No more typing reviews! Try our Samantha, our new voice AI agent.

Cortex XSIAM pros and cons

Vendor: Palo Alto Networks

4.3 out of 5

15 reviews
100% willing to recommend

Pros & Cons summary

Cortex XSIAM enhances security operations, optimizing threat detection and incident response times by 20% using machine learning and automation. Users value its integration and artificial intelligence capabilities, single dashboard management, and advanced visualization. Effective security with reduced false positives is achieved, though pricing and technical support require improvement. Integration with more cybersecurity and third-party solutions is needed, as is streamlined integration validation from Palo Alto, along with improved data onboarding and parsers.

Buyer's Guide

Get pricing advice, tips, use cases and valuable features from real users of this product.

Prominent pros & cons

PROS

Cortex XSIAM enhances and optimizes security operations by delivering substantial security intelligence.

It excels in detecting threats and anomalies across networks and endpoints with its extensive database.

Automation and integration capabilities significantly improve response times and efficiency.

The use of artificial intelligence enhances the detection of security vulnerabilities and reduces false positives.

Cortex XSIAM's advanced visualization helps in understanding security trends effectively.

CONS

Cortex XSIAM is considered expensive with a complex licensing process compared to other options.

Improvements are needed in data onboarding, parsers, and third-party integration support.

There is a lack of flexibility and ease for developers using Cortex XSIAM.

Pricing and technical support require enhancement along with faster support response times.

Standard integrations are limited and obtaining validation for integrations is a lengthy process.

Cortex XSIAM Pros review quotes

Solutions Architect at ostec

Aug 29, 2025

The advanced visualization capabilities of the product are important for understanding security trends in an organization.

Read full review

IT COMMUNICATIONS AND NETWORKS at Américas BPS

Oct 2, 2025

The way the solution responds to detections and warnings is really impressive.

Read full review

reviewer2666148

Associate Director at a financial services firm with 5,001-10,000 employees

Feb 20, 2025

The flexibility for creating manual workflows stands out.

Read full review

Free Report: Cortex XSIAM Reviews and More

Learn what your peers think about Cortex XSIAM. Get advice and tips from experienced pros sharing their opinions. Updated: May 2026.

893,221 professionals have used our research since 2012.

SOC Analyst at OVELOSEC

Mar 28, 2025

Since implementing Cortex XSIAM, incident response times have been significantly reduced by approximately twenty percent.

Read full review

Owner at Xelere

Nov 12, 2024

One of the valued aspects of the product is its use of artificial intelligence to detect security vulnerabilities.

Read full review

Senior Vice President at Chi Networks

Feb 28, 2025

Cortex XSIAM enhances our ability to apply endpoint protection policies, implement restrictions, conduct scans, and engage in sandboxing.

Read full review

Forrest Stevens

Senior Manager - Security Operations at First Advantage Corporation

Sep 28, 2023

Its ability to deliver a substantial amount of security intelligence greatly enhances and optimizes our security operations program.

Read full review

Subject Matter Expert at Softcell Technologies Limited

Dec 27, 2023

It is an effective solution in terms of performance and functionalities.

Read full review

RJ

Director at MICROLOGIC NETWORKS PRIVATE LIMITED

Mar 19, 2025

I would give Cortex XSIAM a rating of ten out of ten.

Read full review

Cybersecurity incident response team lead at Information Technology Solutions- ITS

Sep 29, 2023

It operates on a single, extensive database which enables it to excel in detecting threats and anomalies across the network and endpoints, delivering a highly effective and comprehensive security solution.

Read full review

Show 4 more reviews (out of 14)

Cortex XSIAM Cons review quotes

Solutions Architect at ostec

Aug 29, 2025

Cortex XSIAM is on the expensive side and requires substantial improvement in pricing.

Read full review

IT COMMUNICATIONS AND NETWORKS at Américas BPS

Oct 2, 2025

At the beginning, we experienced some difficulties setting up the product with connectivity and infrastructure, but ultimately it functioned really effectively.

Read full review

reviewer2666148

Associate Director at a financial services firm with 5,001-10,000 employees

Feb 20, 2025

The standard integrations are very limited, and the integrations available are not listed in the marketplace.

Read full review

Free Report: Cortex XSIAM Reviews and More

Learn what your peers think about Cortex XSIAM. Get advice and tips from experienced pros sharing their opinions. Updated: May 2026.

893,221 professionals have used our research since 2012.

SOC Analyst at OVELOSEC

Mar 28, 2025

Cortex XSIAM needs improvements in terms of data onboarding, parsers, and third-party integration supports.

Read full review

Owner at Xelere

Nov 12, 2024

Cortex could improve the detection and online resolution of security vulnerabilities.

Read full review

Senior Vice President at Chi Networks

Feb 28, 2025

I would rate the overall stability a six or seven, as we have only used it for a few months and need a year of experience to provide a full assessment.

Read full review

Forrest Stevens

Senior Manager - Security Operations at First Advantage Corporation

Sep 28, 2023

Further integration capabilities with various other software products that can seamlessly tie into Cortex XSIAM would be advantageous.

Read full review

Subject Matter Expert at Softcell Technologies Limited

Dec 27, 2023

The support could be a bit faster.

Read full review

RJ

Director at MICROLOGIC NETWORKS PRIVATE LIMITED

Mar 19, 2025

Cortex XSIAM is pretty expensive, and the licensing process is not very comfortable compared to CrowdStrike.

Read full review

Cybersecurity incident response team lead at Information Technology Solutions- ITS

Sep 29, 2023

The platform isn't very developer-friendly and it should provide more flexibility and ease.

Read full review

Show 4 more reviews (out of 14)

Product Categories

Product Categories

Security Information and Event Management (SIEM)

Identity Threat Detection and Response (ITDR)

AI-Powered Cybersecurity Platforms

Popular Comparisons

Popular Comparisons

CrowdStrike Falcon vs Cortex XSIAM

Cortex XDR by Palo Alto Networks vs Cortex XSIAM

Wazuh vs Cortex XSIAM

Splunk Enterprise Security vs Cortex XSIAM

SentinelOne Singularity Endpoint vs Cortex XSIAM

Darktrace vs Cortex XSIAM

IBM Security QRadar vs Cortex XSIAM

Microsoft Sentinel vs Cortex XSIAM

Varonis Platform vs Cortex XSIAM

Elastic Security vs Cortex XSIAM

Cribl vs Cortex XSIAM

TrendAI Vision One vs Cortex XSIAM

Rapid7 InsightIDR vs Cortex XSIAM

Vectra AI vs Cortex XSIAM

Fortinet FortiSIEM vs Cortex XSIAM

See all alternatives

Product Categories

Product Categories

Security Information and Event Management (SIEM)

Identity Threat Detection and Response (ITDR)

AI-Powered Cybersecurity Platforms

Popular Comparisons

Popular Comparisons

CrowdStrike Falcon vs Cortex XSIAM

Cortex XDR by Palo Alto Networks vs Cortex XSIAM

Wazuh vs Cortex XSIAM

Splunk Enterprise Security vs Cortex XSIAM

SentinelOne Singularity Endpoint vs Cortex XSIAM

Darktrace vs Cortex XSIAM

IBM Security QRadar vs Cortex XSIAM

Microsoft Sentinel vs Cortex XSIAM

Varonis Platform vs Cortex XSIAM

Elastic Security vs Cortex XSIAM

Cribl vs Cortex XSIAM

TrendAI Vision One vs Cortex XSIAM

Rapid7 InsightIDR vs Cortex XSIAM

Vectra AI vs Cortex XSIAM

Fortinet FortiSIEM vs Cortex XSIAM

See all alternatives

Related questions

185

What Solution for SIEM is Best To Be NIST 800-171 Compliant?

166

When evaluating Security Information and Event Management (SIEM), what aspect do you think is the most important feature to look for?

142

What are the main differences between Nessus and Arcsight?

162

What's The Best Way to Trial SIEM Solutions?

162

Which is the best SIEM solution for a government organization?

480

What is the difference between IT event correlation and aggregation?

136

What Is SIEM Used For?

120

RSA-EMC vs. other SIEM products?

228

What Questions Should I Ask Before Buying SIEM?

147

What are the pros and cons of internal SOC vs SOC-as-a-Service?