IPS sensors are more suited for companies that do not have visibility into their network with third-party analyzing tools. Scenarios would be to place IPS sensors at the perimeter firewalls mainly. IPS sensors are less appropriate for companies that have third-party analyzing tools that will mitigate vulnerabilities and malicious traffic and activities already.
Our customer base is SMB so I can not speak about a larger customer base or organization. I have customers with 3 end points behind the SW and customers with 200 end points behind the SW. The biggest confusion on selection is the WAN / LAN throughput. Once you understand the limitations and select the correct product I have been happy with the product on a wide range of customers. It is a bit pricey for a small operation but if they are handling sensitive data it is very cost effective.
IPS sensors provides the necessary network visibility my company needs to satisfy its security appetite. By doing so, we have been able to stay compliant and up to date with today's network security requirements and procedures. We are able to be proactive with vulnerabilities and reactive to malicious traffic and intrusions in our day to day operations.
Support from SW is superior. End of discussion. Fortinet support was lacking in product knowledge and was noting but reading from a script. SW, if the T1 can not answer I get to T2 immediately. Never an issue to get a resolution in minutes, not hours or days. The staff knows their limits and escalates without question.