• Home
  • Check Point Harmony Endpoint vs. Cortex XDR by Palo Alto Networks

Check Point Harmony Endpoint vs Cortex XDR by Palo Alto Networks comparison

Cancel
You must select at least 2 products to compare!
Comparison Buyer's Guide
Download the complete report
Buyer's Guide
Check Point Harmony Endpoint vs. Cortex XDR by Palo Alto Networks
May 2023
Executive Summary
Updated on Oct 20, 2022

We performed a comparison between Check Point Harmony Endpoint and Cortex XDR by Palo Alto Networks based on our users’ reviews in five categories. After reading all of the collected data, you can find our conclusion below.

  • Ease of Deployment: Users of both solutions agree that their initial setup is straightforward.
  • Features: Users of both products are happy with their stability and scalability.

    Check Point Harmony users say it is a powerful security solution with excellent reporting features. Several users mention that it can sometimes utilize a lot of resources.

    Cortex XDR users say it is a lightweight and user-friendly solution with good real-time scanning abilities, but they would like to see better reporting tools.
  • Pricing: Most users of both solutions feel that they are expensive products.
  • ROI: Reviewers of both solutions report seeing an ROI, since the products help them increase their organization’s security levels.

  • Service and Support: Users of both solutions are satisfied with the level of support they receive.

Comparison Results: Because Check Point Harmony can require more resources to run, making Cortex XDR the ultimate winner in this comparison.

To learn more, read our detailed Check Point Harmony Endpoint vs. Cortex XDR by Palo Alto Networks Report (Updated: May 2023).
Download the complete report
708,461 professionals have used our research since 2012.
Featured Review
Anonymous User
Works well and helps with compliance, but logging could be better
It helped to free up our IT staff's time. We don't need to manually check everything in the compliance area. Everything is automated, so we don't... Read more →
Anonymous User
Good security and support with an easy implementation process
It has been used for a banking environment and helps us to secure our end computing where USB blocking and even disk encryption and so many... Read more →
EhabAli
Researched Check Point Harmony Endpoint but chose Cortex XDR by Palo Alto Networks: It provides a whole new level of visibility and integrates with most other vendors
Quotes From Members
We asked business professionals to review the solutions they use.
Here are some excerpts of what they said:
Pros
"The most valuable feature is its threat protection and data privacy, including its cyber attack and data protection, as we need to cover and protect data on user devices.""The biggest lesson that I have learned from using this product is that there is a lot more malware slipping through my email filters than I expected.""Another of my favorite features is called the Device Trajectory, where it shows everything that's going on, on a computer. It shows the point in time when a virus is downloaded, so you can see if the user was surfing the internet or had a program open. It shows every running process and file access on the computer and saves it like a snapshot when it detects something malicious. It also has a File Trajectory, so you can even see if that file has been found on any of your other computers that have AMP.""It's quite simple, and the advantage I see is that I get the trajectory of what happened inside the network, how a file has been transmitted to the workstation, and which files have got corrupted.""The threat Grid with the ability to observe the sandboxing, analyze, and perform investigations of different malicious files has been great.""Cisco has definitely improved our organization a lot. In terms of business, our company feels safer. We actually switched from legacy signature-based solutions to threat intelligence-based and machine learning-based solutions, which is Cisco Secure. This has improved our security significantly, from 10% of signature-based technology security to 99.9% of the current one which we are running. We were happy.""It is extensive in terms of providing visibility and insights into threats. It allows for research into a threat, and you can chart your progress on how you're resolving it.""I'm only using the AMP (advanced malware protection) which is protecting my file system from all the malicious things that might happen. It should protect all kinds of things that might happen on the servers, things that I cannot see."

More Cisco Secure Endpoint Pros →

"It is very powerful tooling that can be tuned a lot.""The most valuable feature of Check Point Harmony Endpoint is centralized management.""It's a scalable product as it is a cloud offering.""The zero-day threat prevention is excellent.""We love that we don't have to upgrade it anymore. They take care of that.""When sending emails to my colleagues, it detects any virus and blocks any spam that may be shared.""Its most valuable feature is being able to integrate cloud services and centralize the protection policy from a single administration dashboard.""They have a great knowledge base that you can leverage as a user."

More Check Point Harmony Endpoint Pros →

"The solution's most valuable feature is its ability to rapidly detect certain hardware files.""Their XDR agent and their behavioral indicators of compromise (BIOC) are pretty nice. Their managed threat hunting is also pretty nice. They also have WildFire, which is a service for actively looking for malware. It's quite useful.""The most valuable for us is the correlation feature.""The most valuable feature of Cortex XDR by Palo Alto Networks is the low consumption of system resources. The solution uses a lot of AI and machine learning.""Cortex XDR lets us manage several clients from the same console, and its endpoint defense is more advanced than traditional antivirus.""I like the centralized console and the predictive analysis it does of malware. It is very stable and also scalable.""Its interface and pricing are most valuable. It is better than other vendors in terms of security.""Best solution for avoiding security breaches, malware attacks, and other kinds of security issues."

More Cortex XDR by Palo Alto Networks Pros →

Cons
"It could be improved in connection with artificial intelligence and IoT.""They could improve the main dashboard to more clearly show me the things that I want to see. When I open the dashboard right now, I see a million things and they are not always the things that I need.""Its price is okay for us, but it can always be better. There's always room for improvement when it comes to pricing.""Logging could be better in terms of sending more logs to Cisco Firepower or Cisco ASA. That's an area where it could be made better.""The Linux agent is a simple offline classic agent, and it doesn't support Secure Boot, which is important to have on a Linux machine. The Linux agent has conflicts with other solutions, including the Exploit Prevention system found in Windows servers. We didn't find a fix during troubleshooting, and Cisco couldn't offer one either. Eventually, we had to shut down the Exploit Prevention system. We didn't like that as we always want a solution that can fit smoothly into the setup without causing problems, especially where security is concerned. The tool also caused CPU spikes on our production machine, and we were seriously considering moving to another product.""The thing I hate the most, which they have not fixed, is when it creates duplicate entries within a console. If you have a computer and you upgrade from Windows 7 to Windows 10, or you upgrade your agent from version 6 to 7, it creates a new instance in there instead of updating the information. Instead of paying a license for one computer, I have to license two computers until I manually go in, search for all the duplicate entries, and clean them out myself.""In Orbital, there are tons of prebuilt queries, but there is not a lot of information in lay terms. There isn't enough information to help us with what we're looking for and why we are looking for it with this query. There are probably a dozen queries in there that really focus on what I need to focus on, but they are not always easy to find the first time through.""On the firewall level, they were lagging a little bit behind, but they are running up again. I have full trust in the new 3000 series of firewalls where we would also be able to look more into the traffic that we're monitoring and get more security layers in our services. That would definitely be a big step."

More Cisco Secure Endpoint Cons →

"Check Point Harmony Endpoint could improve mobile device management (MDM).""It would also be great to include DLP capabilities for the endpoint so that we do not have to deploy additional agents on servers or PCs or use additional products.""Configuration with some applications did not take place effectively due to setup complications.""Customization of UI should be a little better in terms of application UI and messages that are displayed when something is blocked or non-compliant.""We need a higher maximum file size in the sandboxing feature.""Check Point users a pattern-based security module, which is something that can be improved.""An additional feature I would like to see involves the VPN.""I still don't have a clear opinion of the possible improvements that the tool may need. There are still functionalities that I have not been able to try completely and I would like to spend more time using the tool before offering an opinion to the IT Central community on this point."

More Check Point Harmony Endpoint Cons →

"There are some third-party solutions that are difficult to integrate with, which is something that can be improved.""The solution should force customers to integrate with network traffic to see the full benefits of XDR.""It's very time-consuming to log support issues and the people that answer the tickets aren't very knowledgeable.""In general, the price could be more competitive.""The solution could improve by providing better integration with their own products and others.""Dashboards do not allow everyone to see what's happening.""If they had pulse rate detection, it would be better.""It tends to do 99.9% of things. The only thing I'd like is single sign-on authentication into their cloud platform so that my users can be properly authenticated against it."

More Cortex XDR by Palo Alto Networks Cons →

Pricing and Cost Advice
  • "We have a license for 3,000 users and if we get up to 3,100 users, it doesn't stop working, but on the next renewal date you're supposed to go in there and add that extra 100 licenses. It's really good that they let you grow and expand and then pay for it. Sometimes, with other products, you overuse a license and they just don't work."
  • "Cisco Secure Endpoint is not too expensive and it's not cheap. It's quite fair."
  • "The price is very fair to the customer."
  • "...the licensing needs to be improved. All the product features we need are there. It's just a matter of the complexity and the different offerings and trying to figure things out."
  • "The pricing and licensing fees are okay."
  • "Because we do see the value of what it's bringing, I think they have priced it well."
  • "The solution is highly affordable; I believe we pay $2 or $3 per endpoint. It's significantly cheaper than the competitors on the market."
  • "We had faced some license issues, but it has been improved. At the beginning of the implementation, we faced a lot of licensing issues, but now, we have EA licensing, which gives us an opportunity to grow."

    • More Cisco Secure Endpoint Pricing and Cost Advice →

  • "Check Point Harmony Endpoint is cost effective."
  • "The price is good."
  • "We implement this solution with a yearly subscription and there are no extra costs."
  • "The price of Check Point Harmony Endpoint is comparable to SonicWall. The price could be a bit lower."

    • More Check Point Harmony Endpoint Pricing and Cost Advice →

  • "It's about $55 per license on a yearly basis."
  • "It has a yearly renewal."
  • "The price of the solution is high for the license and in general."
  • "The price is on the higher side, but it's okay."
  • "I don't have any issues with the pricing. We are satisfied with the price."
  • "If one wishes to work with another team or large number of users at a future point, he must purchase a license for them."
  • "In terms of the cost Cortex XDR by Palo Alto Networks is very expensive because we are a Mexican company and when you translate dollars to pesos the cost is very high. The solution is very expensive for Mexican companies. I understand that they have international prices, but I do not think it offsets the price enough for many companies in countries, such as Mexico. The amount it is reduced is not a massive percentage."
  • "Very costly product."

    • More Cortex XDR by Palo Alto Networks Pricing and Cost Advice →

    report
    See Which Vendors Are Best For You
    Use our free recommendation engine to learn which EPP (Endpoint Protection for Business) solutions are best for your needs.
    See Recommendations
    708,461 professionals have used our research since 2012.
    Questions from the Community
    What do you like most about Cisco Secure Endpoint?
    Top Answer:The best feature that we found most valuable, is actually the security product for the endpoint, formerly known as AMP… more »
    Read all 32 answers   →
    What is your experience regarding pricing and costs for Cisco Secure Endp...
    Top Answer:It can always be cheaper.
    Read all 24 answers   →
    What needs improvement with Cisco Secure Endpoint?
    Top Answer:On the firewall level, they were lagging a little bit behind, but they are running up again. I have full trust in the… more »
    Read all 32 answers   →
    What do you like most about Check Point Harmony Endpoint?
    Top Answer:Its stability during any heavy performance activity is excellent.
    Read all 50 answers   →
    What is your experience regarding pricing and costs for Check Point Harmo...
    Top Answer:It is a great cost with high-end Check Point features within reasonable cost brackets. You must try it.
    Read all 38 answers   →
    What needs improvement with Check Point Harmony Endpoint?
    Top Answer:Overall, my experience with the product is great, and it's a perfect endpoint solution for multiple purposes. The… more »
    Read all 51 answers   →
    Cortex XDR by Palo Alto vs. Sentinel One
    Top Answer:Cortex XDR by Palo Alto vs. SentinelOne SentinelOne offers very detailed specifics with regard to risks or attacks.… more »
    Read all 3 answers   →
    Comparing CrowdStrike Falcon to Cortex XDR (Palo Alto)
    Top Answer:Cortex XDR by Palo Alto vs. CrowdStrike Falcon Both Cortex XDR and Crowd Strike Falcon offer cloud-based solutions… more »
    How is Cortex XDR compared with Microsoft Defender?
    Top Answer:Microsoft Defender for Endpoint is a cloud-delivered endpoint security solution. The tool reduces the attack surface… more »
    Comparisons
    Also Known As
    Cisco AMP for Endpoints
    Check Point Endpoint Security, Endpoint Security, Check Point SandBlast Agent
    Cyvera, Cortex XDR, Palo Alto Networks Traps
    Learn More
    Cisco
    Video Not Available
    Check Point
    Palo Alto Networks
    Overview

    Cisco Secure Endpoint is a comprehensive endpoint security solution that natively includes open and extensible extended detection and response (XDR) and advanced endpoint detection and response (EDR) capabilities.

    Secure Endpoint offers relentless breach protection that enables you to be confident, be bold, and be fearless with one of the industry’s most trusted endpoint security solutions. It protects your hybrid workforce, helps you stay resilient, and secures what’s next with simple, comprehensive endpoint security powered by unique insights from 300,000 security customers and deep visibility from the networking leader.

    Learn more about Secure Endpoint: www.cisco.com/go/endpoint

    Cisco Secure Endpoint was formerly known as Cisco AMP for Endpoints.

    Reviews from Real Users

    Cisco Secure Endpoint stands out among its competitors for a number of reasons. Two major ones are its ability to enable developers to easily secure their endpoints with one single operation using its management console and its advanced alerting techniques.

    Tim C., an IT manager at Van Der Meer Consulting, writes, "The solution makes it possible to see a threat once and block it everywhere across all endpoints and the entire security platform. It has the ability to block right down to the file and application level across all devices based on policies, such as, blacklisting and whitelisting of software and applications. This is good. Its strength is the ability to identify threats very quickly, then lock them and the network down and block the threats across the organization and all devices, which is what you want. You don't want to be spending time working out how to block something. You want to block something very quickly, letting that flow through to all the devices and avoiding the same scenario on different operating systems."

    Wouter H., a technical team lead network & security at Missing Piece BV, notes, "Any alert that we get is an actionable alert. Immediately, there is information that we can just click through, see the point in time, what happened, what caused it, and what automatic actions were taken. We can then choose to take any manual actions, if we want, or start our investigation. We're no longer looking at digging into information or wading through hundreds of incidents. There's a list which says where the status is assigned, e.g., under investigation or investigation finished. That is all in the console. It has taken away a lot of the administration, which we would normally be doing, and integrated it into the console for us."

    Check Point Harmony Endpoint is a robust security solution that enables users to use a single piece of software to accomplish tasks that often require the use of multiple pieces of software. It prevents impending threats from doing harm while at the same time enabling users to identify and deal with any harm that results from breaches. 

    Check Point Harmony Endpoint provides users with an excellent total cost of ownership. It combines six security solutions into a single powerful solution. Instead of being unwieldy, it is, in fact, a highly flexible solution. Users can easily manage and deploy it on site in their offices or via the cloud according to their needs. It upgrades effortlessly without ever causing disruptions to the work users are doing. The end result is a high return on a user’s investment.

    Benefits of Check Point Harmony Endpoint

    Some of the benefits of using Check Point Harmony Endpoint include: 

    • The ability to completely protect endpoints from all manner of immediate digital threats. Check Point Harmony Endpoint stops both malware and phishing sites from harming your networks. All files you receive or download are either run through Check Point Harmony Endpoint’s Threat Emulation sandbox, which scans it for malware, or sterilized by a Threat Extraction process. These prevent malware from ever entering your system. It also prevents phishing sites from stealing credentials. The software scans the sites and, if they are found to be malicious, they are locked out of the system. All of this occurs in real time. 
    • The ability to quickly recover from any attack which manages to do damage to your system. Check Point Harmony Endpoint’s automation responds to a threat once it is detected. Any device that is infected is automatically quarantined from the rest of the network and disinfected. This prevents further infection and allows administrators to render the machine safe for use. It also automatically creates reports which break down the nature of the attack and all other relevant details. These reports give users the information that they need to conduct triage and repair the damage done by an attack.

    Check Point Harmony Endpoint offers users a piece of security software which is completely cutting-edge. It stands out among its competitors for a number of reasons. Two major ones are the raw power of the solution and the usefulness of Check Point Harmony Endpoint’s built-in automation. Check Point Harmony Endpoint has a high ceiling when it comes to dealing with threats. Users are given the ability to decide how aggressively they want to employ it, which creates a great deal of flexibility. Check Point Harmony Endpoint’s automation is constantly running in the background of the program. It creates reports that empower users to take appropriate steps to protect their systems.

    Reviews from Real Users

    Sumit B., a consultant at Cognizant, notes the usefulness of Check Point Harmony Endpoint’s built-in automation. He writes, “SandBlast Agent is always working in the background collecting sensitive data, forensics, and notifying users whenever there is a chance of a brute-force attack into our systems. Otherwise, it has been protecting our data at various geographies along with the endpoints that we set up on the cloud. They have been able to filter out or thwart any attacks from the very word, "Go," and make our work very safe and smooth.”

    A PeerSpot user who serves as a Network Technical Specialist at a manufacturing company adds that “It's pretty complete for preventing threats to endpoints. Its capabilities are great.”

    Cortex XDR by Palo Alto Networks is the first threat detection and response software to combine both visibility across all types of data as well as autonomous machine learning analytics. Threat detection very often requires analysts to divide their attention among many different data streams. This platform unifies a vast variety of data flows, which allows analysts to assess threats from a single location. Users can now maintain a level of visibility that other threat detection programs simply cannot offer. This level of transparency lends itself to both quick identification of problems that arise and the equally quick development of a potential solution.

    Cortex XDR’s machine learning works on many different levels to detect and prevent threats. It is constantly scanning for threats and vulnerabilities. The solution can scan up to 5.4 billion IP addresses in three-quarters of an hour. This allows it to spot weak points in the system and notify administrators long before hackers can take advantage of vulnerabilities. Once the Artificial Intelligence (AI) discovers an issue or an area where an issue could potentially take place the system creates a log of the information and subsequently sends an alert to system administrators. The AI takes the information that it has gathered and uses it to assign threat levels to the issues that it detects. Following this, a human analyst will be assigned to manually assess the issue and deal with it accordingly. You can set it to automatically respond to the threat by isolating the issue while analysts investigate it.

    Benefits of Cortex XDR

    Some of Cortex XDR’s benefits include:

    • The use of advanced AI analytics, behavior analytics, and custom-made detection to detect advanced threats before they occur.
    • The ability to group similar threat alerts, reducing incoming alerts by as much as 98%. This allows analysts to avoid being overwhelmed by the volume of incoming alerts.
    • The ability to investigate threats as much as 8 times faster than would be possible with other software. The machine learning, when coupled with the unified data stream that Cortex XDR collects, significantly increases the ability to more quickly discover the root cause of a threat.

    Reviews from Real Users

    Cortex XDR by Palo Alto Networks software stands out among its competitors for a number of reasons. Two major ones are its ability to isolate threats while enabling them to be studied and the way that the software combines all of the data that it gathers into a single, more complete picture than other solutions offer.

    PeerSpot users note the effectiveness of these features. A network designer at a computer software company wrote, “The solution has a very helpful isolation feature. If any system gets compromised, with one click I can access the system and isolate it from other networks, and then go into further forensic investigation of the current threat without compromising anything else.”

    Jeff W., Vice President/CTO at Sinnott Wolach Technology Group, noted, “The ability to kind of stitch everything together and see the actual complete picture is very useful. I guess you'd call it a playbook. Some people call it the forensics analysis of what was happening on particular endpoints when they detected some malicious behavior, and what transpired before that to cause that. It is also very user friendly.”



    Offer
    Learn more about Cisco Secure Endpoint
    Learn More
    Learn more about Check Point Harmony Endpoint
    Learn More
    Learn more about Cortex XDR by Palo Alto Networks
    Learn More
    Sample Customers
    Heritage Bank, Mobile County Schools, NHL University, Thunder Bay Regional, Yokogawa Electric, Sam Houston State University, First Financial Bank
    Boston Properties, Independence Care System, Melbourne Convention and Exhibition Centre (MCEC), Courtagen Life Sciences, Carmel Partners
    CBI Health Group, University Honda, VakifBank
    Top Industries
    REVIEWERS
    Computer Software Company12%
    Healthcare Company12%
    Comms Service Provider12%
    Government8%
    VISITORS READING REVIEWS
    Computer Software Company18%
    Government9%
    Financial Services Firm7%
    Comms Service Provider7%
    REVIEWERS
    Financial Services Firm21%
    Computer Software Company16%
    Manufacturing Company12%
    Healthcare Company10%
    VISITORS READING REVIEWS
    Computer Software Company19%
    Comms Service Provider14%
    Government8%
    Construction Company6%
    REVIEWERS
    Computer Software Company16%
    Financial Services Firm14%
    Security Firm9%
    Government7%
    VISITORS READING REVIEWS
    Computer Software Company17%
    Government9%
    Comms Service Provider7%
    Financial Services Firm7%
    Company Size
    REVIEWERS
    Small Business32%
    Midsize Enterprise24%
    Large Enterprise44%
    VISITORS READING REVIEWS
    Small Business28%
    Midsize Enterprise17%
    Large Enterprise55%
    REVIEWERS
    Small Business43%
    Midsize Enterprise16%
    Large Enterprise40%
    VISITORS READING REVIEWS
    Small Business30%
    Midsize Enterprise21%
    Large Enterprise49%
    REVIEWERS
    Small Business42%
    Midsize Enterprise22%
    Large Enterprise37%
    VISITORS READING REVIEWS
    Small Business24%
    Midsize Enterprise18%
    Large Enterprise57%
    Buyer's Guide
    Check Point Harmony Endpoint vs. Cortex XDR by Palo Alto Networks
    May 2023
    Free Report: Check Point Harmony Endpoint vs. Cortex XDR by Palo Alto Networks
    Find out what your peers are saying about Check Point Harmony Endpoint vs. Cortex XDR by Palo Alto Networks and other solutions. Updated: May 2023.
    DOWNLOAD NOW
    708,461 professionals have used our research since 2012.

    Check Point Harmony Endpoint is ranked 7th in EPP (Endpoint Protection for Business) with 51 reviews while Cortex XDR by Palo Alto Networks is ranked 4th in EPP (Endpoint Protection for Business) with 46 reviews. Check Point Harmony Endpoint is rated 8.8, while Cortex XDR by Palo Alto Networks is rated 8.4. The top reviewer of Check Point Harmony Endpoint writes "Resilient by design, provides redundancy, and offers ongoing constant improvements". On the other hand, the top reviewer of Cortex XDR by Palo Alto Networks writes "Easy to set up, reliable, and always scanning". Check Point Harmony Endpoint is most compared with Microsoft Defender for Endpoint, SentinelOne Singularity Complete, CrowdStrike Falcon, Kaspersky Endpoint Security for Business and Trellix Endpoint Security, whereas Cortex XDR by Palo Alto Networks is most compared with CrowdStrike Falcon, Microsoft Defender for Endpoint, Darktrace, SentinelOne Singularity Complete and Kaspersky Endpoint Security for Business. See our Check Point Harmony Endpoint vs. Cortex XDR by Palo Alto Networks report.

    See our list of best EPP (Endpoint Protection for Business) vendors.

    We monitor all EPP (Endpoint Protection for Business) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.