No more typing reviews! Try our Samantha, our new voice AI agent.

ConnectWise SIEM vs Kaspersky Next XDR Optimum comparison

Sponsored
 

Comparison Buyer's Guide

Executive SummaryUpdated on Apr 9, 2026

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Categories and Ranking

Cortex XDR by Palo Alto Net...
Sponsored
Ranking in Endpoint Detection and Response (EDR)
6th
Average Rating
8.4
Reviews Sentiment
6.8
Number of Reviews
114
Ranking in other categories
Endpoint Protection Platform (EPP) (4th), Extended Detection and Response (XDR) (4th), Ransomware Protection (2nd), AI-Powered Cybersecurity Platforms (1st)
ConnectWise SIEM
Ranking in Endpoint Detection and Response (EDR)
55th
Average Rating
8.6
Reviews Sentiment
6.6
Number of Reviews
3
Ranking in other categories
Security Information and Event Management (SIEM) (48th), Secure Access Service Edge (SASE) (22nd), Managed Detection and Response (MDR) (24th)
Kaspersky Next XDR Optimum
Ranking in Endpoint Detection and Response (EDR)
21st
Average Rating
8.0
Reviews Sentiment
7.2
Number of Reviews
124
Ranking in other categories
Endpoint Protection Platform (EPP) (11th), Endpoint Compliance (5th), Extended Detection and Response (XDR) (14th)
 

Mindshare comparison

As of July 2026, in the Endpoint Detection and Response (EDR) category, the mindshare of Cortex XDR by Palo Alto Networks is 3.6%, down from 3.9% compared to the previous year. The mindshare of ConnectWise SIEM is 0.8%, up from 0.2% compared to the previous year. The mindshare of Kaspersky Next XDR Optimum is 1.8%, down from 2.8% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Endpoint Detection and Response (EDR) Mindshare Distribution
ProductMindshare (%)
Cortex XDR by Palo Alto Networks3.6%
Kaspersky Next XDR Optimum1.8%
ConnectWise SIEM0.8%
Other93.8%
Endpoint Detection and Response (EDR)
 

Featured Reviews

ABHISHEK_SINGH - PeerSpot reviewer
Senior Process Expert at A.P. Moller - Maersk
Gained full visibility and streamlined threat detection through behavior-based insights and AI integration
Initially, we got to have a lot of false positives when we onboarded, but nowadays it's quite smooth. We have fine-tuned our security policies and allowed different levels of policies to get rid of those false positives. Currently, we are getting a fairly good amount of incidents that are not false positives or benign, but actionable items. The process is streamlined. In the initial days, the operations used to get involved in a lot of benign and other activities, but now the process is streamlined. We are leveraging the auto-detection and remediation plans. The operations teams are now more involved in other business roles as well, not just looking into the logs and fetching out what's happening there. They have fixed a lot of things. Initially, they didn't have IAC code drift detection, cloud posture management, or security posture management, but they have those now. They purchased different vendors and did a merger with that. They have now Prisma Cloud that gets integrated and now they are working with Cortex Cloud. Everything that was negative has now been addressed, and the product altogether looks to be in a very better and mature shape now. Currently, it's more or less detecting the workloads with AI-based best practices. Since most organizations are consuming AI agents and other things, we are looking forward to seeing what other feature enhancements Palo Alto can support in that.
reviewer2711757 - PeerSpot reviewer
Cyber Security Software Engineer at a tech services company with 11-50 employees
Automated alerting and reporting excel while cost and feature limitations remain
I find automation to be one of the best and most valuable features of the product. Machine learning is incorporated into the solution, though AI is a broader term that I wouldn't apply here. I haven't personally explored AI yet, but I will investigate it. Machine learning functions more as automation in my experience, as there's no training involved yet. I want to conduct R&D on another project with Wazuh to determine how to capture usage, for example, tracking user logins and time spent. This is where I need to implement machine learning. Additionally, the extraction of GeoIP adds complexity. The solution is effectively reducing incident response times in operations.
SR
Group CIO at Thal Industries Corporation Ltd
Have maintained strong endpoint protection through behavioral analysis and daily monitoring
I previously mentioned that Kaspersky Endpoint Security for Business doesn't have built-in DLP, which was a concern. I think they could add it in the future; however, antivirus cannot provide a proper DLP solution, but they can offer a mix of DLP, similar to Trend Micro Apex One, which provides some sort of DLP file management. Nonetheless, we need a proper DLP solution such as Forcepoint or Symantec, whichever suits us. We'll be conducting performance evaluation in the next quarter while working on other projects. More value means a better GUI, user interface, and comprehensive reporting capabilities. In Sophos, we receive a daily system-generated report about what is happening, plus an alert system. The reporting system in Trend Micro is also excellent; I receive an email every day at 10:00 AM with a report for the last 24 hours.

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"Its ability to react to cyber data attacks is awesome."
"Cortex XDR by Palo Alto Networks should be a stable solution."
"I like the centralized console and the predictive analysis it does of malware. It is very stable and also scalable."
"We use Cortex XDR by Palo Alto Networks for its ability to detect based on behavior rather than simple virus scan to prevent malicious activities."
"Cortex XDR by Palo Alto Networks has helped lighten the load of our security analysts because it was the major tool that we were using and the one we utilized most."
"Cortex XDR by Palo Alto Networks has changed the way my security team detects, investigates, and responds to threats, as we are able to see the files, unwanted files, unsecured files, and unauthorized files, so we are quarantining them."
"Palo Alto is constantly adding new features."
"Being a cloud solution it is very flexible in serving internal and external connections and a broad range of devices."
"The integration capabilities of ConnectWise SIEM are off the shelf, making it easy to buy and use; you just unpack it and use it."
"We have found the solution has great functionality and it is easy to use."
"One valuable feature of ConnectWise Fortify is the ability to add other teams and receive notifications when customers make changes or remove multi-factor authentication in Microsoft or SAP environments."
"The security and vulnerability assessment features are valuable."
"We swtiched to Kaspersky Endpoint Security because we found our previous solution did not meet our requirements."
"It's flexible, and Kaspersky Endpoint Security's performance is good. Also, the pricing is fine."
"It's easy to use."
"They have a very good reporting system and they have a very good dashboard for the administrator, which makes monitoring everything easy."
"The product can scale if you need it to."
"The initial setup was extremely straightforward and very easy."
"Before Kaspersky, I had to control each PC one by one but now it's just one update and it can detect a virus on all of the systems."
 

Cons

"If they had pulse rate detection, it would be better."
"Cortex XDR by Palo Alto Networks can improve mobile integration to allow access to the console."
"Cortex XDR by Palo Alto Networks could improve by offering remote management. It would be useful to look at the client's issue to fix it."
"The price could be a little lower."
"For working with the solution, you only really need a web browser, however, we've found that working on Chrome, for example, is horrible."
"Cortex XDR should have a lightweight agent, and the agent size should not be heavy."
"The configuration could be simplified. I would like to see better protection, specifically to protect email applications."
"The solution lags to the real-time scenarios here and there."
"ConnectWise Fortify could work on covering more areas, like phishing messages, which have become more complicated to detect."
"The manage portion of the solution is complicated and should be simplified by having different versions to meet the needs of different size companies."
"ConnectWise SIEM is primarily focused on notifications and is limited in that aspect, while Wazuh can automate the elimination process."
"The threat intelligence features are not up to date."
"I've had some problems with the web interface. For example, when I was running a trace, it's difficult to find this function, but I can see it when I go on the server. So, if I want to implement the EDR functions on the web interface, it's very difficult because the command button or the link doesn't appear."
"When we connect to the solutions' website they block out our VPN connection, which causes us some difficulties."
"A big improvement would be allowing us to reconfigure the agents and change what to whitelist for a specific user. If the user is not happy with the configuration and is being blocked from certain sites, we should be able to reconfigure the monitoring mechanics to make it more flexible."
"It's does not have the architecture or structure to scale up."
"Kaspersky Endpoint Security for Business’s interface could be easier to understand when displaying the activities during configuration processes."
"They should continue to put more security measures in place in order to make it more robust."
"The licensing fees could be reduced."
 

Pricing and Cost Advice

"The solution has one subscription for endpoint protection and one subscription for detection and response. The two licenses combined give you the BRO version."
"The pricing is a little bit on the expensive side."
"The price of the solution could be reduced. I have customers that have voiced that the solution is good for the value but if I want to sell more of the solution the price reduction would help."
"Cortex XDR by Palo Alto Networks is quite an expensive solution."
"The price is on the higher side, but it's okay."
"In terms of the cost Cortex XDR by Palo Alto Networks is very expensive because we are a Mexican company and when you translate dollars to pesos the cost is very high. The solution is very expensive for Mexican companies. I understand that they have international prices, but I do not think it offsets the price enough for many companies in countries, such as Mexico. The amount it is reduced is not a massive percentage."
"The solution is expensive. It's pricing is on a yearly-basis."
"The pricing is a little high. It is per user per year."
"The solution is expensive."
"This solution is priced lower than some of its competitors. The support from Kaspersky is purchased separately."
"The tool is expensive."
"The solution's pricing is reasonable."
"The price of this solution is affordable and there is only a standard license required."
"The licensing is based per agent. You can get discounts if you have more agents."
"I don't remember exactly what the licenses cost, but it's not too expensive. It's affordable, especially when you are dealing with on-prem. However, I don't know about the new prices because we are in the process of buying support."
"I've heard from my manager that the solution is expensive."
"I think the price of this solution is good."
report
Use our free recommendation engine to learn which Endpoint Detection and Response (EDR) solutions are best for your needs.
903,871 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Construction Company
12%
Financial Services Firm
11%
Manufacturing Company
11%
Comms Service Provider
9%
Computer Software Company
15%
Construction Company
12%
Comms Service Provider
10%
Financial Services Firm
7%
Construction Company
9%
Manufacturing Company
9%
Financial Services Firm
8%
Comms Service Provider
7%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
By reviewers
Company SizeCount
Small Business46
Midsize Enterprise21
Large Enterprise53
No data available
By reviewers
Company SizeCount
Small Business63
Midsize Enterprise27
Large Enterprise33
 

Questions from the Community

Cortex XDR by Palo Alto vs. Sentinel One
Cortex XDR by Palo Alto vs. SentinelOne SentinelOne offers very detailed specifics with regard to risks or attacks. ...
Comparing CrowdStrike Falcon to Cortex XDR (Palo Alto)
Cortex XDR by Palo Alto vs. CrowdStrike Falcon Both Cortex XDR and Crowd Strike Falcon offer cloud-based solutions th...
How is Cortex XDR compared with Microsoft Defender?
Microsoft Defender for Endpoint is a cloud-delivered endpoint security solution. The tool reduces the attack surface,...
What needs improvement with ConnectWise Fortify?
I haven't utilized the advanced threat intelligence capabilities with ConnectWise SIEM. Advanced threat intelligence ...
What is your primary use case for ConnectWise Fortify?
I do not have experience with ConnectWise SIEM for RMM, as I mostly work on Wazuh, and I have a team that handles Con...
What advice do you have for others considering ConnectWise Fortify?
The review can be made anonymous if just my name and not the company name is used. I would assess the real-time visib...
What needs improvement with Kaspersky Endpoint Security?
Kaspersky Endpoint Security for Business does not have encryption tools. It uses the Windows BitLocker tool, which is...
What is your experience regarding pricing and costs for Kaspersky Endpoint Security for Business?
The pricing and licensing cost of Kaspersky Endpoint Security is cheaper compared to Trend Micro.
What is your primary use case for Kaspersky Endpoint Security for Business?
I have good experience in the sales part of Kaspersky Endpoint Security for Business, not the technical side. I am no...
 

Also Known As

Cyvera, Cortex XDR, Palo Alto Networks Traps
ConnectWise Security Management, ConnectWise Fortify, Continuum Fortify, ConnectWise SIEM, ConnectWise SASE
Kaspersky Work Space Security, Kaspersky Endpoint Security
 

Overview

 

Sample Customers

CBI Health Group, University Honda, VakifBank
Techvera, Syrex, Clark Integrated Technologies
ACMS, Arqiva, Pakistan International Airlines, RAO UES
Find out what your peers are saying about ConnectWise SIEM vs. Kaspersky Next XDR Optimum and other solutions. Updated: June 2026.
903,871 professionals have used our research since 2012.