Cortex XDR by Palo Alto Networks Reviews

We use the solution for telemetry and for its anti-virus capability.

The solution allows us to make investigations. Other XDR solutions also provide similar capabilities but for investigation, Cortex XDR is better.

The product's pricing could be better.

I have been using the tool for several years.

The solution is stable. I would rate its stability a nine out of ten. 

The product is scalable. 

The technical support team is good.

The initial setup was easy.

The tool is worth its money. 

I would rate the solution an eight out of ten. 

We use Cortex XDR as part of our security solution.

its a very good solution and single solution for entire infrastructure, give us good co-relation of incident. Single solution for Network, Endpoint, Servers. 

The most valuable for us is the correlation feature. You are able to correlate data that is coming from the firewall, network, server, and endpoints. This is one of our main requirements and makes for a good product.

It works with the data lake in an agent-based or agentless manner.

It is easy to integrate most with network devices, including firewalls, and Active Directory. We use firewalls from different vendors including Palo Alto and Check Point, and it supports them.

There are some third-party solutions that are difficult to integrate with, which is something that can be improved.

We have not experienced any issues with respect to stability at this point.

Scalability has not been a problem.

We have been in contact with technical support and are satisfied with them.

Positive

its a Straightforward

We have an in-house team for deployment and maintenance.

It replace multiple solution and due to this it will reduce the Administrative effort.

I have run a PoC with both CrowdStrike and Cortex XDR, and from my observation, I felt that Cortex was much better at meeting our requirements. It is also easier to use.

CrowdStrike was difficult when it came to integrating with other products and it does not work on mobile devices.

My advice for anybody who is considering Cortex XDR is that it is a complete solution, and has very good features. From my experience, it is one of the better ones in the market. That said, no product is 100%.

I would rate this solution a nine out of ten.

My primary use of this solution is as an endpoint security client.

This product has not improved my organization - in fact, we are in the process of moving back to another product as a result of Cortex's horrible impact on system performance.

The most valuable features of this product are the management capabilities, which allow an IT organization to get quite a good picture of attempted cyber attacks, and its out-of-the-box investigation capabilities.

The product's impact on system performance is horrible, adding a lot of delays for users. 

I have been using this solution for four months.

The onboarding process was quite cumbersome. It took some time to deploy as we had to investigate about 500 cases of clients who did not get the agent immediately.

I implemented using a vendor team.

I would rate this solution as five out of ten.

I have deployed some customized playbooks and modified ones which are out-of-the-box with more integration with SIEM solutions such as ArcSight, QRadar, ADRs and Trend Micro.

The solution should offer more dashboards and they should be better customized. The case number of items should be addressed. 

I have found the interface of Azure to be more simple and customizable than that of the solution. 

I have worked on Cortex XDR by Palo Alto Networks with my customers for a number of weeks. 

The stability is good. 

The scalability is fine. 

We have plans to increase the usage. 

The initial setup was simple. 

The deployment took no more than two hours. 

So far, I have made use of the free license which is offered. Once it ended, I was able to buy a license based on the number of users or divisions. The license varies with the number of users or applications involved. 

If one wishes to work with another team or large number of users at a future point, he must purchase a license for them. 

The interface of Azure is more simple and customizable than Cortex XDR by Palo Alto Networks.

I have found the solution to be very easy in respect of the integration and configurable. The integrations are out-of-the-box, as are the playbooks. 

The solution is deployed solely on-premises on a single server. 

As of now, there are six users making use of the solution. 

My advice is that the on-premises environments for the product's use should be increased. 

I rate Cortex XDR by Palo Alto Networks as an eight out of ten. 

We are using it for a banking client.

Its interface and pricing are most valuable. It is better than other vendors in terms of security.

It is not very strong in terms of endpoint management. It should have additional features like DLP, encryption, or advanced device control. Currently, Cortex is good in terms of the security of the endpoints, but it is not as good as other vendors in terms of the management of the endpoint.

I have been using this solution for two years.

It is very stable. I wouldn't recommend the latest version. Being a new version, it would have bugs, which is similar to the new versions of other products.

In Peru, we have approximately 20,000 users. The banking client doesn't have any plans to expand the usage. We might increase its usage by 200 to 500 with new clients.

Technical support of Palo Alto is the best.

It is very easy to deploy. The deployment is quick. The deployment of the management console takes just two hours, but the deployment of the agent takes approximately a month.

We have five to eight engineers for deployment and maintenance.

I would rate Cortex XDR a nine out of 10.

I use it for visibility, mitigation, and analysis of advanced threat attacks.

Its ability to react to cyber data attacks is awesome. That is pretty much the use of it. What blows your mind is the ability to access your assets remotely and see what is actually going on with them. You can not only see them in a console. You can also react very rapidly to your assets that are compromised.

It should support more mobile operating systems. That is one of the cons of their infrastructure right now.

I have been using this solution for more than four years.

It has been extremely stable.

It is easily scalable. For example, if you have version 2, Palo Alto upgrades it automatically. The agents for your assets are also scalable for new operating systems. So, it is very scalable.

Their technical support is very agile and very good. I would rate them a nine out of 10.

It is way too easy to deploy it and set it up.

I would highly recommend it unless you have iOS assets on your network.

I would rate Cortex XDR an eight out of 10.

Threat identification and detection are the most valuable features of this solution.

I would like the Panorama module included. It's another solution that is provided by Palo Alto and we are interested in that.

I would like to see some additional features related to email protection included.

I have been working with Cortex XDR for a year and a half.

Technical support is okay.

I don't have any issues with the pricing. We are satisfied with the price.

I would rate Cortex XDR by Palo Alto Networks a ten out of ten.

I use the solution for endpoint protection.

One of the main benefits of the solution is its intelligence to correlate the events into an incident.

The solution could improve by providing better integration with their own products and others.

I have been using this solution for approximately one year.

The solution is stable.

It is one of the best in the market for scalability.

We have approximately 500 people using this solution in my organization and we plan to increase usage.

The initial installation is easy.

We did the implantation of the solution with integrators.

The price of the solution is high for the license and in general.

We evaluated CrowedStrike and Darktrace.

I would recommend this solution to others.

I rate Cortex XDR by Palo Alto Networks a nine out of ten.