Cisco Secure Network Analytics vs Stellar Cyber Open XDR comparison

Cisco Secure Network Analytics vs. Stellar Cyber Open XDR

Download the complete report

Helped 868,759 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Categories and Ranking

Cisco Secure Network Analytics

Ranking in Network Traffic Analysis (NTA)

5th

Ranking in Network Detection and Response (NDR)

8th

Average Rating

8.2

Reviews Sentiment

6.9

Number of Reviews

Ranking in other categories

Network Monitoring Software (33rd), Cisco Security Portfolio (7th)

Stellar Cyber Open XDR

Ranking in Network Traffic Analysis (NTA)

19th

Ranking in Network Detection and Response (NDR)

20th

Average Rating

0.0

Reviews Sentiment

7.0

Number of Reviews

Ranking in other categories

Security Information and Event Management (SIEM) (49th), User Entity Behavior Analytics (UEBA) (22nd), Endpoint Detection and Response (EDR) (62nd), Security Orchestration Automation and Response (SOAR) (24th), Extended Detection and Response (XDR) (35th), Identity Threat Detection and Response (ITDR) (21st)

Mindshare comparison

As of October 2025, in the Network Traffic Analysis (NTA) category, the mindshare of Cisco Secure Network Analytics is 14.6%, down from 14.8% compared to the previous year. The mindshare of Stellar Cyber Open XDR is 1.9%, up from 0.9% compared to the previous year. It is calculated based on PeerSpot user engagement data.

Network Traffic Analysis (NTA) Market Share Distribution
Product	Market Share (%)
Cisco Secure Network Analytics	14.6%
Stellar Cyber Open XDR	1.9%
Other	83.5%

Network Traffic Analysis (NTA)

Featured Reviews

Muhammad Harun-Owr-Roshid

CEO at BRIGHT-i SYSTEMS LIMITED

Have streamlined network visibility and troubleshooting while seeing benefits from AI integration

In terms of improvements for Cisco Secure Network Analytics, from the implementation point of view, now that AI is in use, some other features need to be upgraded considering AI solutions. Proper management of the database is also important; it should be centralized for easier data collection from a single database. When precise manual analysis is needed, it's sometimes difficult, so having a centralized database will allow network admins to find actual scenarios more effectively, especially since some information may not be visible on the GUI. Cisco should upgrade their hardware part to run the database, because sometimes it cannot handle the load while all features are running in the network. The database management should indeed be centralized because while AI runs behind the systems, central management is essential. For example, in a network with 100 Cisco switches, a few routers, firewalls, and access points, all data generated should be preserved in a central database. This approach simplifies management and analysis for troubleshooting, as GUI interfaces may not always provide visible information. Centralizing the database will allow for better understanding of which information is preserved for each specific device.

Read full review

Hrishiraj Bhattacharjee

Founder & CEO at Team Karimganj

Correlates incidents, allows for quicker identification and helps prioritize investigations

The only challenge is, and that’s where we come into play, it’s a pretty high-tech platform. So, it’s difficult for small and medium-sized organizations to manage it on their own. It’s a very complex system. It requires a lot of expertise. All my guys who work on it have gone through certification from Stellar itself. There are three different certifications that you need to complete. Only then are you certified by Stellar to work on it. It’s a very complex platform. Not everyone can use it. A simple IT engineer or system admin won’t be able to handle it because it’s quite complex. You need to have an understanding of the industry, the subject, and the tool. So, just purchasing this tool or license and then using it on your own would be very difficult to configure and manage on a day-to-day basis. The pricing model is not suitable for small and medium companies, particularly small companies. The minimum pricing model they have is suitable for companies with more than one thousand users. So, if someone has 50 to 100 users, like typical small companies, it’s difficult for them because the cost involved is high. Stellar would charge you for those thousand users, but you do not need all those users. So what are they going to do? I guess Stellar does not want to target small companies directly and maybe relies on resellers and MSPs like us to sell it. So, that is something I would recommend changing. Otherwise, it’s a great tool, but because of the pricing model, small companies are unable to leverage the advantage of this beautiful tool. So, the pricing model should be suitable for small and medium businesses. The product currently has vulnerability monitoring and everything. But if they could also do something about vulnerability management and maybe patch management, that would be nice.

Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Pros

"Cisco Secure Network Analytics has increased the visibility of what is happening in our network, and I think that's the most important reason to use it. We can see what is really happening instead of just looking at numbers from routers or switches."

"The solution has increased our threat detection rate. Cisco Stealthwatch has not reduced our incident response times. It has not reduced the amount of time it takes us to detect immediate threats. It has reduced false positives."

"The most valuable feature is NetFlow. The beginning of any security investigation starts with NetFlow data."

"Using this solution has helped us to detect and identify viruses or malicious activity in the network early on."

"The solution reduces the amount of time it takes to detect and remediate threats."

"Stealthwatch has greatly improved our network visibility, in terms of bandwidth, malware, and PCI violations."

"Ease of deployment, once you get your ducks in a row."

"Being able to identify specific date closed across the network is invaluable."

More Cisco Secure Network Analytics pros

"It can integrate with almost any cybersecurity tool available in the market."

"Stellar Cyber Open XDR offers these functionalities at a more affordable price, making it easier for me to position it with price-sensitive customers."

Cons

"I would like the search page available with Cisco Stealthwatch to be more intuitive. The previous release was better than the current one for the UI."

"The usability of this solution needs to be improved."

"It's not great as a standalone solution."

"I would like to see more expansion in artificial intelligence and machine learning features."

"One area that could be improved in SNA is the integration with Cisco ISE for user and session details, which currently requires additional setup."

"We would like the solution to make more advances in the way that Extreme Networks has been doing."

"I would like to see a hybrid solution that can work without being connected directly to the internet for those destinations."

"The solution should have the ability to analyze security events not only at the network layer but also at the application and OS layers."

More Cisco Secure Network Analytics cons

"Support is an issue because they have a limited number of resources."

"I would rate the stability at about five to six. The platform requires some fine-tuning, especially when integrating data sources and creating connectors."

Pricing and Cost Advice

"The tool is not cheaply priced."

"There are additional licenses needed for the number of so-called network flows. It's hard to plan the number of flows you need in the network, this is a problem. The price of the Cisco Stealthwatch is relatively inexpensive"

"Our fees are approximately $3,000 USD."

"The pricing for this solution is good."

"The licensing costs are outrageous."

"Licensing is done by flows per second, not including outside (in traffic)."

"It is worth the cost."

"We pay for support costs on a yearly basis."

More Cisco Secure Network Analytics pricing and cost advice

"It’s a single license platform."

See which vendors are best for you

Use our free recommendation engine to learn which Network Traffic Analysis (NTA) solutions are best for your needs.

See recommendations

868,759 professionals have used our research since 2012.

Top Industries

By visitors reading reviews

Computer Software Company

22%

Government

11%

Manufacturing Company

Financial Services Firm

Manufacturing Company

13%

Computer Software Company

11%

Comms Service Provider

10%

Government

Company Size

By reviewers

Large Enterprise

Midsize Enterprise

Small Business

By reviewers
Company Size	Count
Small Business	11
Midsize Enterprise	7
Large Enterprise	52

No data available

Questions from the Community

What do you like most about Cisco Stealthwatch?

The most valuable feature of Cisco Secure Network Analytics is the Threat Intelligence integration.

What is your experience regarding pricing and costs for Cisco Stealthwatch?

Regarding cost, for the Bangladesh context, Cisco Secure Network Analytics is a little bit high-priced because we are a developing country, making it tough to manage affordable solutions. However, ...

What needs improvement with Cisco Stealthwatch?

What is your experience regarding pricing and costs for Stellar Cyber Open XDR?

Pricing is a major benefit of Stellar Cyber Open XDR. I rate it between three and four on the cost scale. It offers functionalities at a significantly lower cost than rival products, enabling me to...

What needs improvement with Stellar Cyber Open XDR?

I am currently evaluating Stellar Cyber Open XDR in terms of their support. I do not see any major areas for improvement as of now. Their support is good, and the team is small, enabling them to ca...

What is your primary use case for Stellar Cyber Open XDR?

I use Stellar Cyber Open XDR ( /products/stellar-cyber-open-xdr-reviews ) as a 24/7 security monitoring tool, especially for customers with large and medium networks. It eliminates the need for a d...

Darktrace vs Cisco Secure Network Analytics

Comparisons

Compared 16% of the time

ThousandEyes vs Cisco Secure Network Analytics

Compared 8% of the time

Vectra AI vs Cisco Secure Network Analytics

Compared 8% of the time

ExtraHop Reveal(x) vs Cisco Secure Network Analytics

Compared 5% of the time

Arista NDR vs Cisco Secure Network Analytics

Compared 3% of the time

More Cisco Secure Network Analytics Competitors

Wazuh vs Stellar Cyber Open XDR

Compared 17% of the time

Sentinel vs Stellar Cyber Open XDR

Compared 8% of the time

Lumu vs Stellar Cyber Open XDR

Compared 6% of the time

Elastic Security vs Stellar Cyber Open XDR

Compared 5% of the time

CrowdStrike Falcon vs Stellar Cyber Open XDR

Compared 5% of the time

More Stellar Cyber Open XDR Competitors

Product Reports

Cisco Secure Network Analytics

Download Cisco Secure Network Analytics product report

Extended Detection and Response (XDR)

Download Stellar Cyber Open XDR product report

Also Known As

Cisco Stealthwatch, Cisco Stealthwatch Enterprise, Lancope StealthWatch

No data available

Overview

Cisco Secure Network Analytics is a highly effective network traffic analysis (NTA) solution that enables users to find threats in their network traffic even if those threats are encrypted. It turns an organization’s network telemetry into a tool that creates a complete field of vision for the organization’s administrators. Users can find threats that may have infiltrated their systems and stop them before they can do irreparable harm.

Cisco Secure Network Analytics Benefits

A few ways that organizations can benefit by choosing to deploy Cisco Secure Network Analytics include:

Security scaling. Secure Network Analytics makes it easy for organizations to scale up their level of network protection to match the growth that their business is experiencing. It can be deployed on whatever type of system is necessary. Users will have their growth needs met at every stage of their business journey because the solution offers users the ability to use it on-premises or in the cloud and it can be consumed as a SaaS-based or license-based solution. Whenever any kind of device is added, Secure Network Analytics can automatically classify that device so that it is seamlessly integrated into its network protection system.

Detects threats as they appear. Users gain the ability to scan their network traffic for even the most advanced threats at all times. Secure Network Analytics easily identifies the early warning signs that are typically initiated before attacks are conducted by bad actors. Once these signs are found, users are warned so that they can take steps to prevent those threats from escalating. This also enables users to determine the source of the threat and whether it might have spread further than initially thought.

Eliminate blind spots. Organizations that use Secure Network Analytics can view their network traffic across both private networks and public cloud environments. The scanning power of the solution allows users to gain complete visibility with a fewer number of sensors than their competitors require to achieve a similar level of protection.

Cisco Secure Network Analytics Features

Some of the many features that Cisco Secure Network Analytics offers include:

Centralized security management. Secure Network Analytics’ Identity Services Engine feature enables users to control their network from a single graphical user interface. Administrators can simplify their jobs by controlling profiler, posture, guest, authentication, and authorization services from a single pane of glass.

Machine learning tools. Secure Network Analytics uses machine learning to generate alerts when malicious or suspicious activity is detected. It also analyzes the threat so that users gain insight into the nature of the dangers that confront them. Additionally, it examines the threats to determine whether they are actual threats or false alarms. This significantly reduces the number of false alarms that administrators have to spend time attempting to resolve.

Automation. Users can automate routine tasks that users would otherwise have to handle manually. This automation feature frees administrators and employees to handle other more critical tasks.

Reviews from Real Users

Cisco Secure Network Analytics is a solution that stands out even when compared to many other comparable products. Two major advantages that it offers are the way that it enables users to define the threshold at which the solution will issue a warning to administrators and the predefined alerts that it offers straight out of the box.

Gerald J., the information technology operations supervisor at Aboitiz Equity Ventures, Inc., writes, “StealthWatch lets me see the ports running in and out and the country. It has excellent reporting, telemetry, and artificial intelligence features. With the telemetry, I can set thresholds to detect sudden changes and the alarms go through the PLC parts. I can see all the ports running on that trunk.”

A senior security engineer at a tech services company, says, “Cisco Stealthwatch has predefined alerts for different types of security issues that might happen in the network. Whether it's PCs or servers that are used for botnets or Bitcoin mining we receive the alerts automatically. This functionality is what we receive from the solution out of the box.”

Cisco

Stellar Cyber Open XDR delivers an advanced, unified security solution designed for real-time threat detection and intelligent response, reducing complexity by integrating multiple tools into a single interface.

Stellar Cyber Open XDR aggregates security data from many sources to provide comprehensive threat detection and response capabilities. It offers a streamlined, user-friendly experience, allowing teams to efficiently manage incidents. By automating routine security tasks, it enhances operational efficiency and increases visibility across the entire network infrastructure.

What are the key features of Stellar Cyber Open XDR?

Open Integration: Connects with existing security tools for seamless data aggregation and correlation.
AI-Powered Analytics: Uses artificial intelligence to predict, detect, and respond to threats with high accuracy.
Automated Incident Response: Accelerates the fighting-back process through intelligent automation.
Comprehensive Dashboards: Offers clear visibility into security metrics through customizable dashboards.

What benefits or ROI should users expect?

Improved Threat Detection: Recognizes threats faster, allowing quick response to reduce potential damage.
Increased Efficiency: Reduces manual work by automating repetitive tasks, saving time for IT teams.
Cost Reduction: Consolidates security tools, decreasing overall expenditure on multiple solutions.
Enhanced Collaboration: Allows diverse security teams to work together more effectively with shared insights.

Stellar Cyber Open XDR is implemented across various industries, including finance, healthcare, and retail, offering tailored security strategies suited to industry-specific challenges. Organizations can take advantage of this integrated approach to align security operations with industry regulations efficiently.

Stellar Cyber

Sample Customers

Edge Web Hosting, Telenor Norway, Ivy Tech Community College of Indiana, Webster Financial Corporation, Westinghouse Electric, VMware, TIAA-CREF

Sumitomo Chemical USA, PlastiPak Packaging, University of Denver, Large California State Agency, Large Midwestern American City

Cisco Secure Network Analytics vs. Stellar Cyber Open XDR