TrustRadius: an HG Insights company

Cisco Secure IPS

Score10 out of 10

12 Reviews and Ratings

Learn More

What is Cisco Secure IPS?

Cisco Secure IPS (formerly Firepower Next-Generation Intrusion Prevention System, or NGIPS) is an intrusion detection response system that produces security data and enhances the analysis by InsightOps. The technology replaces the former Sourcefire 3D IPS. Cisco acquired Sourcefire in 2013.

Categories & Use Cases

Reviews

What users are saying about Cisco Secure IPS.
View all reviews

Cisco Advanced Intrusion Prevention Systems || My review for Cisco Secure IPS

Incentivized
Basant GuptaView profile
Executive System Admin in Information Technology at MattsenKumar LLC (501-1000 employees employees)

Use Cases and Deployment Scope

Cisco Secure IPS is very advanced and provides all the advanced security features. It gives us more visibility and control over our network. Cyber attacks are increasing day by day. With the help of Cisco Secure IPS, we can detect and prevent any cyber attack on your network. We are using the Cisco Secure IPS firewall on our site for the last 2 years and now we have more control over your incoming and outgoing users' traffic and we can easy to block any threats. The performance is very fast and it is continually synced with the server for last updates.

Pros

  • Easy GUI.
  • Easy to export the report.
  • Very fast performance and quick response on threats.
  • It provides us more network security.
  • It provides us more network visibility.
  • Centralized management.
  • Easy to manage.

Cons

  • Very less documentation available for study.

Most Important Features

  • It provides us more visibility and control on network traffic.
  • High performance.
  • Quick response on cyber attack.
  • Easy to export reports.
  • Integration is very easy.

Return on Investment

  • Cisco provides good customer support.
  • Easy to configure and manage.
  • Easy installation.

Alternatives Considered

Suricata IDS

Other Software Used

Cisco 1000 Series Aggregation Services Routers (ASR 1000), CATCheckpoint

Cisco Secure Intrusion Prevention System Review

Incentivized
Anjali NairView profile
content writer specialist in Information Technology at DashClicks (51-200 employees employees)

Use Cases and Deployment Scope

An Intrusion Prevention System [IPS] is necessary for every organization. It will keep an eye on a network and find any malicious activities. We are using Cisco Secure IPS in our organization for high-level network security. It provides a lot of advanced features for detecting and preventing any type of cyber attack on your organization. The main function of Cisco Secure IPS is to identify any suspicious activity, prevent the activity from happening, and send an alert to the SOC team.

Pros

  • You will get more visibility in your network.
  • Very fast performance
  • Easy to detect and prevent the suspicious activities.
  • Easy to export report[s]
  • Daily security updates
  • Efficacy
  • Very low cost
  • Cisco Threat Intelligence Director
  • A lot of Cisco documentation available

Cons

  • I have never faced an issue with Cisco Secure IPS

Most Important Features

  • Very fast performance
  • Daily security updates
  • Send the alerts
  • Reporting

Return on Investment

  • Easy to configure
  • Easy to manage
  • Low cost
  • A lot of documentation available

Other Software Used

Check Point 13000 Appliances, Cisco 3504 WLAN Controller

A small package that delivers great results

Incentivized
Eduardo Viero
IT Infrastructure Specialist in Information Technology at RANDON S.A (5001-10,000 employees employees)

Pros

  • The option to deploy it as a virtual machine in a UCS-E inside a Cisco Router is something to consider a lot. It simplifies a lot the deployment in places where you need to optimize resources and keep things simple. It also saves some money on unnecessary hardware.
  • Having the most complete license, we can have in the same box IPS, inspection for malware and URL filtering. As Cisco uses Talos Intelligence network to mitigate and evaluate risks, having this complete set of security features turns the box into a powerful resource to protect our remote locations. Considering the hyper-connected business we have today, it's almost impossible to think that we can run a business without this kind of protection.
  • The integration between Firepower NGIPS and other products, like Cisco ISE and Splunk, is also a key feature for this solution. In both cases, you can integrate the product to have the best of both. As a security appliance, it's very important for us to have all the logs centralized in Splunk and this is done simply connecting FMC (Firepower Management Console) to the Splunk collector.

Cons

  • The initial setup of the box can be a little tricky, especially in deployments like ours, where you have it running on a UCSE server inside a router. I think Cisco could do it a little easier, like having a script to configure it.
  • The interface of the FMC (Firepower Management Console) is a little outdated. Cisco could use the latest design language they already used for other platforms like Cisco Prime to make that interface more user-friendly.

Return on Investment

  • As a positive impact, having this centralized administration helped us to speed up our deployments and at the same time, offer a robust solution to the business.
  • Having integrations with other platforms, like Splunk, gave us a real vantage to keep all logs centralized and processed by one single SIEM. That represents a positive impact considering we have several locations around the world.
  • As a Cisco product, Firepower can count on the biggest partner network in the whole word. No matter where you need, if in China or Argentina, you can find a partner to help on your project. That also represents a huge positive impact when you select a vendor.

Alternatives Considered

Palo Alto Networks Next-Generation Firewalls - PA Series and Fortinet FortiGate

Other Software Used

Envoy, Trello

Firepower NGIPS, the robust, effective NGIPS solution

Incentivized
Jonathan PauleyView profile
Sales Engineer in Sales at Advanced Technical Solutions, LLC (11-50 employees employees)

Pros

  • Stops unauthorized network access
  • Provides meaningful event and incident reporting via the FMC
  • Provides robust detection, prevention, and alerting of IPS/IDS events

Cons

  • Fine tuning the Firepower policies is tedious and time consuming

Return on Investment

  • Has made it much easier to determine when incidents have occurred
  • Has been effective in reducing false positives and making solution management more efficient and cost effective

Usability

Alternatives Considered

McAfee Advanced Threat Defense and McAfee Network Security Platform

Next Gen protection on your existing ASA5500-X firewalls.

Incentivized
Wouter HindriksView profile
Technical Team Lead Network & Security in Information Technology at Missing Piece BV (11-50 employees employees)

Pros

  • Rules are based on the SNORT engine which has a tremendous base of rules.
  • Helps protect your network and users by leveraging Talos Intelligence resources, like the domain and IP reputation databases.
  • Allows you to define a policy which can then be applied to all FirePower devices in your networks.

Cons

  • The performance is not always as good as you'd want. Some operations take the better part of a minute (drilling down in traffics analysis).
  • Deploying or upgrading the FirePower software to the ASA firewalls takes a long time and deployment might fail without a clear reason.

Return on Investment

  • Good visibility into our traffic and automatic threat protection keeps our network and users safe.

Related Products

Products similar to Cisco Secure IPS that may also meet your needs.
All comparisons
Trend Micro TippingPoint
CompareLearn more