Try our new research platform with insights from 80,000+ expert users
Cortex XSIAM Logo

Cortex XSIAM pros and cons

Vendor: Palo Alto Networks
4.2 out of 5
Leave a review

Pros & Cons summary

Cortex XSIAM delivers robust security intelligence, optimizing operations through effective threat detection across networks and endpoints. Machine learning and automation features enhance response times and refined search results minimize unnecessary alerts. Although valued for integration features, more comprehensive integration with cybersecurity solutions and software products is needed. Enhancements in data onboarding, parser support, and third-party integrations would be beneficial. Pricing and technical support also have scope for improvement.

Buyer's Guide

Get pricing advice, tips, use cases and valuable features from real users of this product.
Get the category report

Prominent pros & cons

PROS

Cortex XSIAM enhances security operations with substantial security intelligence and optimizes threat detection across networks and endpoints.
Integration capability and artificial intelligence usage in Cortex XSIAM enable effective detection of security vulnerabilities and incidents of compromise.
Cortex XSIAM's automation capability streamlines response times by centralizing incident responses on a single dashboard.
The flexibility in creating manual workflows and applying endpoint protection policies is notable in Cortex XSIAM.
Cortex XSIAM improves response times by 20% and effectively filters unnecessary alerts, ensuring focus on critical incidents.

CONS

Further integration capabilities with various software products would be advantageous for Cortex XSIAM.
The pricing and technical support could be improved.
Cortex XSIAM could provide more flexibility and ease for developers.
Integration with a larger variety of products could be enhanced.
Improvements are needed in terms of data onboarding, parsers, and third-party integration supports.
 

Cortex XSIAM Pros review quotes

Forrest Stevens - PeerSpot reviewer
Sep 28, 2023
Its ability to deliver a substantial amount of security intelligence greatly enhances and optimizes our security operations program.
Read full review
Mostafa-Ahmed - PeerSpot reviewer
Sep 29, 2023
It operates on a single, extensive database which enables it to excel in detecting threats and anomalies across the network and endpoints, delivering a highly effective and comprehensive security solution.
Read full review
AS
Aug 14, 2025
The most valuable aspect is that Cortex XSIAM doesn't generate excessive alerts, refines all search results effectively, and filters out incidents where SOC intervention isn't necessary, allowing engineers to focus only on what matters.
Read full review
Buyer's Guide
Security Information and Event Management (SIEM)
August 2025
Download Free Report
Find out what your peers are saying about Palo Alto Networks, Microsoft, IBM and others in Security Information and Event Management (SIEM). Updated: August 2025.
DOWNLOAD NOW
865,295 professionals have used our research since 2012.
reviewer2562009 - PeerSpot reviewer
Sep 30, 2024
The most valuable feature is the integration capability.
Read full review
VishalPathak2 - PeerSpot reviewer
Dec 27, 2023
It is an effective solution in terms of performance and functionalities.
Read full review
reviewer2666148 - PeerSpot reviewer
Feb 20, 2025
The flexibility for creating manual workflows stands out.
Read full review
AKASH MAJUMDER - PeerSpot reviewer
Mar 28, 2025
Since implementing Cortex XSIAM, incident response times have been significantly reduced by approximately twenty percent.
Read full review
Jitendra_Singh - PeerSpot reviewer
Feb 28, 2025
Cortex XSIAM enhances our ability to apply endpoint protection policies, implement restrictions, conduct scans, and engage in sandboxing.
Read full review
reviewer2590284 - PeerSpot reviewer
Nov 12, 2024
One of the valued aspects of the product is its use of artificial intelligence to detect security vulnerabilities.
Read full review
reviewer2509914 - PeerSpot reviewer
Jul 3, 2024
It does a better job of identifying anomalies that are more likely to be incidents of compromise without as many false positives or false negatives.
Read full review
Show 3 more reviews (out of 13)
 

Cortex XSIAM Cons review quotes

Forrest Stevens - PeerSpot reviewer
Sep 28, 2023
Further integration capabilities with various other software products that can seamlessly tie into Cortex XSIAM would be advantageous.
Read full review
Mostafa-Ahmed - PeerSpot reviewer
Sep 29, 2023
The platform isn't very developer-friendly and it should provide more flexibility and ease.
Read full review
reviewer2562009 - PeerSpot reviewer
Sep 30, 2024
I am not sure if any improvements are needed right now.
Read full review
Buyer's Guide
Security Information and Event Management (SIEM)
August 2025
Download Free Report
Find out what your peers are saying about Palo Alto Networks, Microsoft, IBM and others in Security Information and Event Management (SIEM). Updated: August 2025.
DOWNLOAD NOW
865,295 professionals have used our research since 2012.
VishalPathak2 - PeerSpot reviewer
Dec 27, 2023
The support could be a bit faster.
Read full review
reviewer2666148 - PeerSpot reviewer
Feb 20, 2025
The standard integrations are very limited, and the integrations available are not listed in the marketplace.
Read full review
AKASH MAJUMDER - PeerSpot reviewer
Mar 28, 2025
Cortex XSIAM needs improvements in terms of data onboarding, parsers, and third-party integration supports.
Read full review
Jitendra_Singh - PeerSpot reviewer
Feb 28, 2025
I would rate the overall stability a six or seven, as we have only used it for a few months and need a year of experience to provide a full assessment.
Read full review
reviewer2590284 - PeerSpot reviewer
Nov 12, 2024
Cortex could improve the detection and online resolution of security vulnerabilities.
Read full review
reviewer2509914 - PeerSpot reviewer
Jul 3, 2024
It could provide more integration with a large variety of products.
Read full review
YP
Jul 26, 2024
There is room for improvement in expanding integrations to include more cybersecurity solutions.
Read full review
Show 2 more reviews (out of 12)

Product Categories

Product Categories
Security Information and Event Management (SIEM)
Identity Threat Detection and Response (ITDR)
AI-Powered Cybersecurity Platforms

Popular Comparisons

Popular Comparisons
CrowdStrike Falcon vs Cortex XSIAM Logo
CrowdStrike Falcon vs Cortex XSIAM
Microsoft Sentinel vs Cortex XSIAM Logo
Microsoft Sentinel vs Cortex XSIAM
Splunk Enterprise Security vs Cortex XSIAM Logo
Splunk Enterprise Security vs Cortex XSIAM
Darktrace vs Cortex XSIAM Logo
Darktrace vs Cortex XSIAM
IBM Security QRadar vs Cortex XSIAM Logo
IBM Security QRadar vs Cortex XSIAM
Cortex XDR by Palo Alto Networks vs Cortex XSIAM Logo
Cortex XDR by Palo Alto Networks vs Cortex XSIAM
Elastic Security vs Cortex XSIAM Logo
Elastic Security vs Cortex XSIAM
Varonis Platform vs Cortex XSIAM Logo
Varonis Platform vs Cortex XSIAM
Trend Vision One vs Cortex XSIAM Logo
Trend Vision One vs Cortex XSIAM
Vectra AI vs Cortex XSIAM Logo
Vectra AI vs Cortex XSIAM
Microsoft Defender for Identity vs Cortex XSIAM Logo
Microsoft Defender for Identity vs Cortex XSIAM
Rapid7 InsightIDR vs Cortex XSIAM Logo
Rapid7 InsightIDR vs Cortex XSIAM
Fortinet FortiSIEM vs Cortex XSIAM Logo
Fortinet FortiSIEM vs Cortex XSIAM
Cribl vs Cortex XSIAM Logo
Cribl vs Cortex XSIAM
Google Chronicle Suite vs Cortex XSIAM Logo
Google Chronicle Suite vs Cortex XSIAM
See all alternatives

Product Categories

Product Categories
Security Information and Event Management (SIEM)
Identity Threat Detection and Response (ITDR)
AI-Powered Cybersecurity Platforms

Popular Comparisons

Popular Comparisons
CrowdStrike Falcon vs Cortex XSIAM Logo
CrowdStrike Falcon vs Cortex XSIAM
Microsoft Sentinel vs Cortex XSIAM Logo
Microsoft Sentinel vs Cortex XSIAM
Splunk Enterprise Security vs Cortex XSIAM Logo
Splunk Enterprise Security vs Cortex XSIAM
Darktrace vs Cortex XSIAM Logo
Darktrace vs Cortex XSIAM
IBM Security QRadar vs Cortex XSIAM Logo
IBM Security QRadar vs Cortex XSIAM
Cortex XDR by Palo Alto Networks vs Cortex XSIAM Logo
Cortex XDR by Palo Alto Networks vs Cortex XSIAM
Elastic Security vs Cortex XSIAM Logo
Elastic Security vs Cortex XSIAM
Varonis Platform vs Cortex XSIAM Logo
Varonis Platform vs Cortex XSIAM
Trend Vision One vs Cortex XSIAM Logo
Trend Vision One vs Cortex XSIAM
Vectra AI vs Cortex XSIAM Logo
Vectra AI vs Cortex XSIAM
Microsoft Defender for Identity vs Cortex XSIAM Logo
Microsoft Defender for Identity vs Cortex XSIAM
Rapid7 InsightIDR vs Cortex XSIAM Logo
Rapid7 InsightIDR vs Cortex XSIAM
Fortinet FortiSIEM vs Cortex XSIAM Logo
Fortinet FortiSIEM vs Cortex XSIAM
Cribl vs Cortex XSIAM Logo
Cribl vs Cortex XSIAM
Google Chronicle Suite vs Cortex XSIAM Logo
Google Chronicle Suite vs Cortex XSIAM
See all alternatives
Related questions
  • 191
What Solution for SIEM is Best To Be NIST 800-171 Compliant?
  • 57
When evaluating Security Information and Event Management (SIEM), what aspect do you think is the most important feature to look for?
  • 106
What are the main differences between Nessus and Arcsight?
  • 32
What's The Best Way to Trial SIEM Solutions?
  • 142
Which is the best SIEM solution for a government organization?
  • 834
What is the difference between IT event correlation and aggregation?
  • 72
What Is SIEM Used For?
  • 41
RSA-EMC vs. other SIEM products?
  • 362
What Questions Should I Ask Before Buying SIEM?
  • 131
What are the pros and cons of internal SOC vs SOC-as-a-Service?