No more typing reviews! Try our Samantha, our new voice AI agent.

Alert Logic MDR vs Palo Alto Networks Cortex XSOAR comparison

 

Comparison Buyer's Guide

Executive SummaryUpdated on Mar 11, 2026

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

ROI

Sentiment score
5.9
Users of Alert Logic MDR experience varied ROI, from increased security and insights to unused potential and dissatisfaction.
Sentiment score
4.4
Cortex XSOAR delivers high ROI by automating tasks and integrating seamlessly, ideal for mature SOCs despite initial costs.
I have seen a return on investment with Alert Logic MDR as it is very secure and has improved security in the organization.
Team Lead at Target
We are positioning Palo Alto Networks Cortex XSOAR, which can be used in the SOC and do a lot of automation for the customer.
Vice President, Technology at Cache Digitech Pvt Ltd.
 

Customer Service

Sentiment score
8.0
Alert Logic MDR offers responsive, proactive customer support with high user satisfaction, despite some concerns in fast-paced environments.
Sentiment score
6.6
Palo Alto Networks Cortex XSOAR support is responsive and knowledgeable but could improve friendliness and initial response times.
Customer support is very responsive and proactive.
Team Lead at Target
During the four-month duration, we did not face any such issues.
Security Analyst at a consultancy with 10,001+ employees
They help whenever we get stuck.
Soc Analyst at a media company with 501-1,000 employees
Eight out of ten times, they provide valuable help.
Lead Application Security Engineer Iv at a financial services firm with 5,001-10,000 employees
Their support has been better than Anomali's and they are more responsive.
Enterprise Security Architect V at FirstEnergy
The technical support provided by Palo Alto Networks Cortex XSOAR is good.
Vice President, Technology at Cache Digitech Pvt Ltd.
 

Scalability Issues

Sentiment score
7.8
Alert Logic MDR excels in scalability, integrating smoothly with diverse systems and meeting growth needs without performance issues.
Sentiment score
7.1
Cortex XSOAR offers high scalability and flexibility, efficiently integrating third-party APIs despite potential complexities in large deployments.
Alert Logic MDR is scalable.
Soc Analyst at a media company with 501-1,000 employees
Alert Logic MDR's scalability is highly scalable and can handle organizational growth efficiently.
Team Lead at Target
The scalability of Palo Alto Networks Cortex XSOAR supports our growth and security needs because we can integrate various tools and continuously add more capability.
Enterprise Security Architect V at FirstEnergy
Palo Alto Networks Cortex XSOAR has very good application capabilities and is highly scalable.
Assistant Security Architect at Cloudnomics
The issues with scalability arise from the speed of some integrations, as not all are perfectly tuned by Palo.
Lead Application Security Engineer Iv at a financial services firm with 5,001-10,000 employees
 

Stability Issues

Sentiment score
8.4
Alert Logic MDR is highly stable, reliable, and consistently performs without errors or downtime across global deployments.
Sentiment score
7.5
Cortex XSOAR is considered stable, reliable, and performs well, but requires careful sizing and regular updates for optimal use.
You will find no errors or glitches with Alert Logic MDR.
Soc Analyst at a media company with 501-1,000 employees
The system works smoothly even when I navigate deep into the playbook section.
Assistant Security Architect at Cloudnomics
I would rate the stability and reliability of Palo Alto Networks Cortex XSOAR as a nine.
Lead Application Security Engineer Iv at a financial services firm with 5,001-10,000 employees
 

Room For Improvement

Users seek improved functionality for Alert Logic MDR, including smarter analytics, intuitive interfaces, and enhanced security features and documentation.
Cortex XSOAR requires improved documentation, intuitive UI, modularity, integration, costs, setup, licensing, performance, and usability for efficiency.
One major missing feature was the ability to see if vulnerabilities were exploitable, which required extra effort for us.
Security Analyst at a consultancy with 10,001+ employees
If Alert Logic MDR not only detected incidents but also allowed us to block those incidents or isolate any affected asset, that would be beneficial.
Solutions Architect at a tech vendor with 10,001+ employees
Alert Logic MDR could be improved by adding voice assistance when creating new configurations for the environment.
Team Lead at Target
The deployment requires integration and the development of integration modules.
Presale Engineer at Westcon-Comstor
One of the significant issues we encounter is system slowdown when we receive an influx of alerts, which inhibits how quickly we can access the information needed for investigation.
Enterprise Security Architect V at FirstEnergy
To improve the solution, it needs to have complete features that are low-code, no-code, and should be plug-and-play.
Vice President, Technology at Cache Digitech Pvt Ltd.
 

Setup Cost

Alert Logic MDR provides cost-effective licensing and competitive pricing, favored by medium to large organizations for its quality and value.
Cortex XSOAR is costly but offers valuable features; small businesses may find discounts helpful in mitigating expenses.
Alert Logic MDR is one of the most cost-effective tools to use regarding pricing, setup cost, and licensing.
Team Lead at Target
The price, which is per endpoint around ten to twelve dollars, and it is a good setup cost.
Soc Analyst at a media company with 501-1,000 employees
For customers, it is zero versus $20 million, which is why they have to make a decision.
Vice President, Technology at Cache Digitech Pvt Ltd.
 

Valuable Features

Alert Logic MDR offers AI-driven analysis, 24/7 monitoring, intuitive interface, efficient incident management, and comprehensive security without impacting systems.
Palo Alto Networks Cortex XSOAR excels in automation, integration, and ease-of-use, enhancing incident response and threat intelligence capabilities.
The alert system improved from potentially 24 hours to one hour response time.
Team Lead at Target
The standout features of Alert Logic included the topology feature, which was helpful for mapping assets on the network, giving a clear understanding of all connected devices.
Security Analyst at a consultancy with 10,001+ employees
The integration with ticketing tools such as ServiceNow helped my workflow by automatically creating a ticket and sharing it with the required team as soon as a critical alert is generated.
Solutions Architect at a tech vendor with 10,001+ employees
Execution of automatic tasks for collecting, enriching, and correlating security events from hundreds of different technologies.
Presale Engineer at Westcon-Comstor
If I already have an established process, I do not have to change my process to fit into the tool. I can modify the tool to fit into my process, which makes things considerably easier.
Enterprise Security Architect V at FirstEnergy
We have implemented automation features, such as automated responses to email threats and automatic configuration of target devices for blocking specific IPs.
Vice President, Technology at Cache Digitech Pvt Ltd.
 

Categories and Ranking

Alert Logic MDR
Ranking in SOC as a Service
3rd
Average Rating
8.2
Reviews Sentiment
6.8
Number of Reviews
15
Ranking in other categories
Vulnerability Management (32nd), Managed Detection and Response (MDR) (10th)
Palo Alto Networks Cortex X...
Ranking in SOC as a Service
2nd
Average Rating
8.4
Reviews Sentiment
6.5
Number of Reviews
51
Ranking in other categories
Security Orchestration Automation and Response (SOAR) (3rd)
 

Mindshare comparison

As of July 2026, in the SOC as a Service category, the mindshare of Alert Logic MDR is 6.1%, down from 7.0% compared to the previous year. The mindshare of Palo Alto Networks Cortex XSOAR is 5.3%, down from 19.3% compared to the previous year. It is calculated based on PeerSpot user engagement data.
SOC as a Service Mindshare Distribution
ProductMindshare (%)
Palo Alto Networks Cortex XSOAR5.3%
Alert Logic MDR6.1%
Other88.6%
SOC as a Service
 

Featured Reviews

Alice Walter - PeerSpot reviewer
Team Lead at Target
Cloud monitoring has reduced threats and has improved response times and team productivity
Alert Logic MDR's best features are the cloud-managed service, the cost benefit, and 24/7 monitoring. The alert system improved from potentially 24 hours to one hour response time. The benefit of not having to write custom queries has been significant.The features are very lightweight, with small installations that leave almost no footprint on systems. System resource utilization is minimal. Alert Logic MDR has positively impacted my organization through its decentralized pricing approach, which has protected against several viruses. Any virus stopped represents money saved. There is low impact on users, so they do not experience slowness on their computers when scanning. Alert Logic MDR has improved security in my organization from 50 to 65%.
Sricharan R - PeerSpot reviewer
Lead Application Security Engineer Iv at a financial services firm with 5,001-10,000 employees
Security automation has transformed incident workflows and now reduces response time dramatically
I think the areas of Palo Alto Networks Cortex XSOAR that could be improved are mainly in UX. We have communicated with the vendor team about this, but they are prioritizing product functionality over usability because most target customers are technical and understand a primitive UI. They face difficulties in implementing UI changes as their team is stretched. Thus, the UI/UX of the tool needs significant improvement. There are plans on their roadmap, but a lot remains to be done. Parts of the tool run on an older framework, causing slowness. Usability is a broader issue than features alone. This usability problem is common in many cybersecurity tools, unlike customer-facing applications. Some integrations have speed issues and might not function seamlessly with different upstream configurations, requiring manual updates. These are the main pain points we encountered, particularly with UI/UX, integration speed, and the usability of certain inbuilt playbooks.
report
Use our free recommendation engine to learn which SOC as a Service solutions are best for your needs.
902,894 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Computer Software Company
12%
Financial Services Firm
11%
Construction Company
9%
Manufacturing Company
9%
Financial Services Firm
13%
Computer Software Company
8%
Manufacturing Company
8%
Comms Service Provider
5%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
By reviewers
Company SizeCount
Small Business4
Midsize Enterprise3
Large Enterprise15
By reviewers
Company SizeCount
Small Business21
Midsize Enterprise9
Large Enterprise26
 

Questions from the Community

What is your experience regarding pricing and costs for Alert Logic?
Alert Logic MDR is one of the most cost-effective tools to use regarding pricing, setup cost, and licensing.
What needs improvement with Alert Logic?
One major missing feature was the ability to see if vulnerabilities were exploitable, which required extra effort for us. Alert Logic did not adhere fully to the CVSS standards, offering only high,...
What is your primary use case for Alert Logic?
Our client selected Alert Logic for the Voluntary Management model. We used it for return parameter management three sixty. Our team, consisting of around four to five members, along with two or th...
What is your experience regarding pricing and costs for Palo Alto Networks Cortex XSOAR?
Comparing pricing to Micro Focus, they were offering bundles, making it free with their SIEM. For customers, it is zero versus $20 million, which is why they have to make a decision.
What needs improvement with Palo Alto Networks Cortex XSOAR?
Regarding areas for improvement in Palo Alto Networks Cortex XSOAR, I want to highlight one concern about playbook creation. While I personally appreciate this approach, I have observed that junior...
What is your primary use case for Palo Alto Networks Cortex XSOAR?
My primary use cases for Palo Alto Networks Cortex XSOAR are malware incidents, specifically phishing-related incidents, Trojan horses, spyware, and similar threats.
 

Also Known As

Alert Logic Managed Detection and Response, Alert Logic Threat Manager, Alert Logic Cloud Defender, Critical Watch FusionVM
Demisto Enterprise, Cortex XSOAR, Demisto
 

Overview

 

Sample Customers

Information Not Available
Cellcom Israel, Blue Cross and Blue Shield of Kansas City, esri, Cylance, Flatiron Health, Veeva, ADT Cybersecurity
Find out what your peers are saying about Alert Logic MDR vs. Palo Alto Networks Cortex XSOAR and other solutions. Updated: June 2026.
902,894 professionals have used our research since 2012.