IT Central Station is now PeerSpot: Here's why

Cisco SecureX vs Cortex XDR by Palo Alto Networks comparison

Cancel
You must select at least 2 products to compare!
Featured Review
Buyer's Guide
Cisco SecureX vs. Cortex XDR by Palo Alto Networks
July 2022
Find out what your peers are saying about Cisco SecureX vs. Cortex XDR by Palo Alto Networks and other solutions. Updated: July 2022.
622,949 professionals have used our research since 2012.
Quotes From Members
We asked business professionals to review the solutions they use.
Here are some excerpts of what they said:
Pros
"The most valuable feature of Microsoft Defender for Cloud Apps is to stop shadow IT.""The ability to prevent users from using certain applications is one of the most valuable features. It doesn't require any configuration for implementation from the client perspective. It just works right away and gives you the information you need.""Threat detection is its key feature, and that's why we use this tool. It gives an alert if a PC is attacked or there is any kind of anomaly, such as there is a spike in sending emails or we see an unauthorized website being accessed. So, it keeps us on our toes. We get to know that there is something wrong, and we can isolate the user and find any issues with it. So, threat detection is very robust in this tool.""If your business requirements are relatively simple, it can get the job done.""I like the web GUI/the management interface. I also like the security of Microsoft. As compared to other manufacturers, it's less complex and easy to understand and work with.""It is very easy to use, which is what we look for in these types of solutions.""It's very easy to install and it includes the Intune portal from Microsoft where I can control all the devices from one place.""The feature that helps us in detecting the sensitive information being shared has been very useful. In addition, the feature that allows MCAS to apply policies with SharePoint, Teams, and OneDrive is being used predominantly."

More Microsoft Defender for Cloud Apps Pros →

"One of the most valuable features is the simplicity of deploying SecureX. It's very easy to do that and then you gain very detailed visibility into everything that's going on in your network and, obviously, at the device level. There's just a wealth of information that you can pull from all of these products that are part of SecureX. You know exactly if you have an issue or not.""I like that I don't have to jump around to five different products and log into five different places to view the data that it returns.""It has evolved a lot, just that monitoring piece to the current Orchestrator piece. The additional analytics are there. They now have something called Insight, which can basically take data from Microsoft Azure AD and Intune to give us information about our endpoints. This is detailed information about the endpoints, from Secure Endpoint and all these different products. So, it is just constantly evolving. Every time that it evolves, we have more information with more visibility. There are more features that we have that just make everything so much easier, and it is in one place. I don't have to keep going back and forth. I don't have to go to Secure Endpoint and ISE to get the data. I don't have to go to Intune on Microsoft to get the information. It is all in one place.""The ability to create firewalls online has been most valuable including the ability to create rules.""The most valuable feature is its ability to manage all the applications and visibility. For example, if there is malware, spam, or another component that wants to attack the company in my servers, network, or applications, then SecureX will react to the problem.""The automation and orchestration tools are the most valuable features.""The forensics are amazing because when you have enrichment, and the solutions talk with each other, when you need it, you have the ability to know everything in the organization: when, why, whatever.""SecureX takes all the separate pieces of security within your company, adds in intelligence from different sites and services on the internet, and makes them work together."

More Cisco SecureX Pros →

"The most valuable feature is that you can select remote access of any machine for sandboxing.""It integrates well into the environment.""One of the main benefits of the solution is its intelligence to correlate the events into an incident.""Its ability to react to cyber data attacks is awesome. That is pretty much the use of it. What blows your mind is the ability to access your assets remotely and see what is actually going on with them. You can not only see them in a console. You can also react very rapidly to your assets that are compromised.""I've found the solution to be highly scalable for enterprises.""Best solution for avoiding security breaches, malware attacks, and other kinds of security issues.""The behavior-based detection feature is valuable.""The integrations are out-of-the-box, as are the playbooks."

More Cortex XDR by Palo Alto Networks Pros →

Cons
"This service would be better if it had a separate license, only for this service, that could be used to track usage.""Microsoft Defender for Cloud Apps' initial setup was quite technical but we were prepared. The time of the implementation depends on the job and how many users are being set up.""I believe it's only set to be integrated with Microsoft Defender for identity and identity protection. I would like to see it available for use with something like Office 365 Defender. I don't think it's integrated with that yet.""I would like to see them include more features in the older licenses. There are some features that are not available, such as preventing or analyzing cloud attacks.""I want them to enhance in-session policy.""The integration with macOS operating systems needs to be better.""We would like to get more information from the endpoint. I don't get enough detailed information right now on why something failed. There is not enough visibility.""The response time could be better. It will be helpful if the alerts are even more proactive and we can see more data. Currently, the data is a little bit weak. It is not complete. I can't just see it and completely know which user or which device it is. It takes some effort and time on my part to investigate and isolate a user. It would be great if it is more user-friendly or easy for people to understand."

More Microsoft Defender for Cloud Apps Cons →

"I would like it to integrate with another solution, e.g., DNA. I would like it to connect to that solution, but not the security aspect.""For us, the biggest sticking point is that the product is not being designed for multi-tenancy use at present, from an MSP perspective.""If they could make the Cisco Umbrella piece a little bit more advanced or easier to manage, that would help. We use it for filtering and when you compare it to a normal content filter, it lacks some functionality.""what's missing right now is the multi-tenant capability.""They could expand into more areas. The more third-parties that we have tied into it, the better. The capabilities are there. As they just continue to involve the product, the more things that you can look into, then the more analytics that you can get. Also, the more data that we can get, then the better off we will be.""They could put in more third-party [integrations]... also more playbooks, out-of-the-box, for automation [would be helpful].""I'm not sure that I would call it a bug, but sometimes the solution is a little slow.""Remediation stuff could be integrated into the product's automation."

More Cisco SecureX Cons →

"The dashboard could use some significant improvement, just making it more useful with more information. It has a limited amount of information right now. It is customizable, but I'd love to see a better out-of-box dashboard.""It's not an ideal choice for smaller businesses, as you need a minimum of 200 endpoints to even use the solution at all.""The setup is quite easy. We had appropriate support from the manager. One thing that was missing was the integration part.""Cortex does not offer an on-premises solution. However, some customers would prefer not to be on the cloud. It would be ideal if it could offer something on-prem as well.""In an upcoming release, the solution could improve by proving hard disk encryption. If it could support this it would be a complete solution.""There are a large number of false positives.""It would be better if they could educate the customers more. Some sort of seminars and roadshows will help educate the customers and show what the product can do. The price could be better. It would also help if they had a team for deployment and support.""Although I would say this product is highly-rated, it could probably do more because nothing does everything that you want."

More Cortex XDR by Palo Alto Networks Cons →

Pricing and Cost Advice
  • "Our clients normally use the Microsoft E1 licensing, which is renewed yearly."
  • "The pricing is a little bit high but right now, we are okay with it because of the compatibility with Office 365, Teams, and Azure AD."
  • "I'm not totally involved in the pricing part, but I think its pricing is quite aggressive, and its price is quite similar to Netskope. Netskope has separate licensing fees or additional charges if you want to monitor certain SaaS services, whereas, with MCAS, you get 5,000 applications with their Office 365. It is all bundled, and there's no cost for using that. You only have the operational costs. In the country I am in, it is a bit difficult to get people with the required skill sets."
  • "Its pricing is on the higher side. Its price is definitely very high for a small-scale company. As an enterprise client, we do get benefits from Microsoft. We get a discounted price because of the number of users we have in our company. We have a premier package, and with that, we do get a lot of discounts. There are no additional costs. It only comes in the top-tier packages. Generally, the top-tier license is the best license that you can get for your organization. If you want, you can buy it separately, but that's not a good idea."
  • "The price could be better and should be reconsidered."
  • "It is a little bit expensive. When you want to have the complete package with Office 365, Defender, and everything else, it is expensive."
  • "We are an MST and we do not pay for the solution. However, the price of the solution could be better."
  • "The cost could be improved when you need to pay for anything. For example, refreshing files takes time to load, though it may be my Internet. To improve the refresh time, Microsoft says that we need to pay for a Premium license, and I don't like paying for things that help make a solution better."
  • More Microsoft Defender for Cloud Apps Pricing and Cost Advice →

  • "For the value you get, the pricing of the solution is excellent."
  • "You can spend less money for another solution, but if you really want to have a good solution you have to pay. We are happy that we are getting such a good solution for what we are spending."
  • "The pricing is competitive, especially for education institutions. Licensing can be a little bit difficult to navigate, especially with resellers with Cisco, but for us it has been pretty easy."
  • "The product is absolutely free to any customer. As such, the only thing one must keep in mind is that as long as he already has one Cisco security product, irregardless of what that product is, SecureX is available for free."
  • "It comes free with all Cisco products. So, it is a good price."
  • "It would be nice if they had a different pricing model. Most of our budget for projects goes towards Cisco."
  • "The pricing is the best part of this solution. It is free if you buy Umbrella or Duo Security. It is also a good solution."
  • "It is free. It can't get any better than that."
  • More Cisco SecureX Pricing and Cost Advice →

  • "The pricing is a little high. It is per user per year."
  • "We pay about $50,000 USD per year for a bundle that includes Cortex XDR."
  • "This is an expensive solution."
  • "Its pricing is kind of in line with its competitors and everybody else out there."
  • "Every customer has to pay for a license because it doesn't work with what you get from a managed services provider."
  • "The pricing is okay, although direct support can be expensive."
  • "Our customers have expressed that the price is high."
  • "It's about $55 per license on a yearly basis."
  • More Cortex XDR by Palo Alto Networks Pricing and Cost Advice →

    report
    Use our free recommendation engine to learn which Extended Detection and Response (XDR) solutions are best for your needs.
    622,949 professionals have used our research since 2012.
    Questions from the Community
    Top Answer:Cisco Umbrella is an integral component of the Cisco SASE architecture. It integrates security in a single, cloud-native… more »
    Top Answer:It's very easy to install and it includes the Intune portal from Microsoft where I can control all the devices from one… more »
    Top Answer:It's expensive because we have to pay for an M365 license and it is included in the package.
    Top Answer:SecureX enables us to have all the threat intelligence and threat event data in one place.
    Top Answer:The product is absolutely free to any customer that already has one Cisco security product. If one only wants to make… more »
    Top Answer:This is a relatively new offering from Cisco and some time is needed for the evolutionary development of the platform… more »
    Top Answer:Cortex XDR by Palo Alto vs. SentinelOne SentinelOne offers very detailed specifics with regard to risks or attacks.… more »
    Top Answer:Cortex XDR by Palo Alto vs. CrowdStrike Falcon Both Cortex XDR and Crowd Strike Falcon offer cloud-based solutions… more »
    Top Answer:Microsoft Defender for Endpoint is a cloud-delivered endpoint security solution. The tool reduces the attack surface… more »
    Comparisons
    Also Known As
    MS Cloud App Security, Microsoft Cloud App Security
    Cyvera, Cortex XDR, Palo Alto Networks Traps
    Learn More
    Overview

    Microsoft Defender for Cloud Apps is a cloud access security broker (CASB) that provides multifunction visibility, control over data travel, and sophisticated analytics. With Microsoft Cloud App Security, you can: 

    - Manage, control, and audit apps to streamline cloud access security

    - Mange your access to resources to discover shadow IT and understand your digital information estate

    - Use real-time controls to enable threat protection on all the access points that touch your environment

    To learn more about our solution, ask questions, and share feedback, join our Microsoft Security, Compliance and Identity Community.

    Cisco SecureX is an integrated security platform that connects the breadth of Cisco's integrated security portfolio and the customer's infrastructure to create a consistent experience. The solution unifies visibility, enables automation, and strengthens your security across network, endpoints, cloud, and applications. Cisco SecureX is embedded within every Cisco Security product and supports integrations with SIEM and SOAR, so customers will not need to replace any solution or worry about layering on new technology.

    Cisco SecureX Features

    Cisco SecureX has many valuable key features. Some of the most useful ones include:

    • Unified overview: Cisco SecureX offers key metrics on transactions and threats for network, endpoints, cloud and applications. In addition, the SecureX interface is integrated into all Cisco Security technologies.
    • Automation and an increase in operational efficiency: With Cisco SecureX, you gain better automation of workflows for products of the Cisco Security portfolio and third parties, allowing you to focus on other more important tasks. By eliminating manual work (through automatic identification of threats using analytical data of Cisco Talos and other sources), the solution helps your organization save a significant amount of time.
    • Security strengthening: Cisco SecureX makes it easy to compare analytical data from a set of various sources with the telemetry received from network, endpoints, e-mail, cloud, and third-party products.

    Cisco SecureX Benefits

    Some of the benefits of using Cisco SecureX include:

    • Secure every business endeavor with an open, integrated platform that has out-of-the-box interoperability and scales to meet security needs.
    • Advance your security maturity level using existing resources.
    • Turn security from a blocker into an enabler. Cisco SecureX allows you to add new security capabilities for the threat landscape.
    • Maximize your operational efficiency, helping you get the most from your security investments.

    Reviews from Real Users

    Below are some reviews and helpful feedback written by Cisco SecureX users.

    PeerSpot user Wouter H., Technical Team Lead Network & Security at Missing Piece BV, shares several reasons why he thinks the solution is fantastic. In his opinion, “SecureX takes all the separate pieces of security within your company, adds in intelligence from different sites and services on the internet, and makes them work together. If an email is received on a machine and malware is being executed, it can be put into lockdown mode. The fact that you can have a single solution that combines endpoint intelligence with email intelligence, firewalls, and publicly available intelligence is really helpful. Also, SecureX provides us with contextual awareness throughout our security ecosystem. Before SecureX, things that were not possible, or that would take days, now literally take seconds to find out.

    Michal S., Infrastructure Engineer at a media company, says, “SecureX provides many measurements and has a really good dashboard. Working with it you are able to see things very clearly and you have every detail on a single display. That saves us money and time.” He also adds, “It brings all our data into a central point. It also shows us many data connections between many of our environments. SecureX gives you really good information about potential risks. You are able to find the source of a risk, a potential risk from a user or a machine.”

    Blair A., Technology Director at Shawnee Heights USD #450, explains, "One of the most valuable features is the simplicity of deploying SecureX. It's very easy to do that and then you gain very detailed visibility into everything that's going on in your network and, obviously, at the device level. There's just a wealth of information that you can pull from all of these products that are part of SecureX. You know exactly if you have an issue or not."

    Cortex XDR by Palo Alto Networks is the first threat detection and response software to combine both visibility across all types of data as well as autonomous machine learning analytics. Threat detection very often requires analysts to divide their attention among many different data streams. This platform unifies a vast variety of data flows, which allows analysts to assess threats from a single location. Users can now maintain a level of visibility that other threat detection programs simply cannot offer. This level of transparency lends itself to both quick identification of problems that arise and the equally quick development of a potential solution.

    Cortex XDR’s machine learning works on many different levels to detect and prevent threats. It is constantly scanning for threats and vulnerabilities. The solution can scan up to 5.4 billion IP addresses in three-quarters of an hour. This allows it to spot weak points in the system and notify administrators long before hackers can take advantage of vulnerabilities. Once the Artificial Intelligence (AI) discovers an issue or an area where an issue could potentially take place the system creates a log of the information and subsequently sends an alert to system administrators. The AI takes the information that it has gathered and uses it to assign threat levels to the issues that it detects. Following this, a human analyst will be assigned to manually assess the issue and deal with it accordingly. You can set it to automatically respond to the threat by isolating the issue while analysts investigate it.

    Benefits of Cortex XDR

    Some of Cortex XDR’s benefits include:

    • The use of advanced AI analytics, behavior analytics, and custom-made detection to detect advanced threats before they occur.
    • The ability to group similar threat alerts, reducing incoming alerts by as much as 98%. This allows analysts to avoid being overwhelmed by the volume of incoming alerts.
    • The ability to investigate threats as much as 8 times faster than would be possible with other software. The machine learning, when coupled with the unified data stream that Cortex XDR collects, significantly increases the ability to more quickly discover the root cause of a threat.

    Reviews from Real Users

    Cortex XDR by Palo Alto Networks software stands out among its competitors for a number of reasons. Two major ones are its ability to isolate threats while enabling them to be studied and the way that the software combines all of the data that it gathers into a single, more complete picture than other solutions offer.

    PeerSpot users note the effectiveness of these features. A network designer at a computer software company wrote, “The solution has a very helpful isolation feature. If any system gets compromised, with one click I can access the system and isolate it from other networks, and then go into further forensic investigation of the current threat without compromising anything else.”

    Jeff W., Vice President/CTO at Sinnott Wolach Technology Group, noted, “The ability to kind of stitch everything together and see the actual complete picture is very useful. I guess you'd call it a playbook. Some people call it the forensics analysis of what was happening on particular endpoints when they detected some malicious behavior, and what transpired before that to cause that. It is also very user friendly.”



    Offer
    Learn more about Microsoft Defender for Cloud Apps
    Learn more about Cisco SecureX
    Learn more about Cortex XDR by Palo Alto Networks
    Sample Customers
    Customers for Microsoft Defender for Cloud Apps include Accenture, St. Luke’s University Health Network, Ansell, and Nakilat.
    NHS, Rackspace, UNC Pembroke, University of North Carolina at Charlotte, Missing Piece
    CBI Health Group, University Honda, VakifBank
    Top Industries
    REVIEWERS
    Educational Organization29%
    Government14%
    Financial Services Firm14%
    Engineering Company14%
    VISITORS READING REVIEWS
    Computer Software Company23%
    Comms Service Provider19%
    Financial Services Firm8%
    Government6%
    REVIEWERS
    Financial Services Firm25%
    Comms Service Provider25%
    Media Company13%
    Educational Organization13%
    VISITORS READING REVIEWS
    Comms Service Provider46%
    Computer Software Company14%
    Government5%
    Manufacturing Company3%
    REVIEWERS
    Computer Software Company15%
    Financial Services Firm12%
    Consumer Goods Company9%
    Government9%
    VISITORS READING REVIEWS
    Computer Software Company22%
    Comms Service Provider20%
    Government7%
    Financial Services Firm5%
    Company Size
    REVIEWERS
    Small Business21%
    Midsize Enterprise37%
    Large Enterprise42%
    VISITORS READING REVIEWS
    Small Business20%
    Midsize Enterprise16%
    Large Enterprise64%
    REVIEWERS
    Small Business18%
    Midsize Enterprise55%
    Large Enterprise27%
    VISITORS READING REVIEWS
    Small Business17%
    Midsize Enterprise12%
    Large Enterprise71%
    REVIEWERS
    Small Business43%
    Midsize Enterprise17%
    Large Enterprise40%
    VISITORS READING REVIEWS
    Small Business22%
    Midsize Enterprise21%
    Large Enterprise57%
    Buyer's Guide
    Cisco SecureX vs. Cortex XDR by Palo Alto Networks
    July 2022
    Find out what your peers are saying about Cisco SecureX vs. Cortex XDR by Palo Alto Networks and other solutions. Updated: July 2022.
    622,949 professionals have used our research since 2012.

    Cisco SecureX is ranked 5th in Extended Detection and Response (XDR) with 10 reviews while Cortex XDR by Palo Alto Networks is ranked 1st in Extended Detection and Response (XDR) with 46 reviews. Cisco SecureX is rated 9.0, while Cortex XDR by Palo Alto Networks is rated 8.2. The top reviewer of Cisco SecureX writes "Combines multiple sources of security intelligence, making it easy to correlate events in our environment with those outside of it". On the other hand, the top reviewer of Cortex XDR by Palo Alto Networks writes "Easy to set up, reliable, and always scanning". Cisco SecureX is most compared with Fortinet FortiSOAR, Splunk Phantom, Microsoft 365 Defender, Trend Micro XDR and Microsoft Defender for Cloud, whereas Cortex XDR by Palo Alto Networks is most compared with CrowdStrike Falcon, Microsoft Defender for Endpoint, SentinelOne, Symantec Endpoint Security and Check Point Harmony Endpoint. See our Cisco SecureX vs. Cortex XDR by Palo Alto Networks report.

    See our list of best Extended Detection and Response (XDR) vendors.

    We monitor all Extended Detection and Response (XDR) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.