We just raised a $30M Series A: Read our story

Compare FireEye Network Security vs. RSA NetWitness Logs and Packets (RSA SIEM)

Cancel
You must select at least 2 products to compare!
Quotes From Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Pros
"The most valuable feature is MVX, which tests all of the files that have been received in an email.""It is stable and quite protective. It has a lot of features to scan a lot of malicious things and vulnerabilities.""The most valuable feature is the network security module.""It protects from signature-based attacks and signature-less attacks. The sandboxing technology, invented by FireEye, is very valuable. Our customers go for FireEye because of the sandboxing feature. When there is a threat or any malicious activity with a signature, it can be blocked by IPS. However, attacks that do not have any signatures and are very new can only be blocked by using the sandboxing feature, which is available only in FireEye. So, FireEye has both engines. It has an IPS engine and a sandbox engine, which is the best part. You can get complete network protection by using FireEye.""The server appliance is good.""I also like its logging method. Its logging is very powerful and useful for forensic purposes. You can see the traffic or a specific activity or how something entered your network and where it went.""Very functional and good for detecting malicious traffic."

More FireEye Network Security Pros »

"Performance and reporting are very good.""The packet capture aspect of it is a valuable feature because it is quite different from a traditional SIEM solution that only carries out investigations based on captured logs.""The most valuable features are the integration and ease of use.""The most valuable feature is the security that it provides.""The most valuable features are the threat prediction and network forensics.""The most valuable feature is that we can create our own connectors for any application, and NetWitness provides the training and tools to do it.""The solution is really scalable for the high-end power, enterprise customer.""The most valuable features are the packet decoder, log decoder, and concentrator."

More RSA NetWitness Logs and Packets (RSA SIEM) Pros »

Cons
"Its documentation can be improved. The main problem that I see with FireEye is the documentation. We are an official distributor and partner of FireEye, and we have access to complete documentation about how to configure or implement this technology, but for customers, very limited documentation is available openly. This is the area in which FireEye should evolve. All documents should be easily available for everyone.""Technical support could be improved.""I heard that FireEye recently was hacked, and a lot of things were revealed. We would like FireEye to be more secure as an organization. FireEye has to be more protective because it is one of the most critical devices that we are using in our environment. They have a concept called SSL decryption, but that is only the packet address. We would like FireEye to also do a lot of decryption inside the packet. Currently, FireEye only does encryption and decryption of the header, but we would like them to do encryption and decryption of the entire packet.""It would be very helpful if there were better integration with other solutions from other vendors, such as Fortinet and Palo Alto.""They can maybe consider supporting some compliance standards. When we are configuring rules and policies, it can guide whether they are compliant with a particular compliance authority. In addition, if I have configured some rules that have not been used, it should give a report saying that these rules have not been used in the last three months or six months so that I disable or delete those rules.""It is very expensive, the price could be better.""Technical packaging could be improved."

More FireEye Network Security Cons »

"Log aggregation is an issue with this solution because there are a huge number of alerts in a single instance.""Technical support could be improved.""It is not so easy to customize this product.""The multi-tenant capabilities are lagging compared to IBM QRadar.""There are instances where you try to run the reports and then it does not give you the desired outcome.""The initial setup is very complex and should be simplified.""Lots of competing products have vulnerability protection built into their products, and this solution would be improved by including that support.""The solution should have more integration capabilities with different platforms."

More RSA NetWitness Logs and Packets (RSA SIEM) Cons »

Pricing and Cost Advice
"It's an expensive solution.""Its price is a bit high. A small customer cannot buy it. Its licensing is on a yearly basis.""The user fee is not as high but the maintenance fee is expensive."

More FireEye Network Security Pricing and Cost Advice »

"Many clients are not able to purchase the packet capability because there is a huge amount of data, and the cost depends on the number of EPS (Events per second), as well as the number of gigabytes of data per day.""There is a licensing fee and the customer can choose whether he wishes this to be subscription-based or perpetual.""Our license is for one year.""We are on an annual license for the use of the solution."

More RSA NetWitness Logs and Packets (RSA SIEM) Pricing and Cost Advice »

report
Use our free recommendation engine to learn which Advanced Threat Protection (ATP) solutions are best for your needs.
554,529 professionals have used our research since 2012.
Questions from the Community
Top Answer: It protects from signature-based attacks and signature-less attacks. The sandboxing technology, invented by FireEye, is very valuable. Our customers go for FireEye because of the sandboxing feature… more »
Top Answer: Its price is a bit high. A small customer cannot buy it. Its licensing is on a yearly basis.
Top Answer: Its documentation can be improved. The main problem that I see with FireEye is the documentation. We are an official distributor and partner of FireEye, and we have access to complete documentation… more »
Top Answer: It would help if they could provide the malware analytics in the core package as that would make the cost more reasonable. Licensing is paid annually and I believe the cost is somewhere between 12,000… more »
Top Answer: I believe they could improve their support, there are often delays. The price of the solution could be reduced, it's very costly.
Ranking
Views
6,532
Comparisons
4,640
Reviews
5
Average Words per Review
426
Rating
8.6
Views
6,035
Comparisons
4,015
Reviews
12
Average Words per Review
510
Rating
7.8
Comparisons
Also Known As
FireEye
RSA Security Analytics
Learn More
Overview

FireEye Network Security is an advanced threat protection and breach detection platform that provides industry leading threat visibility and protection against the world’s most sophisticated and damaging attacks. By leveraging FireEye’s unique technologies and threat intelligence, FireEye Network Security detects what other security solutions miss, providing holistic security from the perimeter to the network core.

If you’re relying on log data to detect and prevent cyber threats, you’re in trouble. Attackers increasingly evade detection of log-centric security and network monitoring tools. But logs combined with full packet, endpoint NetFlow data are proven to provide the essential details for early threat detection. Here’s a closer look at our solution.

Offer
Learn more about FireEye Network Security
Learn more about RSA NetWitness Logs and Packets (RSA SIEM)
Sample Customers
FFRDC, Finansbank, Japan Advanced Institute of Science and Technology, Investis, Kelsey-Seybold Clinic, Bank of Thailand, City of Miramar, Citizens National Bank, D-Wave Systems
Los Angeles World Airports, Reply
Top Industries
REVIEWERS
Financial Services Firm29%
Government14%
University14%
Manufacturing Company14%
VISITORS READING REVIEWS
Computer Software Company26%
Comms Service Provider18%
Government7%
Financial Services Firm7%
REVIEWERS
Comms Service Provider31%
Financial Services Firm23%
Computer Software Company23%
Healthcare Company8%
VISITORS READING REVIEWS
Computer Software Company28%
Comms Service Provider22%
Financial Services Firm8%
Government8%
Company Size
REVIEWERS
Small Business35%
Midsize Enterprise24%
Large Enterprise41%
REVIEWERS
Small Business27%
Midsize Enterprise14%
Large Enterprise59%
Find out what your peers are saying about FireEye Network Security vs. RSA NetWitness Logs and Packets (RSA SIEM) and other solutions. Updated: November 2021.
554,529 professionals have used our research since 2012.

FireEye Network Security is ranked 6th in Advanced Threat Protection (ATP) with 6 reviews while RSA NetWitness Logs and Packets (RSA SIEM) is ranked 3rd in Advanced Threat Protection (ATP) with 13 reviews. FireEye Network Security is rated 8.6, while RSA NetWitness Logs and Packets (RSA SIEM) is rated 7.8. The top reviewer of FireEye Network Security writes "A reliable and complete network protection solution that protects from signature-based and signature-less attacks and has powerful logging". On the other hand, the top reviewer of RSA NetWitness Logs and Packets (RSA SIEM) writes "Economical with good technical support and is easily scalable". FireEye Network Security is most compared with Palo Alto Networks WildFire, Zscaler Internet Access, Cisco Stealthwatch, Check Point SandBlast Network and Zscaler Cloud Sandbox, whereas RSA NetWitness Logs and Packets (RSA SIEM) is most compared with IBM QRadar, Splunk, RSA enVision, LogRhythm NextGen SIEM and McAfee ESM. See our FireEye Network Security vs. RSA NetWitness Logs and Packets (RSA SIEM) report.

See our list of best Advanced Threat Protection (ATP) vendors.

We monitor all Advanced Threat Protection (ATP) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.