No more typing reviews! Try our Samantha, our new voice AI agent.

Secureworks Taegis XDR vs Trellix XDR comparison

Sponsored
 

Comparison Buyer's Guide

Executive Summary

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Categories and Ranking

Cortex XDR by Palo Alto Net...
Sponsored
Ranking in Extended Detection and Response (XDR)
4th
Average Rating
8.4
Reviews Sentiment
6.8
Number of Reviews
113
Ranking in other categories
Endpoint Protection Platform (EPP) (4th), Endpoint Detection and Response (EDR) (6th), Ransomware Protection (2nd), AI-Powered Cybersecurity Platforms (1st)
Secureworks Taegis XDR
Ranking in Extended Detection and Response (XDR)
18th
Average Rating
8.2
Reviews Sentiment
6.4
Number of Reviews
6
Ranking in other categories
Network Detection and Response (NDR) (14th)
Trellix XDR
Ranking in Extended Detection and Response (XDR)
17th
Average Rating
7.6
Reviews Sentiment
6.8
Number of Reviews
10
Ranking in other categories
No ranking in other categories
 

Mindshare comparison

As of July 2026, in the Extended Detection and Response (XDR) category, the mindshare of Cortex XDR by Palo Alto Networks is 4.6%, down from 5.1% compared to the previous year. The mindshare of Secureworks Taegis XDR is 1.3%, up from 1.2% compared to the previous year. The mindshare of Trellix XDR is 0.8%, up from 0.2% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Extended Detection and Response (XDR) Mindshare Distribution
ProductMindshare (%)
Cortex XDR by Palo Alto Networks4.6%
Trellix XDR0.8%
Secureworks Taegis XDR1.3%
Other93.3%
Extended Detection and Response (XDR)
 

Featured Reviews

ABHISHEK_SINGH - PeerSpot reviewer
Senior Process Expert at A.P. Moller - Maersk
Gained full visibility and streamlined threat detection through behavior-based insights and AI integration
Initially, we got to have a lot of false positives when we onboarded, but nowadays it's quite smooth. We have fine-tuned our security policies and allowed different levels of policies to get rid of those false positives. Currently, we are getting a fairly good amount of incidents that are not false positives or benign, but actionable items. The process is streamlined. In the initial days, the operations used to get involved in a lot of benign and other activities, but now the process is streamlined. We are leveraging the auto-detection and remediation plans. The operations teams are now more involved in other business roles as well, not just looking into the logs and fetching out what's happening there. They have fixed a lot of things. Initially, they didn't have IAC code drift detection, cloud posture management, or security posture management, but they have those now. They purchased different vendors and did a merger with that. They have now Prisma Cloud that gets integrated and now they are working with Cortex Cloud. Everything that was negative has now been addressed, and the product altogether looks to be in a very better and mature shape now. Currently, it's more or less detecting the workloads with AI-based best practices. Since most organizations are consuming AI agents and other things, we are looking forward to seeing what other feature enhancements Palo Alto can support in that.
Mohammad Talha Talkin Alam - PeerSpot reviewer
Assistant Manager IT at PDS Multinational
Improved network protection has secured our servers and monitors web and application traffic
Till now, I have not seen any weak point that needs to be improved in Secureworks Taegis XDR. I think that since the technology is becoming upgraded, it will be good for Sophos to include more features in future updates of this solution. Secureworks Taegis XDR is a good product, but it should include AI technology.
Twinkle Solanki - PeerSpot reviewer
Business development executive at Digitaltrack solution Pvt Ltd
Unified threat detection has improved investigations and now speeds up incident response
While Trellix XDR is a strong platform overall, there are a few areas where it could be improved. The initial setup and configuration can be complex, especially for organizations with diverse environments. Some additional advanced features also have a learning curve and may require extra training for security teams to fully utilize them. Moreover, reporting and dashboard customization could be more flexible, allowing users to create highly customized views and reports more easily. There are also areas that could optimize detection surveys. Addressing these areas would further enhance the overall experience and operational effectiveness. One additional improvement would be deeper integration with a wider range of third-party security tools and cloud platforms. While Trellix XDR integrates with many solutions, simplifying the integration management would help organizations with complex security ecosystems. I would like to see more out-of-the-box reports and executive-level dashboards that make it easier to communicate security metrics to leadership. Finally, continuous enhancement to automation and AI-driven threat prioritization would further reduce analysts' workflow and improve response effectiveness. Overall, these are areas that need refinement rather than being major concerns, as the platform still delivers strong security and operational value.

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"The one feature of Palo Alto Networks Traps that our organization finds most valuable is the App ID service."
"We switched because there were a lot of added features with Palo Alto that Check Point didn't have, and it was an upgrade for us."
"Cortex XDR by Palo Alto Networks has helped lighten the load of our security analysts because it was the major tool that we were using and the one we utilized most."
"Has great threat detection capabilities."
"Palo Alto is the core of the security infrastructure in the environment."
"The solution is a new generation XDR that has a lot of artificial intelligence modules."
"I like the centralized console and the predictive analysis it does of malware. It is very stable and also scalable."
"Based on my experience, I would recommend Cortex XDR by Palo Alto Networks to other people."
"Definitely, Secureworks Taegis XDR is cost effective for the long run since the product is at a lower cost rather than other brands."
"The auto-triage feature of Secureworks Taegis XDR makes my workflow easier and efficient, helping me shorten the time of responding to every alert, make my activities productive, and manage everything that I need to check every alert and detection."
"The initial setup was straightforward."
"It's a complete solution package."
"Secureworks Taegis XDR has positively impacted our organization by improving detection rates and reducing our time; as I mentioned, it saves us from manually going through all the logs, which is not practical."
"The features I find most valuable are the fact that Secureworks Taegis XDR runs itself without any form of intervention."
"Since implementing Trellix XDR, I have noticed positive impacts on my organization."
"Trellix XDR is an excellent solution that is continually improving."
"Trellix XDR has positively impacted my organization in a couple of major ways: The efficiency of the SOC team has increased, and incident investigation speed has improved significantly."
"Because Trellix gives us multiple types of modules, we are using a single ePO console for multiple solutions including application control, DLP, and XDR."
"It contributes to our system's robust event detection and analysis, enabling us to respond effectively to incidents."
"Trellix XDR has impacted my organization positively because time was definitely saved because of the automated response, and the positive impact was definitely there in terms of both time saved and people being cut down from the team to have a more efficient and cost-saving team."
"The best features of Trellix XDR are the in-depth analysis it provides."
"Trellix XDR has impacted my organization positively as it's a security solution that protects us from threats."
 

Cons

"Traps doesn't work with McAfee. You need to remove McAfee to install Traps. This is very common, and its nothing that should be an issue. Some antivirus engines recognize Traps as an threat component, so maybe they need to shake hands somewhere."
"Cortex does not offer an on-premises solution. However, some customers would prefer not to be on the cloud. It would be ideal if it could offer something on-prem as well."
"One thing that was missing was the integration part. Currently, they don't have out-of-box integration with IBM QRadar, or if they have the integration, the integration doesn't work well."
"I recommend adding a data loss prevention (DLP) solution to Cortex XDR by Palo Alto Networks. The inclusion of this feature would allow the application of DLP policies alongside antivirus policies via a single agent and console, making it more competitive as other OEMs often offer DLP solutions as part of their antivirus products."
"It's not an ideal choice for smaller businesses, as you need a minimum of 200 endpoints to even use the solution at all."
"If Palo Alto reduces the pricing slightly for their products, it would make them more scalable in markets such as India and globally for cybersecurity."
"If they had pulse rate detection, it would be better."
"It's very time-consuming to log support issues and the people that answer the tickets aren't very knowledgeable."
"Secureworks Taegis XDR is a good product, but it should include AI technology."
"We found limitations in the XDR's detections, lacking the ability to create customized detection and log parsing rules."
"The pricing could be improved."
"The efficiency or the smooth navigation of the website or the application can be improved in Secureworks Taegis XDR."
"Customer support for Secureworks Taegis XDR is not that bad; they are reachable but not super efficient."
"The CPU utilization is very high with Trellix XDR; we are getting multiple types of CPU utilization from the EPP solution, with the EPP agent reaching as high as 80 percent CPU utilization, which creates big challenges for us."
"The initial setup and configuration can be complex, especially for organizations with diverse environments."
"Trellix XDR should get involved in AI security itself."
"I believe Trellix XDR could improve better visualization of attack paths and threat relationships."
"Customer support is average, depending on who the call gets to, escalation, and how quickly they respond."
"We have left Trellix XDR. The pricing was the main factor because the features were not there and they were charging more from us."
"Another reason is that their support sometimes is poor. For example, I had experience when my ticket was opened for a few months, and I pinged them every week, and they haven't responded to me."
"The EdgeGear solution is an area that requires attention, specifically regarding AI solutions and intelligence features."
 

Pricing and Cost Advice

"The solution is expensive. It's pricing is on a yearly-basis."
"Cortex XDR’s pricing is very reasonable."
"The cost depends on your chosen license type, like Pro or other licenses."
"Our license will require renewal in August, after which the maintenance will continue as usual."
"It's about $55 per license on a yearly basis."
"Traps pays for itself within the first 16 months of a three-year subscription. This is attributed to OPEX savings, as security teams spent less time trying to identify and isolate malware for analysis as a result of a reduction in malware incidents, false positives, and breach avoidance."
"The tool's price is moderate."
"The price of the solution could be reduced. I have customers that have voiced that the solution is good for the value but if I want to sell more of the solution the price reduction would help."
"The pricing is six out of ten."
Information not available
report
Use our free recommendation engine to learn which Extended Detection and Response (XDR) solutions are best for your needs.
902,988 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Construction Company
12%
Financial Services Firm
11%
Manufacturing Company
10%
Comms Service Provider
9%
Financial Services Firm
15%
Manufacturing Company
12%
Computer Software Company
9%
Educational Organization
6%
Computer Software Company
14%
Financial Services Firm
13%
Outsourcing Company
12%
Comms Service Provider
7%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
By reviewers
Company SizeCount
Small Business46
Midsize Enterprise21
Large Enterprise52
By reviewers
Company SizeCount
Small Business1
Midsize Enterprise1
Large Enterprise5
By reviewers
Company SizeCount
Small Business5
Midsize Enterprise3
Large Enterprise6
 

Questions from the Community

Cortex XDR by Palo Alto vs. Sentinel One
Cortex XDR by Palo Alto vs. SentinelOne SentinelOne offers very detailed specifics with regard to risks or attacks. ...
Comparing CrowdStrike Falcon to Cortex XDR (Palo Alto)
Cortex XDR by Palo Alto vs. CrowdStrike Falcon Both Cortex XDR and Crowd Strike Falcon offer cloud-based solutions th...
How is Cortex XDR compared with Microsoft Defender?
Microsoft Defender for Endpoint is a cloud-delivered endpoint security solution. The tool reduces the attack surface,...
What needs improvement with Secureworks Taegis XDR?
I suggest that we can check also the data sources of every data collector so that we can be informed of what data sou...
What is your primary use case for Secureworks Taegis XDR?
The main use for Secureworks Taegis XDR is to triage alerts from low to critical alerts and analyze and investigate d...
What advice do you have for others considering Secureworks Taegis XDR?
Secureworks Taegis XDR has been dependable for me regarding its AI capabilities in terms of accuracy and reliability ...
What is your experience regarding pricing and costs for Trellix XDR?
I don't have any experience with pricing, setup costs, or licensing because our customer purchased the tool.
What needs improvement with Trellix XDR?
While Trellix XDR is a strong platform overall, there are a few areas where it could be improved. The initial setup a...
What is your primary use case for Trellix XDR?
Trellix XDR serves as our main platform for threat detection, investigation, and incident response. On a daily basis,...
 

Also Known As

Cyvera, Cortex XDR, Palo Alto Networks Traps
Secureworks Taegis NDR
MVision XDR, MVision eXtended Detection and Response
 

Overview

 

Sample Customers

CBI Health Group, University Honda, VakifBank
Information Not Available
Information Not Available
Find out what your peers are saying about Secureworks Taegis XDR vs. Trellix XDR and other solutions. Updated: June 2026.
902,988 professionals have used our research since 2012.