Palo Alto Networks Cortex XSOAR Reviews

The use cases basically came from the customers. Most of the time, the major concern is from a security perspective because various kinds of attacks are happening. To restrict or stop those attacks, we are building playbooks. We are also automating repetitive tasks.

We are using on-premise as well as cloud deployments.

The automation part and the playbook creation part are awesome. The way it is responding to the customers and incidents is also very good. In the SOC environment, I guess it will carry out around 50% of the work.

For building automation, there is not a lot of good documentation. The documentation is there, but it is not very good from my perspective. There should be an improvement in this area. I don't see issues with anything else.

In terms of new features, I have heard that other products have EBA functionality. It would be good if this functionality could be added.

I have been working on this solution for the last four months.

Its stability is okay.

It is very scalable. It can be easily integrated with other third-party APIs.

Their technical support is awesome. It is far better than the technical support of any other company.

The setup is very easy. It is very straightforward. The deployment took around 15 minutes.

From the cost perspective, I have heard that its price is a bit high as compared to other similar products.

For each SOC and MSS environment, I would recommend using Cortex XSOAR for better productivity, scalability, performance, and efficiency. A lot of manual work is happening right now, and that could be avoided. People can be utilized for more productive work.

I would rate Palo Alto Network Cortex XSOAR an eight out of ten.

We are a solution provider and this is one of the products that we are selling to our clients.

The most valuable features are simplicity and ease of integration.

The documentation is fantastic.

Implementing this solution requires a lot of involvement from the vendor and it should be made easier for the partners.

It has to be richer with respect to IoT. I expect that in future versions, support for a variety of devices will be added.

We have about two months of experience with Demisto Enterprise.

This is a stable solution.

My impression is that Demisto is scalable and it is capable of working across wide geography at any given point in time. The traffic comes in from everywhere in the world and this solution is able to identify threats ahead of time.

Our clients for this solution are medium-sized and enterprise-level businesses.

The initial setup of this solution is complex. My understanding is that it can be deployed within a few days.

There is a perception that it is priced very high compared to other solutions.

Demisto is a product that I recommend.

I would rate this solution an eight out of ten.

I am satisfied with the product overall.

The solution’s price and technical support could be improved.

I would recommend Palo Alto Networks Cortex XSOAR for bigger businesses.

It is the kind of product I would recommend for clients who know what they want to achieve. They can put the potential tools to the test or POCs and verify the checkpoints of their needs before using the product. Palo Alto Networks Cortex XSOAR is not an out-of-the-box kind of product.

Overall, I rate the solution a seven out of ten.

We use the solution for incident orchestration.

The solution helps us with incident analysis.

The solution has the best processing and incident analysis features.

The solution's price could be better. Also, they should provide integration with machine learning and artificial intelligence platforms.

We have been using the solution for seven months.

I rate the solution's stability an eight out of ten.

I rate the solution's scalability a ten out of ten.

The solution's technical support team is good.

Positive

The solution's initial setup process is easy. We implement it on the cloud and premises.

The solution generates a good return on investment.

The solution's pricing needs improvement.

I recommend the solution to others and rate it a ten out of ten.

The solution is user-friendly and provides integration with multiple products.

The solution's features for reporting and dashboards need improvement. They need more customization options.

We have been using the solution for two years.

The solution is stable. I rate its stability a nine out of ten.

It is a scalable solution. I rate its scalability an eight out of ten.

The solution's initial setup process with proxy environments is complicated. It takes an hour to two complete.

I rate the process a seven out of ten.

The solution's cost is high. I rate its pricing a nine out of ten.

I rate the solution a nine out of ten.

I work for a company, and we provide support and complete end-to-end management of the product for our customers who hold the product.

Over thirty users are currently using Palo Alto Networks Cortex XSOAR in your organization. The role is inclusive, like administrator and engineer.

According to Gartner, it's a leader in NID. Customers are investing more in it, and that's why we are using the product.

The dashboard performance could be improved.

Another area of improvement is a support team. Moreover, we need to pay for modifying anything with scripting in terms of customization. It can be a challenge if the person isn't 100% good with scripting.

I have been using this solution for around four years and currently use the latest version.

It is a stable solution. I would rate it a nine out of ten.

It is quite scalable. I would rate it a ten out of ten.

Customer support could be better.

Neutral

For maintenance, two or three engineers are involved.

We use the yearly subscription.

Overall, I rate the solution a nine out of ten.

Our primary case issues are phishing, TI, and sensors.

The most valuable feature is automation. There is a huge variety of automation that can help any team and there is a threat model.

I think they should increase their collaboration base so that XSOAR can be utilized for any number of automation.

I have been using Palo Alto Networks Cortex XSOAR for the past two years.

Stability takes around three to six months to achieve complete stability in the environment.

The existing model is good, but if we go for big deployments, I think there are a few challenges in scalability. They use their internal BoltDB, which is good for a medium organization, but for large organizations, they support Elasticsearch, which is too costly. The DR capabilities are not good.

Technical support is professional, but they are not very friendly. The overall remote support is not where it should be.

Neutral

Palo Alto Networks Cortex XSOAR has a straightforward setup. Stability takes three months to six months, and then further stability, performance, and then complete utilization. Usually, it takes around a year to deploy it fully.

Normally, we use a third-party team to help us with the deployment.

I would rate Palo Alto Networks Cortex XSOAR an eight out of ten.

The product can be used for securing endpoints from various types of attacks, threat incidents, and malware attacks.

NGFW and Cortex are the best features of the product. The solution provides threat intelligence with EDR. The most interesting part is that the product uses artificial intelligence and machine learning capabilities.

The solution should be made a bit cheaper.

I have been using the solution for six months.

The solution is quite stable.

The product is scalable. It can integrate with a lot of products.

Support is good.

The initial setup is straightforward.

With the right skillsets, the deployment is quite easy and does not take a lot of time. You can do the deployment manually or push it through your Active Directory.

I would definitely recommend the product to others. Overall, I rate the product a nine out of ten.