No more typing reviews! Try our Samantha, our new voice AI agent.

N-able EDR vs WithSecure Elements Endpoint Detection and Response comparison

Sponsored
 

Comparison Buyer's Guide

Executive SummaryUpdated on Jun 3, 2026

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Categories and Ranking

Cortex XDR by Palo Alto Net...
Sponsored
Ranking in Endpoint Detection and Response (EDR)
6th
Average Rating
8.4
Reviews Sentiment
6.8
Number of Reviews
113
Ranking in other categories
Endpoint Protection Platform (EPP) (4th), Extended Detection and Response (XDR) (4th), Ransomware Protection (2nd), AI-Powered Cybersecurity Platforms (1st)
N-able EDR
Ranking in Endpoint Detection and Response (EDR)
50th
Average Rating
7.6
Reviews Sentiment
7.1
Number of Reviews
4
Ranking in other categories
No ranking in other categories
WithSecure Elements Endpoin...
Ranking in Endpoint Detection and Response (EDR)
43rd
Average Rating
8.0
Reviews Sentiment
5.6
Number of Reviews
7
Ranking in other categories
Extended Detection and Response (XDR) (36th)
 

Mindshare comparison

As of July 2026, in the Endpoint Detection and Response (EDR) category, the mindshare of Cortex XDR by Palo Alto Networks is 3.6%, down from 3.9% compared to the previous year. The mindshare of N-able EDR is 0.7%, up from 0.4% compared to the previous year. The mindshare of WithSecure Elements Endpoint Detection and Response is 0.9%, up from 0.4% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Endpoint Detection and Response (EDR) Mindshare Distribution
ProductMindshare (%)
Cortex XDR by Palo Alto Networks3.6%
WithSecure Elements Endpoint Detection and Response0.9%
N-able EDR0.7%
Other94.8%
Endpoint Detection and Response (EDR)
 

Featured Reviews

ABHISHEK_SINGH - PeerSpot reviewer
Senior Process Expert at A.P. Moller - Maersk
Gained full visibility and streamlined threat detection through behavior-based insights and AI integration
Initially, we got to have a lot of false positives when we onboarded, but nowadays it's quite smooth. We have fine-tuned our security policies and allowed different levels of policies to get rid of those false positives. Currently, we are getting a fairly good amount of incidents that are not false positives or benign, but actionable items. The process is streamlined. In the initial days, the operations used to get involved in a lot of benign and other activities, but now the process is streamlined. We are leveraging the auto-detection and remediation plans. The operations teams are now more involved in other business roles as well, not just looking into the logs and fetching out what's happening there. They have fixed a lot of things. Initially, they didn't have IAC code drift detection, cloud posture management, or security posture management, but they have those now. They purchased different vendors and did a merger with that. They have now Prisma Cloud that gets integrated and now they are working with Cortex Cloud. Everything that was negative has now been addressed, and the product altogether looks to be in a very better and mature shape now. Currently, it's more or less detecting the workloads with AI-based best practices. Since most organizations are consuming AI agents and other things, we are looking forward to seeing what other feature enhancements Palo Alto can support in that.
NM
Senior Operations Specialist at Tagit cc
Reporting effectiveness and advanced AI capabilities improve threat awareness while needing pricing simplification and licensing self-service
With pricing, they can improve by bundling their pricing because sometimes billing comes in a very long process. If they could bundle it as one solution and show the capabilities or features, they would be able to sell it more effectively, and as resellers, we could sell it to customers more easily. The technical support is responsive, but sometimes we experience limitations regarding the ability to add licensing. They could implement a self-service platform for assigning new licenses or ordering more. Currently, we depend on contacting someone who sends a new contract to sign through the process. They could change their licensing model, though I am not the right person to comment on functionality. On the reporting side, everything is covered.
Mark Feldman - PeerSpot reviewer
IT-Manager at MKF-Schimanski-ERGIS GmbH
Dashboard offers comprehensive views with efficient system updates and integration
There is one significant issue with WithSecure Elements Endpoint Detection and Response. For computers with limited RAM, such as 16 gigabytes, the software is not optimal as it requires between four to six gigabytes of RAM to run. I don't use the Threat Intelligence feature from WithSecure Elements Endpoint Detection and Response as it requires extra activation, which I have not implemented.

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"It has a higher cost than other solutions, like CrowdStrike or Microsoft’s EDR tools, but it reduces the cost of our operations because it’s a new generation antivirus tool."
"The initial setup is pretty easy."
"The user interface of the solution is sophisticated and straightforward."
"Since they've done their most recent update, the ease to isolate endpoints is valuable. If we find one where there is a virus on it, we can easily isolate it. We don't even have to contact the user. We don't have to manually take them off the network. We can easily isolate them."
"If you are looking for security, mainly for advanced threat prevention from ransomware and malware attacks, I would recommend Cortex."
"I've found the solution to be highly scalable for enterprises."
"The tool's use cases are relevant to security."
"It detected stuff that other things wouldn't detect."
"The most valuable features are the rollback feature, it's important for us. The AI models and are good."
"It provides visibility and a storyline to track the virus or malware's activities, showing infected processes and changes made."
"The most valuable feature, which I can describe as the '360 vision' of the inventory device, provides a complete view of all the devices."
"We have been using this solution for quite some time, and the AI functionality is quite advanced; we are able to provide insights on different aspects and read the reports easily."
"The integration and user interface of WithSecure Elements Endpoint Detection and Response are effective, with a comprehensive dashboard that allows users to quickly identify and address problems, add computers, and send system updates."
"It offers good scalability."
"I use the solution to protect our infrastructure. The tool has special frames for banking. There is an additional secure filter for banking-related pages. It protects me from viruses, malware, and attacks."
"The product is stable."
"WithSecure includes an encrypted drive that stores a key for accessing the encrypted data."
"The only issue that we have today is with false positives. We have too many false positives with the solution."
"It is a scalable solution."
"We've been very pleased with its capabilities."
 

Cons

"Basically, they don't provide customer support tools just to investigate the logs."
"The downsides of Cortex XDR by Palo Alto Networks are that in many incidents, when I enter the causality chain, there are numerous logs."
"Previously, the endpoint would leave the environment, not being on our VPN, essentially unable to interact with the server to upload files. It was unable to retrieve new file verdicts. It was using a thing called "local analysis" to determine if something was a malicious file or not. There was no dynamic analysis."
"When it comes to malware files, it should be a little quick because, at times, it would give a wrong result in the sense of what it might be on malware, even if it still might be a normal one."
"It is not very strong in terms of endpoint management. It should have additional features like DLP, encryption, or advanced device control. Currently, Cortex is good in terms of the security of the endpoints, but it is not as good as other vendors in terms of the management of the endpoint."
"To jump from the partner to Palo Alto directly was challenging."
"The solution should add unwanted malicious hash values to a block list so that whenever the action is triggered, it will automatically prevent the malicious content."
"It is not a suitable solution if you are looking for a single product with multiple features such as DLP, encryption, rollback, etc."
"I would rate the scalability as seven out of ten. The capability is useful. Concerning the license, if I add one more device without a license, it will automatically subscribe to a license. I do not appreciate that."
"With pricing, they can improve by bundling their pricing because sometimes billing comes in a very long process."
"I would like to see them add support for both Android and iOS smartphones."
"We have a lot of false positives we see in the dashboard. I think this is the only problem we are facing."
"The initial setup is very straightforward."
"Its automated functionality could be better."
"There is one significant issue with WithSecure Elements Endpoint Detection and Response: for computers with limited RAM, such as 16 gigabytes, the software is not optimal as it requires between four to six gigabytes of RAM to run."
"WithSecure Elements Endpoint Detection and Response is scalable. My company has 800-1000 customers."
"The tool’s mobile version needs to be improved."
"The monthly reporting feature of WithSecure can be improved."
"The website rules are too complicated."
 

Pricing and Cost Advice

"The price was fine."
"Our license will require renewal in August, after which the maintenance will continue as usual."
"The solution has one subscription for endpoint protection and one subscription for detection and response. The two licenses combined give you the BRO version."
"The pricing seems fair, and I do like the licensing model. You use wherever they are, and it is elastic."
"Cortex XDR by Palo Alto Networks is an expensive solution."
"We pay about $50,000 USD per year for a bundle that includes Cortex XDR."
"The pricing is a little high. It is per user per year."
"I don't recall what the cost was, but it wasn't really that expensive."
"The pricing is average."
"I would rate the tool’s pricing a three out of ten. Its pricing is competitive."
"I rate WithSecure a four out of ten because it's quite economical."
"WithSecure Elements Endpoint Detection and Response's licensing costs are yearly."
"The solution's price is moderate."
report
Use our free recommendation engine to learn which Endpoint Detection and Response (EDR) solutions are best for your needs.
902,988 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Construction Company
12%
Financial Services Firm
11%
Manufacturing Company
10%
Comms Service Provider
9%
Manufacturing Company
19%
Comms Service Provider
14%
Transportation Company
11%
Healthcare Company
8%
Comms Service Provider
10%
Construction Company
10%
Computer Software Company
9%
Financial Services Firm
9%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
By reviewers
Company SizeCount
Small Business46
Midsize Enterprise21
Large Enterprise52
No data available
By reviewers
Company SizeCount
Small Business6
Large Enterprise1
 

Questions from the Community

Cortex XDR by Palo Alto vs. Sentinel One
Cortex XDR by Palo Alto vs. SentinelOne SentinelOne offers very detailed specifics with regard to risks or attacks. ...
Comparing CrowdStrike Falcon to Cortex XDR (Palo Alto)
Cortex XDR by Palo Alto vs. CrowdStrike Falcon Both Cortex XDR and Crowd Strike Falcon offer cloud-based solutions th...
How is Cortex XDR compared with Microsoft Defender?
Microsoft Defender for Endpoint is a cloud-delivered endpoint security solution. The tool reduces the attack surface,...
What needs improvement with N-able EDR?
With pricing, they can improve by bundling their pricing because sometimes billing comes in a very long process. If t...
What is your primary use case for N-able EDR?
We are using N-able EDR, but I think Sophos makes sense because of the environment we operate in. The localization an...
What advice do you have for others considering N-able EDR?
I am more focused on operations and procurement. The decision to use this solution was made before I joined the compa...
What needs improvement with F-Secure Elements Endpoint Detection and Response?
There is one significant issue with WithSecure Elements Endpoint Detection and Response. For computers with limited R...
What is your primary use case for F-Secure Elements Endpoint Detection and Response?
We work with WithSecure Elements Endpoint Detection and Response EDR products. We use the EDR products from WithSecur...
What advice do you have for others considering F-Secure Elements Endpoint Detection and Response?
The system is simple to use with WithSecure Elements Endpoint Detection and Response. The automated reporting feature...
 

Also Known As

Cyvera, Cortex XDR, Palo Alto Networks Traps
No data available
F-Secure Elements Endpoint Detection and Response, F-Secure Rapid Detection and Response, F-Secure RDR
 

Interactive Demo

Demo not available
Demo not available
 

Overview

 

Sample Customers

CBI Health Group, University Honda, VakifBank
Information Not Available
Information Not Available
Find out what your peers are saying about N-able EDR vs. WithSecure Elements Endpoint Detection and Response and other solutions. Updated: June 2026.
902,988 professionals have used our research since 2012.