We performed a comparison between IBM Resilient, Palo Alto Networks Cortex XSOAR, and VMware Carbon Black Endpoint based on real PeerSpot user reviews.
Find out what your peers are saying about VMware, ServiceNow, IBM and others in Security Incident Response."The product is very good at incident response."
"Stability-wise, I rate the solution a ten out of ten...Scalability-wise, I rate the solution a ten out of ten."
"The initial setup of IBM Resilient is not that complex since my company already has a support license that we use internally. In general, the product's deployment phase is not that complex."
"What I like most about IBM Resilient is that it has a complete stack, which means you don't need to use different OEM products because you have all you need under the IBM Resilient umbrella. You don't need to worry much about integrations and components because you're working with tested and proven architecture."
"This is a good solution that we recommend for customers."
"The solution is easy to use."
"Its flexibility is the most valuable."
"It is a stable solution...It is a scalable solution."
"It is a scalable solution."
"The solution provides threat intelligence with EDR."
"It was useful as a ticketing tool."
"Palo Alto is easy to use."
"It is a scalable solution. I would rate scalability a ten out of ten."
"The most valuable features are simplicity and ease of integration."
"The most valuable features of Palo Alto Networks Cortex XSOAR are the remote controller from the workstation that can execute commands and isolate the systems outside of the network. Only the system with an internet connection can execute the task because the main console is in the cloud."
"I have no complaints about Cortex's stability."
"The most valuable asset is the time-lining capability for any breach activity."
"Carbon Black Defense has a higher detection ratio because it's cloud-based and it also does a lookup to virus total."
"It is a scalable solution...The initial setup was straightforward."
"I like the historical features, interface, and integration."
"The offline networking is the most important feature. Some of our users are engineers that work offsite, and they can still be on the solution, which is also great."
"VMware Carbon Black Endpoint is a highly stable solution."
"The solution has a very nice API on the back end for remoting into a system and executing scripts or utilizing self automation."
"Once the solution is installed and configured correctly it does not require a lot of hands-on attention until you need upgrading."
"One thing to improve is how it handles data formats, which currently might require scripting for conversion to CSV before uploading."
"IBM Resilient is quite complex, including its configuration."
"The ability to analyze incidents needs to be improved in the solution."
"Its price needs improvement."
"The product must provide more integration with other tools."
"This product could be improved with better customization. This product isn't the best on the market like QRadar, but it's actually a good solution. However, some competitors' solutions contain more integration, support, automation, or flexibility."
"It is not very straightforward to set up custom integrations, especially with services like Azure. You need an additional server for integration."
"IBM Resilient could integrate better with my tools."
"The solution is very expensive."
"Corex XSOAR could be improved by reducing the time it takes to process large amounts of data and increasing the number of integrations."
"In terms of improvement, it needs to be more modular. It's not. When you're working in layouts and you create specific apps within layouts, there's no portability right now in order to reuse that code across multiple layouts. I can't take a tab and say I want to use this tab on these other layouts. I have to physically go in there and recreate it from scratch, which is maddening."
"It's only one cloud right now. It might be helpful for some companies to have an on-premies option."
"The dashboard could be better."
"The solution's correlation rules and playbooks should be improved."
"They should provide integration with machine learning platforms."
"When Palo Alto bought the solution, the pricing increased by 1.5 times. There's been a 50% increase, which is a lot."
"Its compatibility can be improved. It did crash a server during deployment, which is not something that I want to happen. Its deployment should also be easier. The whole deployment cycle needs to be simplified. It is an enterprise solution, and to set it up right now, you have to be an expert."
"Occasionally, we'll have issues with the latest version and they'll basically tell us that they will improve it in the next iteration. They need to work on their version release quality."
"There is room for improvement in the support and service team."
"This solution works well but needs lots of tuning and optimization."
"The initial setup is complex."
"The tech support communicates, but it's just not with movement."
"I would personally give the tech support a rating of seven out of ten."
"I am not sure whether Carbon Black CB Defense can be considered as a stable solution or not."
More Palo Alto Networks Cortex XSOAR Pricing and Cost Advice →
