

Palo Alto Networks Cortex XSOAR and Netsurion compete in the security orchestration and managed services space. Based on feature comparison, XSOAR seems to have an edge due to its robust automation capabilities and extensive playbook repository.
Features: Cortex XSOAR provides comprehensive automation, seamless orchestration with existing infrastructures, and a robust playbook repository suitable for automating SOC tasks. Netsurion excels in threat detection and response, backed by a 24/7 SOC, and integrates endpoint solutions and the MITRE ATT&CK Framework to enhance incident management.
Room for Improvement: Users of Cortex XSOAR suggest easier setup, more flexible licensing, and improved custom dashboard options. While its integration process is robust, it can be complex and costly. Netsurion could improve its UI intuitiveness and Linux integration, and many users prefer having a real-time event web portal for better reporting.
Ease of Deployment and Customer Service: Cortex XSOAR offers deployment across public and private clouds, with mixed reviews on support responsiveness. Netsurion, with its on-premise and hybrid cloud solution, is praised for proactive support but needs to improve communication with its SOC team for better user satisfaction.
Pricing and ROI: Cortex XSOAR is perceived as expensive relative to its competition, though its automation features offer significant ROI for mature SOCs by reducing manual labor. Netsurion's pricing is more attractive, especially for bundled managed services, providing cost savings similar to staffing increases and delivering good value for organizations focusing on threat management.
We are positioning Palo Alto Networks Cortex XSOAR, which can be used in the SOC and do a lot of automation for the customer.
Eight out of ten times, they provide valuable help.
The technical support provided by Palo Alto Networks Cortex XSOAR is good.
Their support has been better than Anomali's and they are more responsive.
The issues with scalability arise from the speed of some integrations, as not all are perfectly tuned by Palo.
Palo Alto Networks Cortex XSOAR has very good application capabilities and is highly scalable.
The scalability of Palo Alto Networks Cortex XSOAR supports our growth and security needs because we can integrate various tools and continuously add more capability.
The system works smoothly even when I navigate deep into the playbook section.
Generally, it is highly available nine out of ten times.
Thus, the UI/UX of the tool needs significant improvement.
If Palo Alto Networks could improve the ease of use, specifically for playbook creation, that would be beneficial.
To improve the solution, it needs to have complete features that are low-code, no-code, and should be plug-and-play.
For customers, it is zero versus $20 million, which is why they have to make a decision.
Execution of automatic tasks for collecting, enriching, and correlating security events from hundreds of different technologies.
If I already have an established process, I do not have to change my process to fit into the tool. I can modify the tool to fit into my process, which makes things considerably easier.
We have implemented automation features, such as automated responses to email threats and automatic configuration of target devices for blocking specific IPs.
| Product | Mindshare (%) |
|---|---|
| Palo Alto Networks Cortex XSOAR | 5.3% |
| Netsurion | 3.8% |
| Other | 90.9% |


| Company Size | Count |
|---|---|
| Small Business | 10 |
| Midsize Enterprise | 7 |
| Large Enterprise | 7 |
| Company Size | Count |
|---|---|
| Small Business | 21 |
| Midsize Enterprise | 9 |
| Large Enterprise | 26 |
Netsurion offers robust SIEM capabilities enhanced by managed services, facilitating efficient threat identification and response with real-time alerts and comprehensive reporting.
Netsurion stands out for its integration of SIEM, IDS, and vulnerability management. Its real-time threat alerts and dashboards enhance user response capabilities. With centralized logging from Windows, Linux, Cisco devices, firewalls, and Active Directory, Netsurion enables effective compliance support for HIPAA and PCI standards. Managed Threat Protection with the embedded MITRE ATT&CK Framework enhances threat intelligence, while its evolving interface aims to improve user interactions. However, some users find deployment and searching challenging, pointing to areas for improvement.
What are Netsurion's key features?Netsurion is frequently implemented in industries requiring comprehensive security monitoring and compliance, such as healthcare and finance. It aids businesses in consolidating security efforts, offering insights into user activities and system changes, an asset for companies lacking substantial internal resources.
Palo Alto Networks Cortex XSOAR enhances security operations automation and integration. Users rely on its incident management capabilities and machine learning to improve response times and efficiency.
Cortex XSOAR stands out for its capability to automate and orchestrate security tasks through customizable playbooks and robust third-party integrations. Its analytics offer insights into incidents, while machine learning prioritizes alerts and reduces false positives. Despite its powerful features, users note room for improvement in documentation, interface design, and integration capabilities. Cost and complexity in setup and deployment are also concerns. Users in security operations centers benefit significantly from automated data enrichment, streamlined incident response, and efficient handling of threats like phishing and endpoint management.
What are the key features of Cortex XSOAR?Cortex XSOAR is implemented across industries for automating and streamlining security operations. Organizations use it to create playbooks, integrate with security tools, and automate repetitive tasks, thereby improving the efficiency of their security operations centers and incident management processes.
We monitor all SOC as a Service reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.