No more typing reviews! Try our Samantha, our new voice AI agent.

Galvanize IncidentBond [EOL] vs Palo Alto Networks Cortex XSOAR comparison

The compared Diligent and Palo Alto Networks solutions aren't in the same category. Palo Alto Networks is ranked #3 in SOAR , with an average rating of 8.5, and holds a 8.8% mindshare. Additionally, 100% of Diligent users are willing to recommend the solution, compared to 90% of Palo Alto Networks users who would recommend it.
Palo Alto Networks Cortex X...
Read 51 Palo Alto Networks Cortex XSOAR reviews
  • 9,692 Views
  • 5,718 Comparison Views
90% willing to recommend
 

Comparison Buyer's Guide

Download the report
Executive Summary
We performed a comparison between Galvanize IncidentBond [EOL] and Palo Alto Networks Cortex XSOAR based on real PeerSpot user reviews.

Find out what your peers are saying about ServiceNow, Trellix, Proofpoint and others in Security Incident Response.

DOWNLOAD THE COMPLETE REPORT
To learn more, read our detailed Security Incident Response Report (Updated: April 2026).
Buyer's Guide
Security Incident Response
April 2026
Download the complete report
Helped 893,244 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Categories and Ranking

Galvanize IncidentBond [EOL]
Average Rating
9.0
Number of Reviews
1
Ranking in other categories
No ranking in other categories
Palo Alto Networks Cortex X...
Average Rating
8.4
Reviews Sentiment
6.5
Number of Reviews
51
Ranking in other categories
Security Orchestration Automation and Response (SOAR) (3rd), SOC as a Service (2nd)
 

Featured Reviews

DE
Daniel Eakin
Information Security Engineer at a financial services firm with 1,001-5,000 employees
Customization and transparency of data, while maintaining a mostly user-friendly UI
Sadly, I can’t provide specific examples due to the nature of the content of the improvements. I will say that, prior to implementation, and post-implementation, we saw a nearly 800% increase in volume of completed and correctly completed documentation in regards to specific tasks being completed. Rsam puts the workflow first, and lets the record follow it. It literally puts a task on rails and the person needing to do the work only need respond to the prompts accordingly and let Rsam automate the rest. The data is cleaner, more uniform, and there’s simply more of it created more quickly, as a result.
Read full review
CC
ChrisCollins
Enterprise Security Architect V at FirstEnergy
Customization supports seamless workflow while data influx challenges response time
What I appreciate most about Palo Alto Networks Cortex XSOAR is that it is very open, even more so than Anomali. I can create various custom automations and custom fields. There is significant customization ability in this platform. If I already have an established process, I do not have to change my process to fit into the tool. I can modify the tool to fit into my process, which makes things considerably easier. All of our alerts from different tools come into this central place as we have multiple SIEMs. We have items coming from Anomali and other platforms that are not SIEM tools. This serves as our central location where our SOC analysts can work and determine if incident response is needed. The platform provides data enrichment capabilities, offering information upfront so analysts do not have to search for it. They can access details such as username, phone number, email address, and workplace information. For malware files, they can retrieve details from VirusTotal, including file names and environment presence. We have built substantial automation around these features, which also helps us track case metrics, investigation time, and threat mitigation duration.
Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"The customization and the transparency of data while still maintaining a mostly user-friendly UI, are key features. It allows for me, as an engineer, to evolve the individual components and modules, and to create a much more meaningful picture than the individual pieces in isolation ever could."
"Rsam puts the workflow first, and lets the record follow it, literally putting a task on rails so the person needing to do the work only needs to respond to the prompts accordingly and let Rsam automate the rest."
"The Palo Alto ecosystem has a marketplace offering integration with Sentinel or other products."
"The most valuable features are simplicity and ease of integration."
"The most valuable feature is automation."
"The product can automate security tasks."
"Cortex XSOAR's most valuable features are the playbooks, custom integration, the machine-learning model, and the layout, classifier, and mapper."
"The set of playbooks that XSOAR already has inside it is really huge, and it is also great for a lot of informational security managers and engineers that can just choose what they need and not have to create anything from scratch."
"For organizations that are stable with their security operations, like those with around 50 members in their security team running full-phased operations 24/7, Cortex is necessary."
"Many different playbooks are available and can be customized."
More Palo Alto Networks Cortex XSOAR pros
 

Cons

"Hands down, if Rsam adopted a more industry proper "End of life – Deprecated – Stable – Release – Experimental" system with their releases, and all the proper checks and balances, I’d be an incredibly happy individual."
"Stable – Release – Experimental" system with their releases, and all the proper checks and balances, I’d be an incredibly happy individual. I can appreciate the cause and affect, wherein the customization of the tool drives rapid release schedules, and the paradox that creates with the idea of stable releases. I’d also like more transparency about known bugs and issues."
"XSOAR could have more integration options."
"The solution's correlation rules and playbooks should be improved."
"With Palo Alto Networks Cortex XSOAR, managing its setup phase can be a complicated task."
"I would love to see more flexibility on what we can display and design on the dashboards."
"Palo Alto Networks Cortex XSOAR could improve the Panorama feature. We had to turn it off because it was not working properly."
"The dashboard could be better."
"There should be an on-premise version available for customers to have different choices."
"The configuration of the solution could improve it is difficult."
More Palo Alto Networks Cortex XSOAR cons
 

Pricing and Cost Advice

Information not available
"When I first looked at Demisto, it had a price tag of $250,000 but when we finally purchased it, it was $345,000."
"The price of Palo Alto Networks Cortex XSOAR could be reduced. We are always looking for a discount. There is an annual license needed to use this solution."
"My company did not make any payments towards the licensing costs attached to the product since we were only using its pilot version."
"The solution's cost is reasonable."
"The solution's pricing needs improvement."
"The solution is expensive."
"The pricing is fair. The pricing reflects the value and feature set it offers."
"It is expensive."
More Palo Alto Networks Cortex XSOAR pricing and cost advice
report
See which vendors are best for you
Use our free recommendation engine to learn which Security Incident Response solutions are best for your needs.
See recommendations
893,244 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
No data available
Financial Services Firm
13%
Computer Software Company
10%
Manufacturing Company
8%
Government
6%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
No data available
By reviewers
Company SizeCount
Small Business20
Midsize Enterprise9
Large Enterprise26
 

Questions from the Community

Ask a question
Earn 20 points
What is your experience regarding pricing and costs for Palo Alto Networks Cortex XSOAR?
Comparing pricing to Micro Focus, they were offering bundles, making it free with their SIEM. For customers, it is zero versus $20 million, which is why they have to make a decision.
See all answers
What needs improvement with Palo Alto Networks Cortex XSOAR?
Regarding areas for improvement in Palo Alto Networks Cortex XSOAR, I want to highlight one concern about playbook creation. While I personally appreciate this approach, I have observed that junior...
See all answers
What is your primary use case for Palo Alto Networks Cortex XSOAR?
My primary use cases for Palo Alto Networks Cortex XSOAR are malware incidents, specifically phishing-related incidents, Trojan horses, spyware, and similar threats.
See all answers
 

Comparisons

SECDO Platform vs Galvanize IncidentBond [EOL] Logo
SECDO Platform vs Galvanize IncidentBond [EOL]
Compared 58% of the time
More Galvanize IncidentBond [EOL] Competitors
Cortex XSIAM vs Palo Alto Networks Cortex XSOAR Logo
Cortex XSIAM vs Palo Alto Networks Cortex XSOAR
Compared 19% of the time
Splunk SOAR vs Palo Alto Networks Cortex XSOAR Logo
Splunk SOAR vs Palo Alto Networks Cortex XSOAR
Compared 8% of the time
Fortinet FortiSOAR vs Palo Alto Networks Cortex XSOAR Logo
Fortinet FortiSOAR vs Palo Alto Networks Cortex XSOAR
Compared 7% of the time
ServiceNow Security Operations vs Palo Alto Networks Cortex XSOAR Logo
ServiceNow Security Operations vs Palo Alto Networks Cortex XSOAR
Compared 4% of the time
Tines vs Palo Alto Networks Cortex XSOAR Logo
Tines vs Palo Alto Networks Cortex XSOAR
Compared 4% of the time
More Palo Alto Networks Cortex XSOAR Competitors
 

Product Reports

Buyer's Guide
Security Incident Response
April 2026
Galvanize IncidentBond [EOL] reportDownload Galvanize IncidentBond [EOL] product report
Buyer's Guide
Palo Alto Networks Cortex XSOAR
April 2026
Palo Alto Networks Cortex XSOAR reportDownload Palo Alto Networks Cortex XSOAR product report
 

Also Known As

IncidentBond, Rsam SIRP, Rsam Incident Management, Rsam Security Incident Response Platform
Demisto Enterprise, Cortex XSOAR, Demisto
 

Overview

Rsam’s Security Incident Response Platform (SIRP) simplifies and speeds monitoring and resolution. Our dynamic workflow can replicate any existing incident management process and allows you to make changes as your processes evolve - all from a single interface. Track the lifecycle of a security incident and coordinate actions quickly and with ease. 

Diligent

Palo Alto Networks Cortex XSOAR enhances security operations automation and integration. Users rely on its incident management capabilities and machine learning to improve response times and efficiency.

Cortex XSOAR stands out for its capability to automate and orchestrate security tasks through customizable playbooks and robust third-party integrations. Its analytics offer insights into incidents, while machine learning prioritizes alerts and reduces false positives. Despite its powerful features, users note room for improvement in documentation, interface design, and integration capabilities. Cost and complexity in setup and deployment are also concerns. Users in security operations centers benefit significantly from automated data enrichment, streamlined incident response, and efficient handling of threats like phishing and endpoint management.

What are the key features of Cortex XSOAR?
  • Automation & Integration: Automates security tasks and integrates with many third-party tools.
  • Customizable Playbooks: Flexible playbook creation tailored to specific security needs.
  • User-Friendly Interface: Simplifies incident management, improving workflow efficiency.
  • Machine Learning: Prioritizes alerts and reduces false positives for better decision-making.
  • Analytics & Dashboards: Provides insights through customizable analytics and dashboards.
Why should users consider Cortex XSOAR's benefits?
  • Reduced Response Times: Accelerates incident response through automation and orchestration.
  • Improved Workflows: Streamlines security operations for greater efficiency.
  • Insightful Analytics: Offers valuable insights into security incidents and operations.
  • Scalability: Supports growing security needs with straightforward scalability.
  • Enhanced Threat Management: Increases capabilities in handling phishing and endpoint threats.

Cortex XSOAR is implemented across industries for automating and streamlining security operations. Organizations use it to create playbooks, integrate with security tools, and automate repetitive tasks, thereby improving the efficiency of their security operations centers and incident management processes.

Palo Alto Networks
 

Sample Customers

Information Not Available
Cellcom Israel, Blue Cross and Blue Shield of Kansas City, esri, Cylance, Flatiron Health, Veeva, ADT Cybersecurity
Buyer's Guide
Security Incident Response
April 2026
Download Free Report
Find out what your peers are saying about ServiceNow, Trellix, Proofpoint and others in Security Incident Response. Updated: April 2026.
DOWNLOAD NOW
893,244 professionals have used our research since 2012.

We monitor all Security Incident Response reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.