Cisco Secure Network Analytics vs. Sumo Logic

Overview
ProductRatingMost Used ByProduct SummaryStarting Price
Cisco Secure Network Analytics
Score 8.3 out of 10
N/A
Cisco Stealthwatch is a network behavior analysis product based on technology acquired by Cisco with its Lancope acquisition in 2015.N/A
Sumo Logic
Score 7.3 out of 10
N/A
Sumo Logic is a log management offering from the San Francisco based company of the same name.
$3
Per GB Logs
Pricing
Cisco Secure Network AnalyticsSumo Logic
Editions & Modules
No answers on this topic
Essentials
$3.00
Per GB Logs
Enterprise
$4.00
Per GB Logs
Enterprise Security
$4.25
Per GB Logs
Enterprise Suite
$4.75
Per GB Logs
Offerings
Pricing Offerings
Cisco Secure Network AnalyticsSumo Logic
Free Trial
NoNo
Free/Freemium Version
NoNo
Premium Consulting/Integration Services
NoNo
Entry-level Setup FeeNo setup feeNo setup fee
Additional Details
More Pricing Information
Community Pulse
Cisco Secure Network AnalyticsSumo Logic
Top Pros
Top Cons
Best Alternatives
Cisco Secure Network AnalyticsSumo Logic
Small Businesses

No answers on this topic

InfluxDB
InfluxDB
Score 8.4 out of 10
Medium-sized Companies
InsightIDR
InsightIDR
Score 8.4 out of 10
IBM Instana
IBM Instana
Score 9.0 out of 10
Enterprises
InsightIDR
InsightIDR
Score 8.4 out of 10
IBM Instana
IBM Instana
Score 9.0 out of 10
All AlternativesView all alternativesView all alternatives
User Ratings
Cisco Secure Network AnalyticsSumo Logic
Likelihood to Recommend
8.1
(11 ratings)
8.9
(14 ratings)
Likelihood to Renew
8.0
(1 ratings)
-
(0 ratings)
Usability
7.3
(1 ratings)
7.5
(3 ratings)
Availability
7.0
(1 ratings)
-
(0 ratings)
Support Rating
7.9
(2 ratings)
8.7
(6 ratings)
Implementation Rating
8.0
(1 ratings)
9.0
(1 ratings)
Ease of integration
8.0
(1 ratings)
-
(0 ratings)
Professional Services
-
(0 ratings)
6.2
(3 ratings)
User Testimonials
Cisco Secure Network AnalyticsSumo Logic
Likelihood to Recommend
Cisco
Few products operate off the Netflow or RAP/SPAN traffic versus the endpoint. Of those products, many operate from the aggregate traffic of uplinks/downlinks, whereas Secure Network Analytics focuses on viewing all traffic to give per-endpoint comprehensive data analytics. SNA is a great product for network visibility and detection, and to preserve that focus, other options such as remediation or quarantined are deferred to other products in the security ecosystem. SNA uses Machine Learning models to determine traffic behavioral compliance, which is a double-edged sword. On one hand, it mitigates zero day attacks changing traffic patterns, but conversely, it requires training to know acceptable traffic patterns. Unfortunately, many adopters of SNA do not spend the time giving it the user input and so the ML models never gets the correct weights and parameters to work from.
Read full review
Sumo Logic
SumoLogic is a fantastic log aggregator and analysis tool, a fine alternative to Splunk. Searching is powerful and mostly intuitive and results come fast. If you have application logs in clusters or Kubernetes pods that lose their logs every time they're restarted, Sumo is the solution for you
Read full review
Pros
Cisco
  • A silent tool.
  • A great way to get visibility of all the conversations of the network.
  • Easy to find out the internal and the external threats.
  • Easy to track performance.
  • Network monitoring is very easy to understand and control.
  • Attacks can be easily detected along with encrypted traffic.
  • Historic records of the attack and reports make it even better.
Read full review
Sumo Logic
  • Sumo Logic allowed for our InfoSec team to ingest logs from our CDN directly, in real-time, instead of massive compressed archives that were sent every two-hours (the only alternative at the time). Sumo Logic had an app for these logs, that allowed us to easily get an immediate payoff from the data, with canned dashboard and saved searches.
  • Sumo Logic has a fairly extensive REST API when it comes to log sources, source configurations, dashboard data, searches, etc. Their wiki for the API is usually kept up to date.
  • Sumo Logic, during the period of time I had used their product, had added the ability to configure agents via configuration files. This allowed customers to configure their endpoints, and modify the endpoints, with configuration management tools like Chef / Puppet / Salt. Beforehand, the only option was to always make changes either via the web portal or REST API.
  • The solutions engineers were extremely helpful, and easily reachable when issues would occur.
  • Users at our company found it easy to get started, working on new dashboards, scheduled searches, and alerting. The alerting worked well with our third-party paging tool.
Read full review
Cons
Cisco
  • There are things that you can search for a particular type of traffic, but you cannot create an alert to alert on that type of traffic. An example of that is a particular encryption type. So like RC4 encryption is prohibited within DHS. I can search for traffic using it, but I can't create a rule alerting on that traffic type.
Read full review
Sumo Logic
  • I like the help center, but I think if it had more GUI tools, it could help new users.
  • Pulling out data is sometimes hard to read, (Maybe if I knew how to export data better, this would not be an issue for me).
  • I would like better know-how on how to create reports that will help our business.
Read full review
Likelihood to Renew
Cisco
Cisco Secure Network Analytics is a fantastic tool, but does require some setup and upkeep which may turn off smaller IT Security teams. However, once all the flows are set up and the product is functioning with the proper rules, the insight into your network is fantastic. For us, the product has a significant ROI and will be a product we keep up on.
Read full review
Sumo Logic
No answers on this topic
Usability
Cisco
Strong and complete tool which gives comprehensive methods to discover cyber security incidents and prevent data leakage. In case of common use of Cisco StealthWatch and Cisco ISE, you will receive [the] ability [to] not just discover cyber security incidents but also dynamically respond to them. This makes StealthWatch one of most valuable products through[out] [the] whole Cisco Security product portfolio.
Read full review
Sumo Logic
Sumo Logic is very powerful but definitely requires some configuration work to get the most out of it. You can get a certification related to this, but it is definitely not something you can just throw together.
Read full review
Reliability and Availability
Cisco
We haven't had too many issues with the uptime and availability of CSNA, but the application does have a lot of dependancies and we have seen issues after an upgrade that caused an outage for several hours.
Read full review
Sumo Logic
No answers on this topic
Support Rating
Cisco
Overall winner because it exceeds our expectations by answering all our requirements and at the same time empowers our operations thru other built-in capabilities it has. Visibility is a key to security operations and Cisco StealthWatch really gives us a magnifying glass to check all logs in the network for threat intelligence and threat hunting.
Read full review
Sumo Logic
I would give this rating because I attended a free Sumo Logic training at a WeWork in Chicago. I found the training very useful, and I learned a lot of features that I was not aware of before I went to the training. I like the idea that SumoLogic provides free training seminars. I am certified in level1, and I plan on certifying to level2.
Read full review
Implementation Rating
Cisco
Implementation of the product can be tedious, especially fine tuning its rules to customize it to your environment. However, after that is done, CSNA is a very useful and flexible product that would enhance the security posture of any corporate network.
Read full review
Sumo Logic
I was satisfied with the implementation, as at the time, it was the best way to implement the product with the available feature sets in Sumo Logic. User creation and management became more of an issue during continued use, instead of it being an issue related to deploying the product in our environment.
Read full review
Alternatives Considered
Cisco
After integrating and developing a lot of security features in MF NNM, we were not able to meet the requirements from the customer. After the alternative research, we got to know about this Cisco Secure Network Analytics tool and after implementing the same, we finally were able to win CSAT. MF NNM had a support-related issue as well. It took more than a month to solve for couple of issues frequently. Whenever there is a problem or need their support, reaching out to them has always been a challenge.
Read full review
Sumo Logic
Sumo Logic works very well out of the gate. For a small business it has given us what we need. I worked at a larger company previously, and we produced so many logs we had to create a custom logging service to handle them all. Cost and availability are big issues when deciding between the different services, whether self maintained and hosted, or provided by another company.
Read full review
Professional Services
Cisco
No answers on this topic
Sumo Logic
I've assisted several OneLogin customers with partner accounts to Sumo Logic. It has always been pleasant.
Read full review
Return on Investment
Cisco
  • It is a little pricey - in my organization, with budget cuts, I eventually had to replace it with an open source product (NTOP). While it works well for visibility, it simply isn't the same. If you can afford it, don't bother looking anywhere else - just get it.
  • Being able to detect, pivot out, and remmediate from one console was awesome.
Read full review
Sumo Logic
  • I can't think of any negative side effects other than it being SO slow sometimes, but compared to Splunk everything is slow
  • It's SO much cheaper than Splunk that the time it takes to query information is well worth it
  • In the times that we've had Sumo go down or stop logging information, we've found that we'd be absolutely lost without Sumo
Read full review
ScreenShots