Try our new research platform with insights from 80,000+ expert users

Vectra AI vs Zscaler Cloud IPS comparison

 

Comparison Buyer's Guide

Executive SummaryUpdated on Dec 19, 2024

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Categories and Ranking

Vectra AI
Ranking in Intrusion Detection and Prevention Software (IDPS)
3rd
Average Rating
8.6
Reviews Sentiment
7.1
Number of Reviews
44
Ranking in other categories
Network Detection and Response (NDR) (2nd), Extended Detection and Response (XDR) (15th), Identity Threat Detection and Response (ITDR) (10th), AI-Powered Cybersecurity Platforms (6th)
Zscaler Cloud IPS
Ranking in Intrusion Detection and Prevention Software (IDPS)
16th
Average Rating
9.0
Reviews Sentiment
6.8
Number of Reviews
5
Ranking in other categories
No ranking in other categories
 

Mindshare comparison

As of April 2025, in the Intrusion Detection and Prevention Software (IDPS) category, the mindshare of Vectra AI is 11.3%, up from 10.9% compared to the previous year. The mindshare of Zscaler Cloud IPS is 1.4%, up from 1.2% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Intrusion Detection and Prevention Software (IDPS)
 

Featured Reviews

Mohammad Alkurdi - PeerSpot reviewer
Innovative detection features enhance monitoring
The advantages of the integration are not entirely out-of-the-box. You have to do it manually. When I'm doing tier response, an out-of-the-box solution is not available. You need to have a Linux server, and from the Linux server, you must perform AI tasks, and there is a lot to be handled in the back end. This is a major consideration about them. The recall feature, if it can be placed in some areas instead of the cloud, and charged for, would be better. Recall the storage where you watch all the traffic, and you can recall it and try to analyze it in the back end. It’s cloud-based. If they offer it on-prem, it would be better. I think they have a solution, but I have never tested it, to be honest with you.
Atdhe Zyhranaj - PeerSpot reviewer
It allows for a separation between cloud applications and URL filtering
We recently had a significant issue with Zscaler. I think they have too many customers and some of their connection edge nodes went down because there were too many requests. I think they aren't scaling enough to keep up with the demand in some areas. That's one thing they should improve.

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"Vectra produces actionable data using automation. That has helped us. It's less manpower now to look at incidents, which has definitely increased efficiency. Right now, in a lot of cases, our mean time to detection is within zero days. This tells me by the time something happened, and we were able to detect it, it was within the same day."
"Vectra AI helped our team be more productive and save time. We have less work thanks to it."
"It keeps up with the network traffic, which is a good thing. It provides more context to plain alerts compared to using an older system. So, it helps an analyst reduce the information overload."
"Most of their use cases, including deployment, are managed by the tool itself, requiring less manual input from our team."
"The biggest feature for us, because we are heavy Microsoft users, is its integration with Office 365. On top of Vectra AI, we use all of the Microsoft security platforms, such as Defender ATP and Sentinel. Having full integration and a central platform to look at all of the threats that are coming through from the different platforms is a huge benefit for us."
"It's easy to manage, and I love the UX. It's very well designed. When we are looking for something, it's quite easy to find it."
"Vectra AI can bring the ability to detect intrusion on the network more so than legacy IDS tools."
"I like the way that Vectra AI focuses on the internal network. Nowadays, most of the attackers are already inside, and they can be inside for many years before they start attacking. With normal monitoring, it's quite difficult to find them."
"Cloud IPS integration is seamless, and it uses a Zero Trust model. It also simplifies overall user access management."
"The best feature is that Zscaler allows for a separation between cloud applications and URL filtering. For example, under the cloud application segment, I can bypass Microsoft Office 365 without the need to add URLs manually. It's one click, so that's handy."
"The initial setup process is easy."
"The product's most valuable feature is complete SSL inspection."
"The initial setup is straightforward and easy in comparison with other solutions."
 

Cons

"Some of their integrations with other sources of data, like external threat feeds, took a bit more work than I had hoped to get integrated."
"We are using SMB 3.0, which is an encrypted protocol. When we get some alerts or something, we cannot go deep into the protocol to see what's wrong because it's encrypted. We need to decrypt the protocol in another way, which is quite difficult. We might go back to SMB 2.0 just for this reason, but that's not a good solution."
"A blind spot that I have is around the ease with which you can automate threat intervention."
"What is most important for us is to have one place where we can manage a few brains because we are based on a zero-trust network. As a result, each customer needs to have a separate brain. For the SOC team, we need to have one place where the SOC analyst can go to visit the website and from that site manage all of the customers. Right now, Vectra AI doesn't have this capability, and I would really like to have this feature."
"An area for improvement in Vectra AI is reporting because it currently needs some details. For example, when you download a report from Vectra AI, you won't see complete information about the alerts or triggers. Another area for improvement in the tool is that sometimes, an alert has high severity, yet it's marked as low severity. Vectra AI should have a mechanism to change the severity level from low to high or critical."
"One area where there's room for improvement is the absence of a comprehensive TCP recording and replay feature."
"You are always limited with visibility on the host due to the fact that it is a network based tool. It gives you visibility on certain elements of the attack path, but it doesn't necessarily give you visibility on everything. Specifically, the initial intrusion side of things that doesn't necessarily see the initial compromise. It doesn't see stuff that goes on the host, such as where scripts are run. Even though you are seeing traffic, it doesn't necessarily see the malicious payload. Therefore, it's very difficult for it to identify these type of host-driven complex attacks."
"There could be an option where Vectra manages the solution remotely, and when there is an attack, there could be a notification center to give us information about the attack."
"We recently had a significant issue with Zscaler. I think they have too many customers and some of their connection edge nodes went down because there were too many requests. I think they aren't scaling enough to keep up with the demand in some areas. That's one thing they should improve."
"There is always room for improvement."
"We encounter issues sharing IP addresses with other companies using the software."
"They have given limited free access for a year. Instead, they should increase the file size and give limited free access for around two months. It will allow engineers to evaluate the product."
"When it comes to scalability, the IPsec could be improved."
 

Pricing and Cost Advice

"We have a desire to increase our use. However, it all comes down to budget. It's a very expensive tool that is very difficult to prove business support for. We would like to have two separate networks. We have our corporate network and PCI network, which is segregated due to payment processing. We don't have it for deployed in the PCI network. It would be good to have it fully deployed there to provide us with additional monitoring and control, but the cost associated with their licensing model makes it prohibitively expensive to deploy."
"The pricing is very good. It's less expensive than many of the tools out there."
"The pricing is high."
"The solution's pricing was 50 percent lower than the other vendors shortlisted."
"My company pays for the Vectra AI licensing fee yearly. I know the figure because my company recently renewed the license, and it's okay, at least for the financial sector."
"Vectra's licensing model could scale to our research network, which has multiple, 100-gigabit links."
"The license is based on the concurrent IP addresses that it's investigating. We have 9,800 to 10,000 IP addresses."
"It's relatively on the pricier side, but when compared to other solutions. It's not the most budget-friendly option, but it can be considered somewhat more cost-effective in comparison to other alternatives."
"Zscaler has so far been solely responsible for all the sales we have done with it, so it would be more suited than us to address any issues concerning the pricing."
"The software has become more expensive at present."
"The product is not affordable for small and medium enterprises."
report
Use our free recommendation engine to learn which Intrusion Detection and Prevention Software (IDPS) solutions are best for your needs.
848,716 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Financial Services Firm
13%
Computer Software Company
13%
Manufacturing Company
8%
Government
7%
Financial Services Firm
13%
Manufacturing Company
12%
Computer Software Company
11%
Healthcare Company
7%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
No data available
 

Questions from the Community

What is the biggest difference between Corelight and Vectra AI?
The two platforms take a fundamentally different approach to NDR. Corelight is limited to use cases that require the eventual forwarding of events and parsed data logs to a security team’s SIEM or ...
What do you like most about Vectra AI?
The solution is currently used as a central threat detection and response system.
What is your experience regarding pricing and costs for Vectra AI?
It is very acceptable when you compare it with Darktrace, for example.
What do you like most about Zscaler Cloud IPS?
The product's most valuable feature is complete SSL inspection.
What is your experience regarding pricing and costs for Zscaler Cloud IPS?
The product is not affordable for small and medium enterprises.
What needs improvement with Zscaler Cloud IPS?
They have given limited free access for a year. Instead, they should increase the file size and give limited free access for around two months. It will allow engineers to evaluate the product.
 

Also Known As

Vectra Networks, Vectra AI NDR
No data available
 

Overview

 

Sample Customers

Tribune Media Group, Barry University, Aruba Networks, Good Technology, Riverbed, Santa Clara University, Securities Exchange, Tri-State Generation and Transmission Association
Zenith Live, Azure, Carlsberg Group
Find out what your peers are saying about Vectra AI vs. Zscaler Cloud IPS and other solutions. Updated: April 2025.
848,716 professionals have used our research since 2012.