Cisco Secure Network Analytics Research Charts : Page 2

Cisco Stealthwatch Customer Research

Additional Telemetry

My organization uses Stealthwatch to gain visibility into:

Application usage	45%
User data	42%
Mobile devices	16%
IoT devices	6%
Other	5%

Cisco Stealthwatch Customer Research

My organization uses Stealthwatch to gain visibility into:

Data centers	69%
Access	60%
Edge	65%
Core	66%
Virtualized infrastructure	31%
Cloud environments	10%
Other	5%

Cisco Stealthwatch Customer Research

Has your organization integrated Stealthwatch with the Cisco Identity Services Engine (ISE) for improved visibility and security?

Yes: 17%

Not yet, but plan to: 38%

Don’t plan to: 25%

Not sure: 19%

Cisco Stealthwatch Customer Research

My organization uses Stealthwatch to:

Conduct forensic investigations	56%
Proactively hunt for threats on the network	51%
Identify malware and APTs	48%
Improve network performance	48%
Combat insider threats	41%
Enforce policy	19%
Prevent ransomware attacks	19%
Segment the network	18%
Prevent DDoS attacks	17%
Other	8%

Cisco Stealthwatch Customer Research

Stealthwatch enables my organization to:

Detect threats faster	67%
Illuminate blind spots in the network	58%
Accelerate incident response	55%
Improve forensic investigations	54%
Use the Network as a Sensor	52%
Secure more areas of the network	43%
Reduce mean time to dwell for threats on the network	30%
Use the Network as an Enforcer	10%
Other	6%

Cisco Stealthwatch Customer Research

Please rate the following capabilities of Stealthwatch:

Very strongly agree Strongly agree Agree Disagree

Simple, easy to use
Open, easy to integrate
Automated, reduces manual work
Effective, enhances security

Cisco Stealthwatch Customer Research

Stealthwatch helps my organization:

Improve security efficacy	76%
Reduce enterprise risk	58%
Increase operational efficiency	56%
Better serve customers/partners	27%
Improve regulatory compliance	25%
Protect intellectual property	24%
Maintain a competitive advantage	15%
Other	9%

Cisco Stealthwatch Customer Research

Stealthwatch helps my organization:

Improve security efficacy	76%
Reduce enterprise risk	58%
Increase operational efficiency	56%
Better serve customers/partners	27%
Improve regulatory compliance	25%
Protect intellectual property	24%
Maintain a competitive advantage	15%
Other	9%

Stealthwatch for Network Visibility & Threat Intelligence

What does the Stealthwatch System help your organization achieve?

Greater network visibility	96%
Heightened threat intelligence	64%
Enhanced visibility in the data center	56%
Improved user identity awareness	34%
Increased application awareness	56%
More visibility into mobile devices	18%
Other	2%

Stealthwatch User & Host Level Data Critical for Network Security

Stealthwatch’s user/host-level information is critical for?

Security	84%
Performance monitoring	68%
Forensics	53%
Compliance	26%
Network Troubleshooting	89%

Stealthwatch – Internal Visibility Provides Security Benefits

What do you find to be the greatest benefit of the internal visibility provided by Cisco Stealthwatch?

Earliest detection of advanced threats (APTs, malware, etc.)	53%
Faster Incident response	58%
Forensics	53%
Monitors individual user activity & mobile devices	26%
Continuous internal monitoring	84%
Contextual & situational awareness	58%
Meets auditing & compliance requirements	21%
Cross-department collaboration	26%
Other	16%

Stealthwatch Customer Review Rating

How would you rate Cisco Stealthwatch?

	53%
	24%
	18%
	6%

StealthWatch Threat Detection

How effective is StealthWatch at the following?

Extremely Effective Effective Ineffective Uncertain

Detecting DDoS
Accelerating incident response and forensics
Detecting advanced persistent threats
Detecting insider threats / Suspicious behavior
Detecting malware / zero-day attacks

How Educational Institutions are using Stealthwatch

How are you currently using Stealthwatch?

Specialized threat analysis & protection	37%
Network analysis & visibility	97%
Advanced threat detection	20%
Network performance monitoring & diagnostics	63%

Stealthwatch being used for…..

Stealthwatch’s user/host-level information is critical for?

Security	72%
Performance Monitoring	50%
Forensics	56%
Compliance	15%
Network Troubleshooting	71%
Other	4%

Stealthwatch effective in many different ways!

How effective is Stealthwatch at the following?

Extremely Effective Effective Ineffective Uncertain

Detecting DDoS
Accelerating incident response and forensics
Detecting advanced persistent threats
Detecting insider threats / Suspicious behavior
Detecting malware / zero-day attacks

Stealthwatch Benefits to Government Industry.

What do you find to be the greatest benefit of the internal visibility provided by Cisco Stealthwatch?

Earliest detection of advanced threats (APTs, malware, etc.)	67%
Faster Incident response	56%
Forensics	44%
Monitors individual user activity & mobile devices	56%
Continuous internal monitoring	67%
Contextual & situational awareness	56%
Meets auditing & compliance requirements	11%

Stealthwatch applications are significant to educational institutes visibility & security.

How critical is Cisco’s Stealthwatch for:

Very Critical Critical Somewhat Critical Not Critical

Monitoring visibility
Improving security
Managing cyber security
Responding to cyber threats

Cisco vs. Competitors

What differentiates Cisco from other competitive products?

Scalability up to 3 million flows per second	39%
1:1 Flows	40%
User centric monitoring	27%
Advanced behavioral detection	49%
Flow analytics	74%
Value for price	26%
Customer support	41%
Other	9%

Stealthwatch benefits large enterprises with time-savings to detection!

How much time does Stealthwatch save per incident for determining Mean-Time-To-Identify threats and Mean-Time-To-Know root cause?

Minutes: 13%

Hours: 67%

Days: 20%

Weeks: 0%

Stealthwatch critical to Federal Government for Security & Forensics Purposes

Stealthwatch’s user/host-level information is critical for?

Security	100%
Performance monitoring	25%
Forensics	100%
Compliance	25%
Network Troubleshooting	50%

Network Security Ecosystem

Do you use Stealthwatch with the following tools to add situational awareness / context?

SIEM	43%
Firewalls	71%
IDS / IPS	56%
Full-packet capture system	40%
Other	5%

Excellent Customer Support!

How would you rank Cisco’s Customer Support ?

Excellent: 46%

Above Average: 31%

Average: 17%

Below Average: 6%

Security Uses of Stealthwatch

How are you currently using Stealthwatch?

Specialized threat analysis & protection	71%
Network analysis & visibility	86%
Advanced threat detection	43%
Network performance monitoring & diagnostics	29%

Benefits of Internal Network Visibility

What do you find to be the greatest benefit of the internal visibility provided by Cisco Stealthwatch?

Earliest detection of advanced threats (APTs, malware, etc.)	43%
Faster Incident response	62%
Forensics	58%
Monitors individual user activity & mobile devices	32%
Continuous internal monitoring	64%
Contextual & situational awareness	38%
Meets auditing & compliance requirements	12%
Cross-department collaboration	20%
Other	9%

Large Enterprise Threat Detection

Which of the following security threats have you used Stealthwatch to detect and/or prevent?

Advanced Persistent Threats	22%
Network Malware or Virus	72%
Suspicious user behavior	89%
External hacking attempt	33%
Compromised host	39%
Data loss / Exfiltration	28%
Command and Control traffic / Botnets	39%
Network reconnaissance	67%

Security Threat Detection

Which of the following security threats have you used Stealthwatch to detect and/or prevent?

Advanced Persistent Threats	26%
Network Malware or Virus	69%
Suspicious user behavior	83%
External hacking attempt	32%
Compromised host	56%
Data loss / Exfiltration	26%
Command and Control traffic / Botnets	35%
Network reconnaissance	60%
Other	4%

Purchasing Influencers

Which of the following influenced your decision to select Stealthwatch by Cisco?

Behavior-based security monitoring	75%
Real-time flow monitoring capabilities	88%
Internal visibility	63%
DDoS	38%
Forensics	63%
Advanced Persistent Threats (APTs)	38%
Auditing and compliance requirements	13%
Scalability	38%
Identity awareness	13%
Application Aware Network Performance Monitoring	25%
Other	13%

Reduced Mean-Time-To-Know (MTTK)

By approximately what percentage did the Stealthwatch deployment reduce the time it took to mitigate a security incident?

Greater than 75%: 27%

50% to 74%: 9%

25% to 49%: 45%

10% to 24%: 9%

Less than 10%: 9%

Detecting/Preventing Security Threats

Which of the following security threats have you used Stealthwatch to detect and/or prevent?

Advanced Persistent Threats	21%
Network Malware or Virus	79%
Suspicious user behavior	84%
External hacking attempt	47%
Compromised host	84%
Data loss / Exfiltration	21%
Command and Control traffic / Botnets	47%
Network reconnaissance	58%

TechValidate Research on Cisco Secure Network Analytics

63 Charts – Page 2 of 3

Additional Telemetry

Stealthwatch for Network Visibility & Threat Intelligence

Stealthwatch User & Host Level Data Critical for Network Security

Stealthwatch – Internal Visibility Provides Security Benefits

Stealthwatch Customer Review Rating

StealthWatch Threat Detection

How Educational Institutions are using Stealthwatch

Stealthwatch being used for…..

Stealthwatch effective in many different ways!

Stealthwatch Benefits to Government Industry.

Stealthwatch applications are significant to educational institutes visibility & security.

Cisco vs. Competitors

Stealthwatch benefits large enterprises with time-savings to detection!

Stealthwatch critical to Federal Government for Security & Forensics Purposes

Network Security Ecosystem

Excellent Customer Support!

Security Uses of Stealthwatch

Benefits of Internal Network Visibility

Large Enterprise Threat Detection

Security Threat Detection

Purchasing Influencers

Reduced Mean-Time-To-Know (MTTK)

Detecting/Preventing Security Threats