Try our new research platform with insights from 80,000+ expert users
Netsurion Logo

Netsurion pros and cons

Vendor: Netsurion
4.2 out of 5
Leave a review

Pros & Cons summary

Netsurion offers robust security with features such as weekly threat reports and real-time alerts for critical events, enhancing detection and response. Managed Threat Protection aligns with MITRE ATT&CK, supporting industry standards. The solution scales efficiently; however, deployment challenges and manual interventions hinder some agents. Search and report generation can be slow, with passive threat detection needing clearer actionable options. Continuous 24/7 monitoring from the Security Operations Center boosts company security.

Buyer's Guide

Get pricing advice, tips, use cases and valuable features from real users of this product.
Get the report

Prominent pros & cons

PROS

Weekly security reports summarize daily network events, highlighting potential threats and advising on remediation strategies.
Real-time alerts for user lockouts and invalid password attempts enhance IT department responsiveness.
Netsurion satisfies compliance requirements by centralizing the storage of all security event data, which is essential for auditing.
The Managed Threat Protection includes the MITRE ATT&CK Framework, recognized as an industry standard for evaluating threats.
Netsurion's 24/7 monitoring provides actionable threat intelligence, enhancing company security by detecting and preventing malicious activities.

CONS

The deployment of agents poses challenges, often leading to agents quitting or requiring redeployment.
There are issues with long search times, especially when looking back beyond 30 days, even with improvements in version 9 requiring a solid-state hard drive.
Too many domain controllers complicate updates and firewall management.
Agents on endpoints frequently fail, needing manual intervention from local administrators.
System requirements are high, demanding powerful servers that impact on-premise components.
 

Netsurion Pros review quotes

BC
Bryan Caporlette
Chief Technology Officer at G&G Outfitters, Inc.
Feb 7, 2019
The SIEMs and managed service are its most valuable features. We get a weekly report from them which provides a culmination of them combing through millions of events which are triggered across our network every day and minute. Their information security experts basically boil that down to a report which I get emailed once a week. It identifies potential threats and the remediation that I should take to be able to quell those threats.
Read full review
SS
Sean Sheil
Information Technology - Business Process Analyst at a financial services firm with 51-200 employees
Feb 21, 2019
The most important feature is keeping track of when accounts are created and deleted, when permission groups are changed, and memberships are changed in groups; and overall, how many errors are occurring on the various systems that we're monitoring.
Read full review
GF
Geremy Farmer
Information Technology Coordinator at Magnolia Bank, Incorporated
Feb 24, 2019
The network alert is the most valuable feature. That way, we in the IT department are aware of user lockout and invalid password attempts way before a user ever even calls in.
Read full review
Buyer's Guide
Netsurion
December 2025
Free Report: Netsurion Reviews and More
Learn what your peers think about Netsurion. Get advice and tips from experienced pros sharing their opinions. Updated: December 2025.
DOWNLOAD NOW
879,371 professionals have used our research since 2012.
Consultib253 - PeerSpot reviewer
Consultib253
Consulting Engineer at a tech vendor with 10,001+ employees
Apr 2, 2019
The product satisfies our compliance, and thus, all of our auditors. All of the data that we use and store for all security events is required by our auditors to be kept in a central storage location.
Read full review
Assistan6279 - PeerSpot reviewer
Assistan6279
Assistant LAN Administrator at a non-profit with 10,001+ employees
Sep 10, 2019
The most valuable feature is that we get the events: the alerts about disk space and the security reports that we get once a day, including user lockouts and the like.
Read full review
RT
Richard Teegarden
Network Manager at a energy/utilities company with 51-200 employees
Sep 10, 2019
I really appreciate the fact that the dashboard breaks everything down into a pretty easy view for me... It shows what changes are happening to privileged user accounts, access and identity, what's cropping up. It shows application activity and whether we've got system resources that aren't online and being found anymore. It's a pretty simple, easy, quick hit and there are the supporting logs behind it. If I need to drill down further, I can do that quickly. It's very effective.
Read full review
reviewer1154436 - PeerSpot reviewer
reviewer1154436
Sr. Information Technology Security Engineer at a university with 1,001-5,000 employees
Nov 28, 2019
If I were to look at logs manually, there's no way I could do that. As an example, they are 48 million logs processed a day. There is no way I could look at all 48 million of those. So, it gives me a good structure to be able to look at the different incidents which are created and do different searches.
Read full review
JB
JohnBandy
Chief Information Security Officer at Samford University
Jun 28, 2021
The real-time alerting for things such as people getting dropped into a VPN group or the domain admin group — things like that which really shouldn't happen without proper change management, but we all know the reality, they do from time to time — gives me real-time visibility into what's going on.
Read full review
JH
JeffHaidet
Director of Application Development and Architecture at South Central Power Company
Dec 23, 2019
I like EventTracker's dashboard. I see it every time I log in because it's the first thing you get to. We have our own widgets that we use. For the sake of transparency, there are a few widgets that we look at there and then we move out from there... Among the particularly helpful widgets, the not-reporting widget is a big one. The number-of-logs-processed is also a good one.
Read full review
MO
MarkOlson
Senior Director, Information Security at a pharma/biotech company with 1,001-5,000 employees
Dec 23, 2019
I like the UI, overall. I like the main page and there are aspects of the search page that I like. When you bring it up on the left-hand side of the page, as you look at the events, the ability to simply hit and click the plus/minus to pull events in and out of the overall view is well done and is very effective from a threat-hunting and an analysis perspective. I like the detail it shows.
Read full review
Show 10 more reviews (out of 24)
 

Netsurion Cons review quotes

BC
Bryan Caporlette
Chief Technology Officer at G&G Outfitters, Inc.
Feb 7, 2019
The deployment of the agents could be a bit easier. We always seem to have a bit of a challenge with that. A lot of times the agents either don't deploy or they quit responding, then we have to go and redeploy them.
Read full review
SS
Sean Sheil
Information Technology - Business Process Analyst at a financial services firm with 51-200 employees
Feb 21, 2019
I'd like to see improvement in the ease of generating reports. It seems fairly cumbersome whenever you decide to start tracking new categories of events. It seems a little kludgy when trying to generate those reports.
Read full review
GF
Geremy Farmer
Information Technology Coordinator at Magnolia Bank, Incorporated
Feb 24, 2019
There are some issues with searches taking a long period of time, but they assured me that they have implemented a new search function that's available in version 9, but which requires a solid-state hard drive... Depending on how many logs you have it could take a long time to return the results if you're looking back prior to the last 30 days.
Read full review
Buyer's Guide
Netsurion
December 2025
Free Report: Netsurion Reviews and More
Learn what your peers think about Netsurion. Get advice and tips from experienced pros sharing their opinions. Updated: December 2025.
DOWNLOAD NOW
879,371 professionals have used our research since 2012.
Consultib253 - PeerSpot reviewer
Consultib253
Consulting Engineer at a tech vendor with 10,001+ employees
Apr 2, 2019
The biggest problem is that we have too many domain controllers. So, we have to keep all the clients and main system updated with the latest versions along with making sure all the firewalls are open.
Read full review
Assistan6279 - PeerSpot reviewer
Assistan6279
Assistant LAN Administrator at a non-profit with 10,001+ employees
Sep 10, 2019
I would like to see the dashboard come up more quickly.
Read full review
RT
Richard Teegarden
Network Manager at a energy/utilities company with 51-200 employees
Sep 10, 2019
Probably the biggest thing is just: Can I search for this and what's the best way to do it? If I'm looking for two events versus a singular event, I just throw it back at them. They're the experts on it.
Read full review
reviewer1154436 - PeerSpot reviewer
reviewer1154436
Sr. Information Technology Security Engineer at a university with 1,001-5,000 employees
Nov 28, 2019
The solution's dashboard is okay. The one thing that we ran into are issues when we upgraded to the newer version. It uses Elasticsearch for the different dashboard entries. So, we were running on spinning disks, and Elasticsearch didn't work that well. A number of the different dashboards, like my dashboard or different things like that, pull from Elasticsearch. Since Elasticsearch really wasn't working, we were having some issues with that, but we just migrated.
Read full review
JB
JohnBandy
Chief Information Security Officer at Samford University
Jun 28, 2021
With version 8, there are quite a few things. The query tool was one of the big ones, and the query speed was one of the big ones, but they've made some great strides between versions 8 and 9. There were also issues in version 8 around the ability to get the data back out. It's one thing to collect data, but it's a whole other thing to be able to present it or run it in a timely manner. The old tool, depending on how far back I was looking, might even time out and I would have to run it again.
Read full review
JH
JeffHaidet
Director of Application Development and Architecture at South Central Power Company
Dec 23, 2019
It would be great if they had a client for phones by which they could push a notification to us, as opposed to via email.
Read full review
MO
MarkOlson
Senior Director, Information Security at a pharma/biotech company with 1,001-5,000 employees
Dec 23, 2019
Where there is an opportunity for improvement is in the interface used for performing the searches. You have to understand Elasticsearch search too well for the security team to be able to take really full advantage of that part of the product. It's not as intuitive as I would like it to be for new staff coming in. The general query capability is a little bit challenging.
Read full review
Show 10 more reviews (out of 24)

Product Categories

Product Categories
Managed Security Services Providers (MSSP)
Security Information and Event Management (SIEM)
SOC as a Service
Managed Detection and Response (MDR)
Extended Detection and Response (XDR)

Popular Comparisons

Popular Comparisons
Splunk Enterprise Security vs Netsurion Logo
Splunk Enterprise Security vs Netsurion
IBM Security QRadar vs Netsurion Logo
IBM Security QRadar vs Netsurion
Elastic Security vs Netsurion Logo
Elastic Security vs Netsurion
Rapid7 InsightIDR vs Netsurion Logo
Rapid7 InsightIDR vs Netsurion
Arctic Wolf Managed Detection and Response vs Netsurion Logo
Arctic Wolf Managed Detection and Response vs Netsurion
Fortinet FortiSIEM vs Netsurion Logo
Fortinet FortiSIEM vs Netsurion
Securonix Next-Gen SIEM vs Netsurion Logo
Securonix Next-Gen SIEM vs Netsurion
Adlumin Security Operations vs Netsurion Logo
Adlumin Security Operations vs Netsurion
ManageEngine Log360 vs Netsurion Logo
ManageEngine Log360 vs Netsurion
Trend Micro Worry-Free Services Suites vs Netsurion Logo
Trend Micro Worry-Free Services Suites vs Netsurion
CompassOne by Blackpoint Cyber vs Netsurion Logo
CompassOne by Blackpoint Cyber vs Netsurion
Secureworks Taegis Managed XDR / MDR vs Netsurion Logo
Secureworks Taegis Managed XDR / MDR vs Netsurion
Devo vs Netsurion Logo
Devo vs Netsurion
Sumo Logic Security vs Netsurion Logo
Sumo Logic Security vs Netsurion
Fidelis Elevate vs Netsurion Logo
Fidelis Elevate vs Netsurion
See all alternatives

Product Categories

Product Categories
Managed Security Services Providers (MSSP)
Security Information and Event Management (SIEM)
SOC as a Service
Managed Detection and Response (MDR)
Extended Detection and Response (XDR)

Popular Comparisons

Popular Comparisons
Splunk Enterprise Security vs Netsurion Logo
Splunk Enterprise Security vs Netsurion
IBM Security QRadar vs Netsurion Logo
IBM Security QRadar vs Netsurion
Elastic Security vs Netsurion Logo
Elastic Security vs Netsurion
Rapid7 InsightIDR vs Netsurion Logo
Rapid7 InsightIDR vs Netsurion
Arctic Wolf Managed Detection and Response vs Netsurion Logo
Arctic Wolf Managed Detection and Response vs Netsurion
Fortinet FortiSIEM vs Netsurion Logo
Fortinet FortiSIEM vs Netsurion
Securonix Next-Gen SIEM vs Netsurion Logo
Securonix Next-Gen SIEM vs Netsurion
Adlumin Security Operations vs Netsurion Logo
Adlumin Security Operations vs Netsurion
ManageEngine Log360 vs Netsurion Logo
ManageEngine Log360 vs Netsurion
Trend Micro Worry-Free Services Suites vs Netsurion Logo
Trend Micro Worry-Free Services Suites vs Netsurion
CompassOne by Blackpoint Cyber vs Netsurion Logo
CompassOne by Blackpoint Cyber vs Netsurion
Secureworks Taegis Managed XDR / MDR vs Netsurion Logo
Secureworks Taegis Managed XDR / MDR vs Netsurion
Devo vs Netsurion Logo
Devo vs Netsurion
Sumo Logic Security vs Netsurion Logo
Sumo Logic Security vs Netsurion
Fidelis Elevate vs Netsurion Logo
Fidelis Elevate vs Netsurion
See all alternatives
Related questions
  • 173
Do we need to use both EDR and Antivirus (AV) solutions for better protection of IT assets?
  • 32
What types of Security Operations Center (SOC) deployment models do exist?
  • 19
Why is Managed Security Services important for companies?
  • 7
When evaluating Managed Security Services, what aspect do you think is the most important to look for?
  • 13
How Managed Security Services (MSS) secure your organization?