9 Ratings
<a href='https://www.trustradius.com/static/about-trustradius-scoring' target='_blank' rel='nofollow noopener noreferrer'>trScore algorithm: Learn more.</a>
Score 6.9 out of 100
48 Ratings
<a href='https://www.trustradius.com/static/about-trustradius-scoring' target='_blank' rel='nofollow noopener noreferrer'>trScore algorithm: Learn more.</a>
Score 7.8 out of 100

Likelihood to Recommend

Cisco Secure Network Analytics (Stealthwatch)

Cisco StealthWatch is well suited when you need to deal with big amounts of traffic. For example, big enterprises, data centers, [and] banks. [In] other words, it does a good job in cases when you have a lot of users with different access levels from different departments and maybe in different regions. So you need to have a clear vision of what [is] happening in your network right now.
Oleksandr Tsapenko | TrustRadius Reviewer

LogRhythm NextGen SIEM Platform

I will say that the LogRhythm NextGen SIEM Platform is well suited for an organization that is not very big but has multiple log sources. Or a lot of non-technical employees who do not know how to code or do write custom queries. Typically it is a good fit for universities and mid-range startups. This has an excellent interface, dashboard, useful for managing roles, but it doesn't provide the level of customization that a technical person with knowledge of coding probably would prefer. Software like Splunk and Elastic Search are much more flexible in terms of the granularity of the search.
Anonymous | TrustRadius Reviewer

Feature Rating Comparison

Security Information and Event Management (SIEM)

Cisco Secure Network Analytics (Stealthwatch)
LogRhythm NextGen SIEM Platform
8.6
Centralized event and log data collection
Cisco Secure Network Analytics (Stealthwatch)
LogRhythm NextGen SIEM Platform
9.5
Correlation
Cisco Secure Network Analytics (Stealthwatch)
LogRhythm NextGen SIEM Platform
9.1
Event and log normalization/management
Cisco Secure Network Analytics (Stealthwatch)
LogRhythm NextGen SIEM Platform
8.6
Deployment flexibility
Cisco Secure Network Analytics (Stealthwatch)
LogRhythm NextGen SIEM Platform
8.4
Integration with Identity and Access Management Tools
Cisco Secure Network Analytics (Stealthwatch)
LogRhythm NextGen SIEM Platform
8.0
Custom dashboards and workspaces
Cisco Secure Network Analytics (Stealthwatch)
LogRhythm NextGen SIEM Platform
9.4
Host and network-based intrusion detection
Cisco Secure Network Analytics (Stealthwatch)
LogRhythm NextGen SIEM Platform
7.3

Pros

Cisco Secure Network Analytics (Stealthwatch)

  • Breaks down network data into categories like Recon, exploit, etc,
  • Good data around usage (categorized as Data Hoarding)
  • Alarms broken out by TTP
Anonymous | TrustRadius Reviewer

LogRhythm NextGen SIEM Platform

  • LogRhythm is a great SIEM to learn content on because the building blocks are very intuitive and easy to implement. All of the concepts relevant to content development are literally represented as drag and drop building blocks that can be easily manipulated.
  • The statistical building blocks contain powerful anomaly detection capabilities that are extremely difficult to implement in other SIEMs or not possible at all.
  • LogRhythm does better event classification than any other SIEM by far. My team typically drops all classification schemes from default installations of SIEMs and rebuilds them from scratch. I can actually use LogRhythms event classifications in rules without worrying about excessive partial matches or correlating unwanted events.
Joel Eng | TrustRadius Reviewer

Cons

Cisco Secure Network Analytics (Stealthwatch)

  • As with new technologies, learning curves are a given. On this one, there is a slight curve before you fully grasp it.
  • User interface can be improved to better user experience.
Ericson Aragoza | TrustRadius Reviewer

LogRhythm NextGen SIEM Platform

  • While searching for log events is quick, the interface isn't as user-friendly as other SIEM products.
  • Many of the administrative/management functions are only available through the full LogRhythm desktop console, not through the web console.
  • The LogRhythm agent, when used for FIM and RIM, is very memory intensive.
Anonymous | TrustRadius Reviewer

Likelihood to Renew

Cisco Secure Network Analytics (Stealthwatch)

No score
No answers yet
No answers on this topic

LogRhythm NextGen SIEM Platform

LogRhythm NextGen SIEM Platform 9.0
Based on 1 answer
LogRhythm is focused on SIEM. That is their core business. Cost of operations, feature set and ease of use. The Log Rhythm support team is outstanding. Overall reliability is good. Reporting module needs some improvement and LR is promising that there will be significant improvements in future releases.
James Harrison | TrustRadius Reviewer

Usability

Cisco Secure Network Analytics (Stealthwatch)

Cisco Secure Network Analytics (Stealthwatch) 7.3
Based on 1 answer
Strong and complete tool which gives comprehensive methods to discover cyber security incidents and prevent data leakage. In case of common use of Cisco StealthWatch and Cisco ISE, you will receive [the] ability [to] not just discover cyber security incidents but also dynamically respond to them. This makes StealthWatch one of most valuable products through[out] [the] whole Cisco Security product portfolio.
Oleksandr Tsapenko | TrustRadius Reviewer

LogRhythm NextGen SIEM Platform

LogRhythm NextGen SIEM Platform 8.0
Based on 2 answers
LogRhythm does a rather decent job of making the functionality advanced (allowing for advanced keyword & field searching, use of "AND" as well as "OR" statements in the search bar) while keeping it accessible (by not requiring a specific syntax to do quick searches). This combined with a user interface that has headings and labels that are intuitive is very helpful.
Anonymous | TrustRadius Reviewer

Support Rating

Cisco Secure Network Analytics (Stealthwatch)

Cisco Secure Network Analytics (Stealthwatch) 7.9
Based on 3 answers
Overall winner because it exceeds our expectations by answering all our requirements and at the same time empowers our operations thru other built-in capabilities it has. Visibility is a key to security operations and Cisco StealthWatch really gives us a magnifying glass to check all logs in the network for threat intelligence and threat hunting.
John Patrick Duro | TrustRadius Reviewer

LogRhythm NextGen SIEM Platform

LogRhythm NextGen SIEM Platform 8.0
Based on 18 answers
Support has always been fantastic for this product compared to many other support providers I've worked with. They are always very friendly and seem to be well trained and knowledgeable and never have to wait long for a solution. We usually get the issue fixed in the first call, but also we really haven't had to use support a ton so that's also a plus
Anonymous | TrustRadius Reviewer

Implementation Rating

Cisco Secure Network Analytics (Stealthwatch)

No score
No answers yet
No answers on this topic

LogRhythm NextGen SIEM Platform

LogRhythm NextGen SIEM Platform 8.0
Based on 3 answers
  • Buy professional services.
  • Buy and implement the system if possible.
  • Remember that the end point log configuration may require other teams in your company to assist you in getting the desired logs from all resources.
  • Attend the end user and daily operations training after a period of usage so you are not overwhelmed with information on concepts not yet seen.
  • Don't be afraid to call for help during your first months of use.
  • Don't close any ticket until you are sure the expected results are verified.
  • Use the community forums to discuss issues with your peers.
  • Watch the training videos offered by L R University.
James Harrison | TrustRadius Reviewer

Alternatives Considered

Cisco Secure Network Analytics (Stealthwatch)

NTOP is the only thing out there, in my opinion, that provides similar type of visibility. But StealthWatch is the product all vendors should strive to emulate. It is easy to install; it is easy to configure; it works as advertised (and then some). I do recommend the three-day work shop they occasionally run - or some onsite training. The product is feature rich and the training will help you get the most out of it.
Matthew Frederickson | TrustRadius Reviewer

LogRhythm NextGen SIEM Platform

LogRhythm was simpler to set up and configure as well as extract information from. It also was less intrusive in terms of how many appliances were needed to implement. We were up and running within 5 hours to start accepting log sources. We selected LogRhythm as well since support is based in the USA in Colorado.
Anonymous | TrustRadius Reviewer

Return on Investment

Cisco Secure Network Analytics (Stealthwatch)

  • StealthWatch helps other departments make decisions quickly based on NetFlow data.
  • StealthWatch can bring a lot of reporting to the table that can be used to advance project necessities and prove data necessities to management.
Anonymous | TrustRadius Reviewer

LogRhythm NextGen SIEM Platform

  • The ability to search through logs in a centralized location really helps us to provide RCA (Root Cause Analysis) to management for outages. This helps us to quickly identify the cause of outages and thus saves money due to reduced downtime.
  • Being able to configure the alarms to provide real-time notification (and responses) to security events helps to prevent potential loss due to compromises (such as a fraudulent wire transfer).
  • The initial investment in LogRhythm SIEM is somewhat expensive, however, the appliance is built to your specific needs so you won't have to constantly be upgrading the device as your company grows.
Anonymous | TrustRadius Reviewer

Pricing Details

Cisco Secure Network Analytics (Stealthwatch)

General

Free Trial
Free/Freemium Version
Premium Consulting/Integration Services
Entry-level set up fee?
No

LogRhythm NextGen SIEM Platform

General

Free Trial
Free/Freemium Version
Premium Consulting/Integration Services
Entry-level set up fee?
No

Rating Summary

Likelihood to Recommend

Cisco Secure Network Analytics (Stealthwatch)
6.9
LogRhythm NextGen SIEM Platform
7.7

Likelihood to Renew

Cisco Secure Network Analytics (Stealthwatch)
LogRhythm NextGen SIEM Platform
9.0

Usability

Cisco Secure Network Analytics (Stealthwatch)
7.3
LogRhythm NextGen SIEM Platform
8.0

Support Rating

Cisco Secure Network Analytics (Stealthwatch)
7.9
LogRhythm NextGen SIEM Platform
8.0

Implementation Rating

Cisco Secure Network Analytics (Stealthwatch)
LogRhythm NextGen SIEM Platform
8.0

Add comparison