No more typing reviews! Try our Samantha, our new voice AI agent.

Cybereason XDR vs Kaspersky Next XDR Optimum comparison

Sponsored
 

Comparison Buyer's Guide

Executive SummaryUpdated on Apr 9, 2026

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Categories and Ranking

Cortex XDR by Palo Alto Net...
Sponsored
Ranking in Extended Detection and Response (XDR)
4th
Average Rating
8.4
Reviews Sentiment
6.8
Number of Reviews
113
Ranking in other categories
Endpoint Protection Platform (EPP) (4th), Endpoint Detection and Response (EDR) (6th), Ransomware Protection (2nd), AI-Powered Cybersecurity Platforms (1st)
Cybereason XDR
Ranking in Extended Detection and Response (XDR)
24th
Average Rating
8.6
Reviews Sentiment
6.7
Number of Reviews
3
Ranking in other categories
No ranking in other categories
Kaspersky Next XDR Optimum
Ranking in Extended Detection and Response (XDR)
14th
Average Rating
8.0
Reviews Sentiment
7.2
Number of Reviews
124
Ranking in other categories
Endpoint Protection Platform (EPP) (11th), Endpoint Compliance (5th), Endpoint Detection and Response (EDR) (21st)
 

Mindshare comparison

As of July 2026, in the Extended Detection and Response (XDR) category, the mindshare of Cortex XDR by Palo Alto Networks is 4.6%, down from 5.1% compared to the previous year. The mindshare of Cybereason XDR is 1.0%, up from 0.7% compared to the previous year. The mindshare of Kaspersky Next XDR Optimum is 1.5%, down from 3.1% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Extended Detection and Response (XDR) Mindshare Distribution
ProductMindshare (%)
Cortex XDR by Palo Alto Networks4.6%
Kaspersky Next XDR Optimum1.5%
Cybereason XDR1.0%
Other92.9%
Extended Detection and Response (XDR)
 

Featured Reviews

ABHISHEK_SINGH - PeerSpot reviewer
Senior Process Expert at A.P. Moller - Maersk
Gained full visibility and streamlined threat detection through behavior-based insights and AI integration
Initially, we got to have a lot of false positives when we onboarded, but nowadays it's quite smooth. We have fine-tuned our security policies and allowed different levels of policies to get rid of those false positives. Currently, we are getting a fairly good amount of incidents that are not false positives or benign, but actionable items. The process is streamlined. In the initial days, the operations used to get involved in a lot of benign and other activities, but now the process is streamlined. We are leveraging the auto-detection and remediation plans. The operations teams are now more involved in other business roles as well, not just looking into the logs and fetching out what's happening there. They have fixed a lot of things. Initially, they didn't have IAC code drift detection, cloud posture management, or security posture management, but they have those now. They purchased different vendors and did a merger with that. They have now Prisma Cloud that gets integrated and now they are working with Cortex Cloud. Everything that was negative has now been addressed, and the product altogether looks to be in a very better and mature shape now. Currently, it's more or less detecting the workloads with AI-based best practices. Since most organizations are consuming AI agents and other things, we are looking forward to seeing what other feature enhancements Palo Alto can support in that.
Peter Nowak - PeerSpot reviewer
Business Development Manager for Cybereason at Bechtle
Integration of multiple firewalls enables advanced threat detection
The integration of data from firewalls and Active Directory is most valuable. Cybereason XDR facilitates two-way communication, where the firewall sends data to the Cybereason system, and it can communicate with the firewall to stop unwanted communication. Customers can deal with multiple types of firewalls with ease. The behavioral analytics help detect advanced threats when attackers use existing software. The multilayered protection approach, including NGAV, integrates XDR detection with antivirus to assess and counter threats effectively.
SR
Group CIO at Thal Industries Corporation Ltd
Have maintained strong endpoint protection through behavioral analysis and daily monitoring
I previously mentioned that Kaspersky Endpoint Security for Business doesn't have built-in DLP, which was a concern. I think they could add it in the future; however, antivirus cannot provide a proper DLP solution, but they can offer a mix of DLP, similar to Trend Micro Apex One, which provides some sort of DLP file management. Nonetheless, we need a proper DLP solution such as Forcepoint or Symantec, whichever suits us. We'll be conducting performance evaluation in the next quarter while working on other projects. More value means a better GUI, user interface, and comprehensive reporting capabilities. In Sophos, we receive a daily system-generated report about what is happening, plus an alert system. The reporting system in Trend Micro is also excellent; I receive an email every day at 10:00 AM with a report for the last 24 hours.

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"Threat identification and detection are the most valuable features of this solution."
"The initial setup is pretty easy."
"Palo Alto Networks Traps improves our security posture and lowers risk by providing next-gen methods to combat against modern threats on all the major platforms."
"The integrations are out-of-the-box, as are the playbooks."
"On a scale from one to ten, I would rate Cortex XDR by Palo Alto Networks a nine."
"WildFire AI is the best option for this product."
"We switched because there were a lot of added features with Palo Alto that Check Point didn't have, and it was an upgrade for us."
"The protection offered by this product is good, as is the endpoint reporting."
"Cybereason XDR's most useful feature is the investigation."
"The integration of data from firewalls and Active Directory is most valuable."
"The solution has an investigation feature, which is useful for building storylines."
"The product can scale if you need it to."
"I like that Kaspersky isn't heavy."
"The policies are easy to make and controlled by the Kaspersky Administrative Security Center, which comes at no additional costs."
"Kaspersky is an excellent choice for enterprise security. It supports Windows 10 and earlier versions like Windows 7, ensuring compatibility across various Windows operating systems used by our organization."
"The advice I would give someone implementing this solution is that the management of the solution is very easy. You don't need a lot of people to manage the solution."
"The interface is friendly."
"It is very reliable, user-friendly endpoint security software."
"Overall, this is a fantastic solution."
 

Cons

"There's room for improvement with Mac device installations, which can be challenging."
"Cortex does not offer an on-premises solution. However, some customers would prefer not to be on the cloud. It would be ideal if it could offer something on-prem as well."
"Every 30 or 40 days, there's a new version and we need to go and make sure our customer's laptops are upgraded."
"There are some false positives. What our guys would have liked is that it would have been easier to manipulate as soon as they found a false positive that they knew was a false positive. How to do so was not obvious. Some people complained about it. The interface, the ESM, is not user-friendly."
"It would be better if they could educate the customers more. Some sort of seminars and roadshows will help educate the customers and show what the product can do. The price could be better. It would also help if they had a team for deployment and support."
"Initially, we got to have a lot of false positives when we onboarded, but nowadays it's quite smooth."
"The price could be a little lower."
"It's more focused on network communication. If a customer wants to increase the level of protection and start working with documents, it's impossible to integrate these features into the system. It's more of a communication-oriented system than a content security-oriented system."
"Customer service is rated as a five out of ten. When they work and reach the right level, they are helpful, but getting to the right person can be time-consuming."
"The one thing we sometimes have issues with is its integration with other security applications like antiviruses."
"There could be more integrations with other data sources like NDR systems."
"Cybereason's customer support could be better."
"The solution could provide more integration."
"I think it would be good for them to consider and cloud integration capabilities."
"The deployment could be better. Recently when I try to deploy it I received a large number of failures."
"The GUI mode in the product is an area with certain shortcomings since it looks old with the graphics provided by Kaspersky."
"It would be beneficial to have more robust cloud management capabilities for Endpoint."
"There is room for improvement in Kaspersky Endpoint Security for Business regarding Data Leakage Prevention (DLP)."
"It should be more secure and detect new malware as it's released."
"They're restricted to endpoint protection for now, I'd like to see some additional products."
 

Pricing and Cost Advice

"Cortex XDR's pricing is ok."
"The pricing seems fair, and I do like the licensing model. You use wherever they are, and it is elastic."
"Its pricing is kind of in line with its competitors and everybody else out there."
"We pay about $50,000 USD per year for a bundle that includes Cortex XDR."
"It's about $55 per license on a yearly basis."
"Cortex XDR by Palo Alto Networks is quite an expensive solution."
"Cortex XDR by Palo Alto Networks is an expensive solution."
"I am using the Community edition."
"The solution is cheaper than Microsoft Defender. It has a subscription and no standard license."
"It is a cost-effective product."
"Kaspersky is priced well."
"I would rate the tool's pricing a six out of ten. You need to pay extra costs for additional modules. The product's licensing costs are yearly."
"The solution requires a license and there are different license packages depending on the number of users you need."
"It's an affordable security solution."
"The pricing is a bit more expensive than other products."
"I think the price of this solution is good."
"Kaspersky Endpoint Security for Business' pricing is reasonable, and licensing costs are annual."
report
Use our free recommendation engine to learn which Extended Detection and Response (XDR) solutions are best for your needs.
902,988 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Construction Company
12%
Financial Services Firm
11%
Manufacturing Company
10%
Comms Service Provider
9%
Manufacturing Company
12%
Computer Software Company
11%
Outsourcing Company
8%
Comms Service Provider
8%
Construction Company
9%
Manufacturing Company
9%
Financial Services Firm
8%
Comms Service Provider
7%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
By reviewers
Company SizeCount
Small Business46
Midsize Enterprise21
Large Enterprise52
No data available
By reviewers
Company SizeCount
Small Business63
Midsize Enterprise27
Large Enterprise33
 

Questions from the Community

Cortex XDR by Palo Alto vs. Sentinel One
Cortex XDR by Palo Alto vs. SentinelOne SentinelOne offers very detailed specifics with regard to risks or attacks. ...
Comparing CrowdStrike Falcon to Cortex XDR (Palo Alto)
Cortex XDR by Palo Alto vs. CrowdStrike Falcon Both Cortex XDR and Crowd Strike Falcon offer cloud-based solutions th...
How is Cortex XDR compared with Microsoft Defender?
Microsoft Defender for Endpoint is a cloud-delivered endpoint security solution. The tool reduces the attack surface,...
What needs improvement with Cybereason XDR?
There could be more integrations with other data sources like NDR systems. Additionally, technical support has been s...
What is your primary use case for Cybereason XDR?
I use Cybereason XDR for customers who don't have a SOC or managed SOC yet and want to be protected on more than thei...
What advice do you have for others considering Cybereason XDR?
I rate Cybereason XDR a nine out of ten. I recommend having hands-on experience and doing some threat hunting to fami...
What needs improvement with Kaspersky Endpoint Security?
Kaspersky Endpoint Security for Business does not have encryption tools. It uses the Windows BitLocker tool, which is...
What is your experience regarding pricing and costs for Kaspersky Endpoint Security for Business?
The pricing and licensing cost of Kaspersky Endpoint Security is cheaper compared to Trend Micro.
What is your primary use case for Kaspersky Endpoint Security for Business?
I have good experience in the sales part of Kaspersky Endpoint Security for Business, not the technical side. I am no...
 

Also Known As

Cyvera, Cortex XDR, Palo Alto Networks Traps
No data available
Kaspersky Work Space Security, Kaspersky Endpoint Security
 

Overview

 

Sample Customers

CBI Health Group, University Honda, VakifBank
MOTOROLA MOBILITY
ACMS, Arqiva, Pakistan International Airlines, RAO UES
Find out what your peers are saying about Cybereason XDR vs. Kaspersky Next XDR Optimum and other solutions. Updated: June 2026.
902,988 professionals have used our research since 2012.