No more typing reviews! Try our Samantha, our new voice AI agent.

Netsurion vs Palo Alto Networks Cortex XSOAR comparison

 

Comparison Buyer's Guide

Executive SummaryUpdated on Feb 2, 2025

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

ROI

Sentiment score
7.5
Netsurion boosts productivity and cost-efficiency, saving users over $200,000 yearly, with positive impacts in six months.
Sentiment score
4.4
Cortex XSOAR delivers high ROI by automating tasks and integrating seamlessly, ideal for mature SOCs despite initial costs.
We are positioning Palo Alto Networks Cortex XSOAR, which can be used in the SOC and do a lot of automation for the customer.
Vice President, Technology at Cache Digitech Pvt Ltd.
 

Customer Service

Sentiment score
7.5
Netsurion's customer service is responsive and efficient, with high satisfaction ratings despite some challenges in complex environments.
Sentiment score
6.6
Palo Alto Networks Cortex XSOAR support is responsive and knowledgeable but could improve friendliness and initial response times.
Eight out of ten times, they provide valuable help.
Lead Application Security Engineer Iv at a financial services firm with 5,001-10,000 employees
The technical support provided by Palo Alto Networks Cortex XSOAR is good.
Vice President, Technology at Cache Digitech Pvt Ltd.
Their support has been better than Anomali's and they are more responsive.
Enterprise Security Architect V at FirstEnergy
 

Scalability Issues

Sentiment score
7.2
Netsurion excels in scalability and integration, handling diverse environments efficiently, though on-prem server management could improve.
Sentiment score
7.1
Cortex XSOAR offers high scalability and flexibility, efficiently integrating third-party APIs despite potential complexities in large deployments.
The issues with scalability arise from the speed of some integrations, as not all are perfectly tuned by Palo.
Lead Application Security Engineer Iv at a financial services firm with 5,001-10,000 employees
Palo Alto Networks Cortex XSOAR has very good application capabilities and is highly scalable.
Assistant Security Architect at Cloudnomics
The scalability of Palo Alto Networks Cortex XSOAR supports our growth and security needs because we can integrate various tools and continuously add more capability.
Enterprise Security Architect V at FirstEnergy
 

Stability Issues

Sentiment score
7.3
Netsurion is stable and reliable, with minimal downtime and low maintenance, but may have minor logging issues and resource concerns.
Sentiment score
7.5
Cortex XSOAR is considered stable, reliable, and performs well, but requires careful sizing and regular updates for optimal use.
The system works smoothly even when I navigate deep into the playbook section.
Assistant Security Architect at Cloudnomics
Generally, it is highly available nine out of ten times.
Lead Application Security Engineer Iv at a financial services firm with 5,001-10,000 employees
 

Room For Improvement

Netsurion should streamline agent deployment, enhance dashboards, improve Linux integration, and optimize user interface and threat detection.
Cortex XSOAR requires improved documentation, intuitive UI, modularity, integration, costs, setup, licensing, performance, and usability for efficiency.
Thus, the UI/UX of the tool needs significant improvement.
Lead Application Security Engineer Iv at a financial services firm with 5,001-10,000 employees
If Palo Alto Networks could improve the ease of use, specifically for playbook creation, that would be beneficial.
Assistant Security Architect at Cloudnomics
To improve the solution, it needs to have complete features that are low-code, no-code, and should be plug-and-play.
Vice President, Technology at Cache Digitech Pvt Ltd.
 

Setup Cost

Netsurion's pricing is flexible, with varied opinions on cost and value, offering both device-based and subscription models.
Cortex XSOAR is costly but offers valuable features; small businesses may find discounts helpful in mitigating expenses.
For customers, it is zero versus $20 million, which is why they have to make a decision.
Vice President, Technology at Cache Digitech Pvt Ltd.
 

Valuable Features

Netsurion offers SIEM services with real-time alerts, integration capabilities, and 24/7 threat intelligence for enhanced security management.
Palo Alto Networks Cortex XSOAR excels in automation, integration, and ease-of-use, enhancing incident response and threat intelligence capabilities.
Execution of automatic tasks for collecting, enriching, and correlating security events from hundreds of different technologies.
Presale Engineer at Westcon-Comstor
If I already have an established process, I do not have to change my process to fit into the tool. I can modify the tool to fit into my process, which makes things considerably easier.
Enterprise Security Architect V at FirstEnergy
We have implemented automation features, such as automated responses to email threats and automatic configuration of target devices for blocking specific IPs.
Vice President, Technology at Cache Digitech Pvt Ltd.
 

Categories and Ranking

Netsurion
Ranking in SOC as a Service
11th
Average Rating
8.4
Reviews Sentiment
7.1
Number of Reviews
24
Ranking in other categories
Managed Security Services Providers (MSSP) (22nd), Security Information and Event Management (SIEM) (49th), Managed Detection and Response (MDR) (32nd), Extended Detection and Response (XDR) (44th)
Palo Alto Networks Cortex X...
Ranking in SOC as a Service
2nd
Average Rating
8.4
Reviews Sentiment
6.5
Number of Reviews
51
Ranking in other categories
Security Orchestration Automation and Response (SOAR) (3rd)
 

Mindshare comparison

As of July 2026, in the SOC as a Service category, the mindshare of Netsurion is 3.8%, up from 3.0% compared to the previous year. The mindshare of Palo Alto Networks Cortex XSOAR is 5.3%, down from 19.3% compared to the previous year. It is calculated based on PeerSpot user engagement data.
SOC as a Service Mindshare Distribution
ProductMindshare (%)
Palo Alto Networks Cortex XSOAR5.3%
Netsurion3.8%
Other90.9%
SOC as a Service
 

Featured Reviews

John-Berry - PeerSpot reviewer
Information Technology Manager at ProfitSolv
The SOC center monitors, hunts, and notifies us of threats around the clock
I know they are working to resolve this issue, but Netsurion is currently unable to retrieve logs from S3 buckets. We use WP Engine for a lot of web hosting as well as AWS, and both of these platforms use S3 buckets. I would like Netsurion to be able to pull logs from Linux devices. We have some of that capability, and I believe they can do it. However, the way it works with Amazon is strange and glitchy. Therefore, working something out with Amazon would be great. Netsurion's SOC can be a bit too aggressive at times. We have asked them to adjust their playbook because I am tired of being notified about the same issue multiple times a day. I am aware of the issue, and it is not a cause for concern. Let's only take action on this issue if we see an actual problem.
Sricharan R - PeerSpot reviewer
Lead Application Security Engineer Iv at a financial services firm with 5,001-10,000 employees
Security automation has transformed incident workflows and now reduces response time dramatically
I think the areas of Palo Alto Networks Cortex XSOAR that could be improved are mainly in UX. We have communicated with the vendor team about this, but they are prioritizing product functionality over usability because most target customers are technical and understand a primitive UI. They face difficulties in implementing UI changes as their team is stretched. Thus, the UI/UX of the tool needs significant improvement. There are plans on their roadmap, but a lot remains to be done. Parts of the tool run on an older framework, causing slowness. Usability is a broader issue than features alone. This usability problem is common in many cybersecurity tools, unlike customer-facing applications. Some integrations have speed issues and might not function seamlessly with different upstream configurations, requiring manual updates. These are the main pain points we encountered, particularly with UI/UX, integration speed, and the usability of certain inbuilt playbooks.
report
Use our free recommendation engine to learn which SOC as a Service solutions are best for your needs.
902,894 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Construction Company
11%
Outsourcing Company
10%
Performing Arts
10%
Manufacturing Company
9%
Financial Services Firm
13%
Computer Software Company
8%
Manufacturing Company
8%
Comms Service Provider
5%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
By reviewers
Company SizeCount
Small Business10
Midsize Enterprise7
Large Enterprise7
By reviewers
Company SizeCount
Small Business21
Midsize Enterprise9
Large Enterprise26
 

Questions from the Community

Ask a question
Earn 20 points
What is your experience regarding pricing and costs for Palo Alto Networks Cortex XSOAR?
Comparing pricing to Micro Focus, they were offering bundles, making it free with their SIEM. For customers, it is zero versus $20 million, which is why they have to make a decision.
What needs improvement with Palo Alto Networks Cortex XSOAR?
Regarding areas for improvement in Palo Alto Networks Cortex XSOAR, I want to highlight one concern about playbook creation. While I personally appreciate this approach, I have observed that junior...
What is your primary use case for Palo Alto Networks Cortex XSOAR?
My primary use cases for Palo Alto Networks Cortex XSOAR are malware incidents, specifically phishing-related incidents, Trojan horses, spyware, and similar threats.
 

Also Known As

Netsurion Managed Threat Protection, Netsurion EventTracker
Demisto Enterprise, Cortex XSOAR, Demisto
 

Overview

 

Sample Customers

The Salvation Army, The FRESH Market, Pacific Western Bank, NASA, American Academy of Orthopaedic Surgeons (AAOS), and Talbot’s Stores
Cellcom Israel, Blue Cross and Blue Shield of Kansas City, esri, Cylance, Flatiron Health, Veeva, ADT Cybersecurity
Find out what your peers are saying about Netsurion vs. Palo Alto Networks Cortex XSOAR and other solutions. Updated: June 2026.
902,894 professionals have used our research since 2012.