No more typing reviews! Try our Samantha, our new voice AI agent.

Galvanize IncidentBond [EOL] vs Palo Alto Networks Cortex XSOAR comparison

The compared Diligent and Palo Alto Networks solutions aren't in the same category. Palo Alto Networks is ranked #3 in SOAR , with an average rating of 8.5, and holds a 8.8% mindshare. Additionally, 100% of Diligent users are willing to recommend the solution, compared to 90% of Palo Alto Networks users who would recommend it.
Palo Alto Networks Cortex X...
Read 51 Palo Alto Networks Cortex XSOAR reviews
  • 9,692 Views
  • 5,718 Comparison Views
90% willing to recommend
 

Comparison Buyer's Guide

Download the report
Executive Summary
We performed a comparison between Galvanize IncidentBond [EOL] and Palo Alto Networks Cortex XSOAR based on real PeerSpot user reviews.

Find out what your peers are saying about ServiceNow, Trellix, Proofpoint and others in Security Incident Response.

DOWNLOAD THE COMPLETE REPORT
To learn more, read our detailed Security Incident Response Report (Updated: April 2026).
Buyer's Guide
Security Incident Response
April 2026
Download the complete report
Helped 893,244 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Categories and Ranking

Galvanize IncidentBond [EOL]
Average Rating
9.0
Number of Reviews
1
Ranking in other categories
No ranking in other categories
Palo Alto Networks Cortex X...
Average Rating
8.4
Reviews Sentiment
6.5
Number of Reviews
51
Ranking in other categories
Security Orchestration Automation and Response (SOAR) (3rd), SOC as a Service (2nd)
 

Featured Reviews

DE
Daniel Eakin
Information Security Engineer at a financial services firm with 1,001-5,000 employees
Customization and transparency of data, while maintaining a mostly user-friendly UI
Sadly, I can’t provide specific examples due to the nature of the content of the improvements. I will say that, prior to implementation, and post-implementation, we saw a nearly 800% increase in volume of completed and correctly completed documentation in regards to specific tasks being completed. Rsam puts the workflow first, and lets the record follow it. It literally puts a task on rails and the person needing to do the work only need respond to the prompts accordingly and let Rsam automate the rest. The data is cleaner, more uniform, and there’s simply more of it created more quickly, as a result.
Read full review
CC
ChrisCollins
Enterprise Security Architect V at FirstEnergy
Customization supports seamless workflow while data influx challenges response time
What I appreciate most about Palo Alto Networks Cortex XSOAR is that it is very open, even more so than Anomali. I can create various custom automations and custom fields. There is significant customization ability in this platform. If I already have an established process, I do not have to change my process to fit into the tool. I can modify the tool to fit into my process, which makes things considerably easier. All of our alerts from different tools come into this central place as we have multiple SIEMs. We have items coming from Anomali and other platforms that are not SIEM tools. This serves as our central location where our SOC analysts can work and determine if incident response is needed. The platform provides data enrichment capabilities, offering information upfront so analysts do not have to search for it. They can access details such as username, phone number, email address, and workplace information. For malware files, they can retrieve details from VirusTotal, including file names and environment presence. We have built substantial automation around these features, which also helps us track case metrics, investigation time, and threat mitigation duration.
Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"Rsam puts the workflow first, and lets the record follow it, literally putting a task on rails so the person needing to do the work only needs to respond to the prompts accordingly and let Rsam automate the rest."
"The customization and the transparency of data while still maintaining a mostly user-friendly UI, are key features. It allows for me, as an engineer, to evolve the individual components and modules, and to create a much more meaningful picture than the individual pieces in isolation ever could."
"The automation is excellent."
"The most valuable features of Palo Alto Networks Cortex XSOAR are its overall track record and features that fit our use case."
"The most valuable features are the orchestration because of the way in which it coordinates the logs from all the devices and it provides us with a high-level overview of the critical log information."
"Palo Alto Networks Cortex XSOAR has had a huge impact on our organization's mean time to resolution for incidents, improving the security SOC operations efficiency tremendously, by more than 80% to 90%."
"It’s easy to install."
"The solution provides threat intelligence with EDR."
"Palo Alto has gotten the investigators more presence to actually go in the report because being that the platform will email the investigator that it's been assigned to, now the investigators will jump in there and start going through the review process a lot quicker."
"Palo Alto Networks Cortex XSOAR is a good product with enhanced and efficient playbooks, as demonstrated during our use case simulations."
More Palo Alto Networks Cortex XSOAR pros
 

Cons

"Stable – Release – Experimental" system with their releases, and all the proper checks and balances, I’d be an incredibly happy individual. I can appreciate the cause and affect, wherein the customization of the tool drives rapid release schedules, and the paradox that creates with the idea of stable releases. I’d also like more transparency about known bugs and issues."
"Hands down, if Rsam adopted a more industry proper "End of life – Deprecated – Stable – Release – Experimental" system with their releases, and all the proper checks and balances, I’d be an incredibly happy individual."
"The product can be tailored for each deployment to respond to specific customer needs, and this complexity may be seen as a downside."
"The platform’s setup procedures could be streamlined compared to one of its competitors."
"I think they should increase their collaboration base."
"The integration could be better. Cortex, for example, does not work with iPhone."
"It's only one cloud right now. It might be helpful for some companies to have an on-premies option."
"Previously, when Demisto was, there was a community edition; we could use it, reinstall it, and customize it. Since Palo Alto took over, it has become more financially oriented. It's business, but they could offer a pro model and a lighter model for different needs."
"The solution’s price and technical support could be improved."
"In terms of improvement, it needs to be more modular. It's not. When you're working in layouts and you create specific apps within layouts, there's no portability right now in order to reuse that code across multiple layouts. I can't take a tab and say I want to use this tab on these other layouts. I have to physically go in there and recreate it from scratch, which is maddening."
More Palo Alto Networks Cortex XSOAR cons
 

Pricing and Cost Advice

Information not available
"My company did not make any payments towards the licensing costs attached to the product since we were only using its pilot version."
"The price of Palo Alto Networks Cortex XSOAR is expensive."
"On a scale of one to ten, where one is a low price, and ten is a high price, I rate the pricing a nine."
"The solution's pricing needs improvement."
"There is a perception that it is priced very high compared to other solutions."
"The solution is based on an annual licensing model that is expensive."
"The solution is expensive."
"The pricing is fair. The pricing reflects the value and feature set it offers."
More Palo Alto Networks Cortex XSOAR pricing and cost advice
report
See which vendors are best for you
Use our free recommendation engine to learn which Security Incident Response solutions are best for your needs.
See recommendations
893,244 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
No data available
Financial Services Firm
13%
Computer Software Company
10%
Manufacturing Company
8%
Government
6%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
No data available
By reviewers
Company SizeCount
Small Business20
Midsize Enterprise9
Large Enterprise26
 

Questions from the Community

Ask a question
Earn 20 points
What is your experience regarding pricing and costs for Palo Alto Networks Cortex XSOAR?
Comparing pricing to Micro Focus, they were offering bundles, making it free with their SIEM. For customers, it is zero versus $20 million, which is why they have to make a decision.
See all answers
What needs improvement with Palo Alto Networks Cortex XSOAR?
Regarding areas for improvement in Palo Alto Networks Cortex XSOAR, I want to highlight one concern about playbook creation. While I personally appreciate this approach, I have observed that junior...
See all answers
What is your primary use case for Palo Alto Networks Cortex XSOAR?
My primary use cases for Palo Alto Networks Cortex XSOAR are malware incidents, specifically phishing-related incidents, Trojan horses, spyware, and similar threats.
See all answers
 

Comparisons

SECDO Platform vs Galvanize IncidentBond [EOL] Logo
SECDO Platform vs Galvanize IncidentBond [EOL]
Compared 58% of the time
More Galvanize IncidentBond [EOL] Competitors
Cortex XSIAM vs Palo Alto Networks Cortex XSOAR Logo
Cortex XSIAM vs Palo Alto Networks Cortex XSOAR
Compared 19% of the time
Splunk SOAR vs Palo Alto Networks Cortex XSOAR Logo
Splunk SOAR vs Palo Alto Networks Cortex XSOAR
Compared 8% of the time
Fortinet FortiSOAR vs Palo Alto Networks Cortex XSOAR Logo
Fortinet FortiSOAR vs Palo Alto Networks Cortex XSOAR
Compared 7% of the time
ServiceNow Security Operations vs Palo Alto Networks Cortex XSOAR Logo
ServiceNow Security Operations vs Palo Alto Networks Cortex XSOAR
Compared 4% of the time
Tines vs Palo Alto Networks Cortex XSOAR Logo
Tines vs Palo Alto Networks Cortex XSOAR
Compared 4% of the time
More Palo Alto Networks Cortex XSOAR Competitors
 

Product Reports

Buyer's Guide
Security Incident Response
April 2026
Galvanize IncidentBond [EOL] reportDownload Galvanize IncidentBond [EOL] product report
Buyer's Guide
Palo Alto Networks Cortex XSOAR
April 2026
Palo Alto Networks Cortex XSOAR reportDownload Palo Alto Networks Cortex XSOAR product report
 

Also Known As

IncidentBond, Rsam SIRP, Rsam Incident Management, Rsam Security Incident Response Platform
Demisto Enterprise, Cortex XSOAR, Demisto
 

Overview

Rsam’s Security Incident Response Platform (SIRP) simplifies and speeds monitoring and resolution. Our dynamic workflow can replicate any existing incident management process and allows you to make changes as your processes evolve - all from a single interface. Track the lifecycle of a security incident and coordinate actions quickly and with ease. 

Diligent

Palo Alto Networks Cortex XSOAR enhances security operations automation and integration. Users rely on its incident management capabilities and machine learning to improve response times and efficiency.

Cortex XSOAR stands out for its capability to automate and orchestrate security tasks through customizable playbooks and robust third-party integrations. Its analytics offer insights into incidents, while machine learning prioritizes alerts and reduces false positives. Despite its powerful features, users note room for improvement in documentation, interface design, and integration capabilities. Cost and complexity in setup and deployment are also concerns. Users in security operations centers benefit significantly from automated data enrichment, streamlined incident response, and efficient handling of threats like phishing and endpoint management.

What are the key features of Cortex XSOAR?
  • Automation & Integration: Automates security tasks and integrates with many third-party tools.
  • Customizable Playbooks: Flexible playbook creation tailored to specific security needs.
  • User-Friendly Interface: Simplifies incident management, improving workflow efficiency.
  • Machine Learning: Prioritizes alerts and reduces false positives for better decision-making.
  • Analytics & Dashboards: Provides insights through customizable analytics and dashboards.
Why should users consider Cortex XSOAR's benefits?
  • Reduced Response Times: Accelerates incident response through automation and orchestration.
  • Improved Workflows: Streamlines security operations for greater efficiency.
  • Insightful Analytics: Offers valuable insights into security incidents and operations.
  • Scalability: Supports growing security needs with straightforward scalability.
  • Enhanced Threat Management: Increases capabilities in handling phishing and endpoint threats.

Cortex XSOAR is implemented across industries for automating and streamlining security operations. Organizations use it to create playbooks, integrate with security tools, and automate repetitive tasks, thereby improving the efficiency of their security operations centers and incident management processes.

Palo Alto Networks
 

Sample Customers

Information Not Available
Cellcom Israel, Blue Cross and Blue Shield of Kansas City, esri, Cylance, Flatiron Health, Veeva, ADT Cybersecurity
Buyer's Guide
Security Incident Response
April 2026
Download Free Report
Find out what your peers are saying about ServiceNow, Trellix, Proofpoint and others in Security Incident Response. Updated: April 2026.
DOWNLOAD NOW
893,244 professionals have used our research since 2012.

We monitor all Security Incident Response reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.