Palo Alto Networks Cortex XSOAR Reviews

Our primary case issues are phishing, TI, and sensors.

The most valuable feature is automation. There is a huge variety of automation that can help any team and there is a threat model.

I think they should increase their collaboration base so that XSOAR can be utilized for any number of automation.

I have been using Palo Alto Networks Cortex XSOAR for the past two years.

Stability takes around three to six months to achieve complete stability in the environment.

The existing model is good, but if we go for big deployments, I think there are a few challenges in scalability. They use their internal BoltDB, which is good for a medium organization, but for large organizations, they support Elasticsearch, which is too costly. The DR capabilities are not good.

Technical support is professional, but they are not very friendly. The overall remote support is not where it should be.

Palo Alto Networks Cortex XSOAR has a straightforward setup. Stability takes three months to six months, and then further stability, performance, and then complete utilization. Usually, it takes around a year to deploy it fully.

Normally, we use a third-party team to help us with the deployment.

I would rate Palo Alto Networks Cortex XSOAR an eight out of ten.

I'm using Cortex XSOAR to manage our network security.

I've been using Cortex XSOAR for about one year.

I have no complaints about Cortex's stability.

As far as I know, Cortex XSOAR's scalability is okay. I'm just a user, so I don't know.

Setting up Cortex is straightforward. This use case is the easiest to implement. I had help from two or three technicians.

I rate Palo Alto Networks Cortex XSOAR eight out of 10. I would recommend it to others.

We primarily use the solution for automation and the orchestration of security.

We've only just installed the solution and need time to explore its functionality and capabilities. So far, we haven't experienced any issues.

The stability has been good overall.

The initial implementation wasn't overly complex. It was easy.

The pricing is very good.

Technical support is helpful and responsive.

Although we haven't used the solution for too long, we haven't come across any issues and haven't noticed any features that are lacking. We're largely satisfied with the offering. 

The user interface could be a bit better. It's the only aspect I've noticed that could possibly be improved. 

Other than that, we've been pretty happy with it.

We've just implemented the solution. We've only been using it for a few weeks. It hasn't been too long just yet.

So far, we have found the stability to be very reliable. There are no bugs or glitches. It doesn't crash or freeze. The performance, in the few weeks we've used it, has been good.

Technical support has been helpful so far. They are knowledgeable and responsive and we've been very satisfied with their level of support.

The installation was very straightforward. It only took about a day. Not even that long. The deployment was fast. A company shouldn't have run into any issues with the initial setup.

I was able to handle the implementation myself. I did not need the assistance of an integrator or consultant.

We've found the pricing to be very reasonable. It's not particularly expensive.

The customers do not have to pay for licensing; we deliver it for free.

We have the solution integrated into our QRadar.

In the time we've used it, from what I've experienced, I'd rate the product at an eight out of ten. We've had a very positive experience.

I would recommend the solution to other companies.

The use cases basically came from the customers. Most of the time, the major concern is from a security perspective because various kinds of attacks are happening. To restrict or stop those attacks, we are building playbooks. We are also automating repetitive tasks.

We are using on-premise as well as cloud deployments.

The automation part and the playbook creation part are awesome. The way it is responding to the customers and incidents is also very good. In the SOC environment, I guess it will carry out around 50% of the work.

For building automation, there is not a lot of good documentation. The documentation is there, but it is not very good from my perspective. There should be an improvement in this area. I don't see issues with anything else.

In terms of new features, I have heard that other products have EBA functionality. It would be good if this functionality could be added.

I have been working on this solution for the last four months.

Its stability is okay.

It is very scalable. It can be easily integrated with other third-party APIs.

Their technical support is awesome. It is far better than the technical support of any other company.

The setup is very easy. It is very straightforward. The deployment took around 15 minutes.

From the cost perspective, I have heard that its price is a bit high as compared to other similar products.

For each SOC and MSS environment, I would recommend using Cortex XSOAR for better productivity, scalability, performance, and efficiency. A lot of manual work is happening right now, and that could be avoided. People can be utilized for more productive work.

I would rate Palo Alto Network Cortex XSOAR an eight out of ten.

We are a solution provider and this is one of the products that we are selling to our clients.

The most valuable features are simplicity and ease of integration.

The documentation is fantastic.

Implementing this solution requires a lot of involvement from the vendor and it should be made easier for the partners.

It has to be richer with respect to IoT. I expect that in future versions, support for a variety of devices will be added.

We have about two months of experience with Demisto Enterprise.

This is a stable solution.

My impression is that Demisto is scalable and it is capable of working across wide geography at any given point in time. The traffic comes in from everywhere in the world and this solution is able to identify threats ahead of time.

Our clients for this solution are medium-sized and enterprise-level businesses.

The initial setup of this solution is complex. My understanding is that it can be deployed within a few days.

There is a perception that it is priced very high compared to other solutions.

Demisto is a product that I recommend.

I would rate this solution an eight out of ten.

I am satisfied with the product overall.

The solution’s price and technical support could be improved.

I would recommend Palo Alto Networks Cortex XSOAR for bigger businesses.

It is the kind of product I would recommend for clients who know what they want to achieve. They can put the potential tools to the test or POCs and verify the checkpoints of their needs before using the product. Palo Alto Networks Cortex XSOAR is not an out-of-the-box kind of product.

Overall, I rate the solution a seven out of ten.

The solution is user-friendly and provides integration with multiple products.

The solution's features for reporting and dashboards need improvement. They need more customization options.

We have been using the solution for two years.

The solution is stable. I rate its stability a nine out of ten.

It is a scalable solution. I rate its scalability an eight out of ten.

The solution's initial setup process with proxy environments is complicated. It takes an hour to two complete.

I rate the process a seven out of ten.

The solution's cost is high. I rate its pricing a nine out of ten.

I rate the solution a nine out of ten.

I work for a company, and we provide support and complete end-to-end management of the product for our customers who hold the product.

Over thirty users are currently using Palo Alto Networks Cortex XSOAR in your organization. The role is inclusive, like administrator and engineer.

According to Gartner, it's a leader in NID. Customers are investing more in it, and that's why we are using the product.

The dashboard performance could be improved.

Another area of improvement is a support team. Moreover, we need to pay for modifying anything with scripting in terms of customization. It can be a challenge if the person isn't 100% good with scripting.

I have been using this solution for around four years and currently use the latest version.

It is a stable solution. I would rate it a nine out of ten.

It is quite scalable. I would rate it a ten out of ten.

Customer support could be better.

Neutral

For maintenance, two or three engineers are involved.

We use the yearly subscription.

Overall, I rate the solution a nine out of ten.