating
8.6
Reviews Sentiment
7.1
Number of Reviews
44
Ranking in other categories
Network Detection and Response (NDR) (2nd), Extended Detection and Response (XDR) (15th), Identity Threat Detection and Response (ITDR) (10th), AI-Powered Cybersecurity Platforms (6th)
Zscaler Cloud IPS
Ranking in Intrusion Detection and Prevention Software (IDPS)
16th
Average Rating
9.0
Reviews Sentiment
6.8
Number of Reviews
5
Ranking in other categories
No ranking in other categories
 

Mindshare comparison

As of April 2025, in the Intrusion Detection and Prevention Software (IDPS) category, the mindshare of Vectra AI is 11.3%, up from 10.9% compared to the previous year. The mindshare of Zscaler Cloud IPS is 1.4%, up from 1.2% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Intrusion Detection and Prevention Software (IDPS)
 

Featured Reviews

Mohammad Alkurdi - PeerSpot reviewer
Innovative detection features enhance monitoring
The advantages of the integration are not entirely out-of-the-box. You have to do it manually. When I'm doing tier response, an out-of-the-box solution is not available. You need to have a Linux server, and from the Linux server, you must perform AI tasks, and there is a lot to be handled in the back end. This is a major consideration about them. The recall feature, if it can be placed in some areas instead of the cloud, and charged for, would be better. Recall the storage where you watch all the traffic, and you can recall it and try to analyze it in the back end. It’s cloud-based. If they offer it on-prem, it would be better. I think they have a solution, but I have never tested it, to be honest with you.
Atdhe Zyhranaj - PeerSpot reviewer
It allows for a separation between cloud applications and URL filtering
We recently had a significant issue with Zscaler. I think they have too many customers and some of their connection edge nodes went down because there were too many requests. I think they aren't scaling enough to keep up with the demand in some areas. That's one thing they should improve.

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"We particularly like the user experience around the dashboard, which we find to be much more straightforward than the dashboard of some of the competitive products... Vectra is a really easy system to understand and use to prioritize where we need to focus our security resources."
"It has helped us to organize our security. We get a better overview on what is happening on the network, which has helped us get quicker responses to users. If we see malicious activity, then we can quickly take action on it. Previously, we weren't getting an overview as fast as we are now, so we can now provide a quicker response."
"One of the most valuable features is all the correlation that it does using AI and machine learning. An example would be alerting on a host and then alerting on other things, like abnormal behavior, that it has noticed coming from the same host. It's valuable because we're a very lean team."
"We often use the new feature to create PCAP files from the whole data traffic. It makes it much easier to find network problems such as whether the server is responding to a request. It has nothing to do with security, but it helps a lot to find other problems."
"One of the most valuable features of the platform is its ability to provide you with aggregated risk scores based on impact and certainty of threats being detected. This is both applied to individual and host detections. This is important because it enables us to use this platform to prioritize the most likely imminent threats. So, it reduces alert fatigue follow ups for security operation center analysts. It also provides us with an ability to prioritize limited resources."
"The solution provide visibility into behaviors across the full lifecycle of an attack in our network, beyond just the Internet gateway. It makes our security operations much more effective because we are now looking not just at traffic on the border, but we're looking at east-west internal traffic. Now, not only will we see if an exploit kit is being downloaded, but we would be able to see then if that exploit kit was then laterally distributed into our environment."
"The automatic filtering that they provide is valuable. The logic inside that makes some detections instead of us is very useful. We are confident that if we are just looking into it and there is nothing, nothing could happen."
"Most of their use cases, including deployment, are managed by the tool itself, requiring less manual input from our team."
"The initial setup is straightforward and easy in comparison with other solutions."
"The product's most valuable feature is complete SSL inspection."
"Cloud IPS integration is seamless, and it uses a Zero Trust model. It also simplifies overall user access management."
"The best feature is that Zscaler allows for a separation between cloud applications and URL filtering. For example, under the cloud application segment, I can bypass Microsoft Office 365 without the need to add URLs manually. It's one click, so that's handy."
"The initial setup process is easy."
 

Cons

"I'd like to be able to get granular reports and to be able to output them into formats that are customizable and more useful. The reporting GUI is lacking."
"A blind spot that I have is around the ease with which you can automate threat intervention."
"Some of the customization could be improved. Everything is provided for you as an easy solution to use, but working with it and doing specific development could be worked on a bit more in the scope of an incident response team."
"There could be an option where Vectra manages the solution remotely, and when there is an attack, there could be a notification center to give us information about the attack."
"One area where there's room for improvement is the absence of a comprehensive TCP recording and replay feature."
"We would like to see more information with the syslogs. The syslogs that they send to our SIEM are a bit short compared to what you can see. It would be helpful if they send us more data that we can incorporate into our SIEM, then can correlate with other events."
"For S&D account scans, it would be easier if Vectra AI could triage with users. If a client uses a lot of accounts, then it could indicate that these accounts are benign, for example. That would help a lot."
"An area for improvement in Vectra AI is reporting because it currently needs some details. For example, when you download a report from Vectra AI, you won't see complete information about the alerts or triggers. Another area for improvement in the tool is that sometimes, an alert has high severity, yet it's marked as low severity. Vectra AI should have a mechanism to change the severity level from low to high or critical."
"When it comes to scalability, the IPsec could be improved."
"We recently had a significant issue with Zscaler. I think they have too many customers and some of their connection edge nodes went down because there were too many requests. I think they aren't scaling enough to keep up with the demand in some areas. That's one thing they should improve."
"We encounter issues sharing IP addresses with other companies using the software."
"They have given limited free access for a year. Instead, they should increase the file size and give limited free access for around two months. It will allow engineers to evaluate the product."
"There is always room for improvement."
 

Pricing and Cost Advice

"Vectra's licensing model could scale to our research network, which has multiple, 100-gigabit links."
"The pricing is very good. It's less expensive than many of the tools out there."
"At the time of purchase, we found the pricing acceptable. We had an urgency to get something in place because we had a minor breach that occurred at the tail end of 2016 to the beginning of 2017. This indicated we had a lack of ability to detect things on the network. Hence, why we moved quickly to get into the tool in place. We found things like Bitcoin mining and botnets which we closed quickly. In that regard, it was worth the money."
"There are additional features that can be purchased in addition to the standard licensing fee, such as Cognito Recall and Stream."
"From a pricing perspective, they are very commercially competitive. From a licensing perspective, just be conscious that some of their future cloud solutions come with additional subscriptions. Also, if you're outside of the US, you will get charged freight for the device back to your country."
"Vectra's pricing is too high. All schools will not be able to afford it. Vectra will only end up targeting higher education and higher value independence purely because of the price. A lot of schools would love to have a product like Vectra AI, but they simply can't because they struggle to even pay the high E5 licensing from Microsoft. When you're up against that, Vectra AI is never going to be within the sector's price range."
"The license is based on the concurrent IP addresses that it's investigating. We have 9,800 to 10,000 IP addresses."
"Cost is a big factor, as always. However, I think we have a very good price–performance ratio."
"Zscaler has so far been solely responsible for all the sales we have done with it, so it would be more suited than us to address any issues concerning the pricing."
"The product is not affordable for small and medium enterprises."
"The software has become more expensive at present."
report
Use our free recommendation engine to learn which Intrusion Detection and Prevention Software (IDPS) solutions are best for your needs.
844,944 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Financial Services Firm
13%
Computer Software Company
13%
Manufacturing Company
8%
Government
7%
Financial Services Firm
13%
Manufacturing Company
12%
Computer Software Company
12%
Healthcare Company
7%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
No data available
 

Questions from the Community

What is the biggest difference between Corelight and Vectra AI?
The two platforms take a fundamentally different approach to NDR. Corelight is limited to use cases that require the eventual forwarding of events and parsed data logs to a security team’s SIEM or ...
What do you like most about Vectra AI?
The solution is currently used as a central threat detection and response system.
What is your experience regarding pricing and costs for Vectra AI?
It is very acceptable when you compare it with Darktrace, for example.
What do you like most about Zscaler Cloud IPS?
The product's most valuable feature is complete SSL inspection.
What is your experience regarding pricing and costs for Zscaler Cloud IPS?
The product is not affordable for small and medium enterprises.
What needs improvement with Zscaler Cloud IPS?
They have given limited free access for a year. Instead, they should increase the file size and give limited free access for around two months. It will allow engineers to evaluate the product.
 

Also Known As

Vectra Networks, Vectra AI NDR
No data available
 

Overview

 

Sample Customers

Tribune Media Group, Barry University, Aruba Networks, Good Technology, Riverbed, Santa Clara University, Securities Exchange, Tri-State Generation and Transmission Association
Zenith Live, Azure, Carlsberg Group
Find out what your peers are saying about Vectra AI vs. Zscaler Cloud IPS and other solutions. Updated: March 2025.
844,944 professionals have used our research since 2012.