Securonix Next-Gen SIEM and Cortex XSIAM are competitors in the security information and event management sector. Cortex XSIAM appears to have an edge due to its unified platform approach and extensive coverage across network and endpoints.
Features: Securonix Next-Gen SIEM focuses on user behavior analytics, detecting cyber and insider threats with flexibility for cloud and on-premises operations. It offers cloud monitoring and integration with applications like Office365 and Salesforce. Cortex XSIAM highlights its unified platform using machine learning for threat detection with impressive third-party integration and a holistic approach for network and endpoint security.
Room for Improvement: Securonix needs to ease initial deployment and enhance third-party integrations, such as ServiceNow, while simplifying the user experience. Cortex XSIAM should work on advancing cybersecurity integrations and refining performance for handling multiple tasks. Pricing structure improvements could also benefit Cortex XSIAM users.
Ease of Deployment and Customer Service: Securonix offers versatile deployment options in on-premises, public, private, and hybrid cloud environments and provides strong technical support, although responsiveness varies. Cortex XSIAM, limited to public cloud deployments, ensures a streamlined process respected for its efficiency.
Pricing and ROI: Securonix has a pricing model based on the number of identities, seen as competitive against solutions like Splunk, with ROI benefits through operational efficiency. Cortex XSIAM, although considered expensive, provides value comparative to Microsoft Sentinel, evident in faster threat detection and improved response times.
The solution is time-saving, particularly in the long run after it is deployed, enabling us to get value promptly.
With premium support, core Palo Alto technical experts handle issues directly.
It is ineffective in terms of responding to basic queries and addressing future requirements.
The Palo Alto support team is fully responsive and helpful.
There is no UK-based support, which leads to delays in waiting for US support.
If I raise a ticket, it initially goes to the L1 team, but the next level of escalation is really effective.
They excel in response times and quick reactions when there's an actual threat.
Without proper integration, scaling up with more servers is meaningless.
Cortex XSIAM is highly scalable.
I can rate it around eight to nine, and it is very scalable and capable of handling tasks, especially for the on-premises product.
We have not had any customers come back to say they cannot scale at the speed of their business growth.
The solution is scalable as it is cloud-based and cloud-native.
The product was easy to install and set up and worked right.
Overall, Cortex XSIAM is stable.
The stability of Securonix Next-Gen SIEM is based on the events we are processing.
Obtaining validation for integrations from Palo Alto takes around eight months, which is quite long.
Cortex XSIAM needs improvements in terms of data onboarding, parsers, and third-party integration supports.
Cortex XSIAM is on the expensive side and requires substantial improvement in pricing.
At the admin level, we have many challenges where log parsing is causing issues and compatibility is not present.
The passing and setup are quite complex at the beginning, making onboarding not smooth.
SIEM could have better integration with other technologies.
The first impression is that XSIAM would be more expensive than others we tried.
The product is very expensive.
Cortex XSIAM is pretty expensive, and the licensing process is not very comfortable.
Licensing is based on events per second (EPS), costing between $50 to $60 per EPS.
The solution is definitely not expensive.
The pricing has similar ingestion charges compared to other solutions, such as Splunk.
The advanced visualization capabilities of the product are important for understanding security trends in an organization.
One of the valued aspects of the product is its use of artificial intelligence to detect security vulnerabilities.
The flexibility for creating manual workflows stands out.
The software includes user behavior interactions, dashboards, and training capabilities.
Now, the process is automatic, reducing our workload.
The other SIEM solutions lack an option for big data analysis, whereas in the Securonix Next-Gen SIEM, we have this option.
| Product | Market Share (%) |
|---|---|
| Cortex XSIAM | 2.9% |
| Securonix Next-Gen SIEM | 1.1% |
| Other | 96.0% |
| Company Size | Count |
|---|---|
| Small Business | 9 |
| Midsize Enterprise | 2 |
| Large Enterprise | 3 |
| Company Size | Count |
|---|---|
| Small Business | 10 |
| Midsize Enterprise | 5 |
| Large Enterprise | 19 |
Cortex XSIAM acts as a critical element for SOC foundations, integrating SIEM and EDR capabilities, valued for threat detection and seamless security orchestration with Palo Alto Networks products.
Organizations find Cortex XSIAM beneficial for SOC foundations due to its capability to integrate SIEM and EDR tools, facilitating data collection, detection, and response. It connects with third-party data sources while reducing management effort and offering cost-effective alternatives to competitors like CrowdStrike and Trend Micro. Featuring automation and integration with Palo Alto Networks products, Cortex XSIAM enhances threat detection. Unified architecture allows a comprehensive view of attacks, further supported by machine learning and integration with existing vendor solutions, ensuring that users gain insights without significant manual log analysis.
What are Cortex XSIAM's key features?
What benefits are evident in Cortex XSIAM reviews?
Industries implement Cortex XSIAM mainly in technology-driven sectors where centralized endpoint protection and automation of forensic investigation are paramount. By integrating several third-party systems for incident response, companies in competitive markets leverage its attributes for heightened operational security efficiency. However, users note areas for improvement, such as Attack Surface Management and integration enhancements, to better suit tech-heavy industries needing extensive connectivity with cybersecurity solutions.
Securonix Next-Gen SIEM is a security information and event management solution designed to provide advanced threat detection, response, and compliance capabilities. It leverages machine learning and big data analytics to offer a comprehensive security platform for modern enterprises.
Securonix Next-Gen SIEM utilizes advanced analytics and machine learning to detect complex threats that traditional SIEM solutions might miss. Its architecture is built on Hadoop, enabling scalability and the processing of large volumes of data in real-time. This allows organizations to gain deep insights into security incidents, prioritize threats, and automate response actions. The solution also includes behavior analytics to detect insider threats and unknown attacks, integrating seamlessly with existing IT infrastructure.
What are the critical features of Securonix Next-Gen SIEM?
What is the ROI expectations?
Securonix Next-Gen SIEM is implemented across various industries, including finance, healthcare, and retail. Its flexibility and advanced analytics capabilities make it suitable for environments with complex security needs. In finance, it helps detect fraud, while in healthcare, it ensures patient data security. In retail, it protects against data breaches and payment fraud.
In summary, Securonix Next-Gen SIEM offers advanced threat detection, scalability, and integration capabilities, making it a robust solution for modern enterprises.
We monitor all Security Information and Event Management (SIEM) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.
