Try our new research platform with insights from 80,000+ expert users
SECDO Platform Logo

SECDO Platform Reviews

Vendor: Palo Alto Networks
4.5 out of 5
Leave a review

What is SECDO Platform?

SECDO enables security teams to identify and remediate incidents fast. Using thread-level endpoint monitoring and causality analytics, SECDO provides visibility into every endpoint along with the context necessary for understanding whether a suspicious activity is a genuine threat. Unique deception techniques force threats like ransomware out into the open early, and trigger automated containment and remediation.

Get the Security Incident Response Buyer's Guide and find out what your peers are saying about SECDO Platform, IBM Resilient and more!
SECDO Platform is the #11 ranked solution in top Security Incident Response solutions and #69 ranked solution in EDR tools. PeerSpot users give SECDO Platform an average rating of 9.0 out of 10. SECDO Platform is most commonly compared to IBM Resilient: SECDO Platform vs IBM Resilient. SECDO Platform is popular among the small business segment, accounting for 56% of users researching this solution on PeerSpot. The top industry researching this solution are professionals from a performing arts, accounting for 20% of all views.
Buyer's Guide
Security Incident Response
July 2025
Get the category report
Helped 863,679 peers since 2012

Featured SECDO Platform reviews

Read more reviews

SECDO Platform mindshare

Product category:
Security Incident Response
As of July 2025, the mindshare of SECDO Platform in the Security Incident Response category stands at 2.8%, up from 2.1% compared to the previous year, according to calculations based on PeerSpot user engagement data.
Security Incident Response
 
 
Key learnings from peers

Valuable Features

SECDO Platform offers intuitive incident response features, automated analysis, and comprehensive security event insights. Users appreciate its fast detection capabilities, efficient threat hunting tools, and robust integration with other security systems. Its ability to correlate data from various sources provides enhanced visibility and simplifies complex investigations. SECDO Platform's user-friendly design allows for seamless operation and quick mitigation of threats, making it an essential tool for advanced cybersecurity management.
  • "Technical support is great. Palo Alto is extremely helpful and responsive."
  • "The ease of deployment is a valuable feature."
  • "It basically automates the entire alert investigation process."

Room for Improvement

Some users feel SECDO Platform needs to enhance integration with other tools and reduce false positives. The platform's performance could be improved for larger environments. Certain aspects are not as intuitive and workflows could be streamlined. Communication features and reporting functionalities require significant upgrades.
  • "Many will try to use this as an out-of-the-box solution, however, it needs to be configured to fit what a company would like to do with it."
  • "The price should be reduced in order to be more competitive in the market."
  • "Maybe the notifications setting could use a simpler setting."

ROI

Users found SECDO Platform increased their efficiency in incident response and threat hunting, leading to reduced downtime and quicker resolution of security threats. They appreciated the platform's ability to integrate seamlessly with existing systems, providing better visibility and context for security events. These enhancements resulted in cost savings and improved operational effectiveness.

Pricing

SECDO Platform typically offers a transparent pricing structure with no setup costs, ensuring a seamless integration process for users. Pricing methods generally involve subscription-based models, accommodating per-user or per-endpoint licensing options. The pricing range varies based on the specific features and level of support required, catering to diverse organizational needs and budgets.

  • "The price of this solution is the highest in the market, although there are no costs in addition to the standard licensing fees."
  • "Be sure of the actual number of endpoints in your company."

Popular Use Cases

SECDO Platform is primarily used for advanced threat detection, incident response, and forensics. It enables swift identification and remediation of security incidents, offering in-depth root cause analysis and automated investigation capabilities. Users appreciate its streamlined workflow, efficiency in reducing response times, and comprehensive visibility into security events.

Service and Support

Customers find SECDO Platform’s customer service responsive and knowledgeable. Support efficiently addresses issues and assists users in resolving problems quickly. Users appreciate the helpful and professional attitude of the support team. They highlight prompt and effective communication. SECDO Platform’s support team provides proper guidance to optimize use. Clients specifically commend the team's ability to understand and cater to specific requirements. Assistance is often seen as reliable and consistent.

Deployment

Users describe SECDO Platform's initial setup as straightforward and user-friendly. They find the installation process quick and appreciate the clear instructions provided. They mention that the platform's intuitive design allows for easy integration into existing systems. Many find the onboarding tutorials helpful in understanding the platform's features. They also highlight the responsive support team that aids in troubleshooting during the setup phase, making the overall experience smooth and efficient.

Scalability

SECDO Platform's scalability is appreciated. Users noted it can handle expanding data volumes and increasing incident complexities effectively. They highlighted fast performance even with large datasets. Flexibility to integrate with various environments is praised. Some users mentioned it adapts well to growing security needs, making it suitable for enterprises. Easy deployment and minimal maintenance efforts are also positive aspects. Complex threat detection and fast response times are consistently commended.

Stability

Users find SECDO Platform stable for their cybersecurity operations. They appreciate its reliable incident response and threat-hunting capabilities. Many highlight its robust performance during high-demand situations and its dependability in critical environments. Positive feedback also mentions minimal downtime and consistent results. SECDO Platform’s stability under various workloads is frequently noted, with several users acknowledging its effective handling of large data volumes and integration with existing systems without issues.
These insights are based on the in-depth reviews provided by peers to help you make a better buying decision.
Download our Security Incident Response Buyer's Guide for additional reliable information.

Top industries

By visitors reading reviews
Performing Arts
20%
Comms Service Provider
8%
Manufacturing Company
8%
Media Company
7%
Insurance Company
7%
Computer Software Company
5%
Non Profit
5%
Retailer
5%
Wholesaler/Distributor
3%
Outsourcing Company
3%
Healthcare Company
3%
Construction Company
3%
University
3%
Financial Services Firm
3%
Legal Firm
3%
Government
3%
Consumer Goods Company
2%
Educational Organization
2%
Logistics Company
2%
Real Estate/Law Firm
2%
Transportation Company
2%
Energy/Utilities Company
2%

Compare SECDO Platform with alternative products

Go!

Learn more about SECDO Platform

SECDO provides the most intuitive investigation experience available so you can quickly unravel complex incidents across the organization.  You can investigate incidents detected by SECDO as well as alerts from the SIEM. SECDO visualizes the attack chain so you immediately understand the “who, what, where, when and how” behind the incident. Then, based on an analysis of exactly how endpoints were compromised, SECDO surgically remediates the incident with minimum user impact.

SECDO Platform customers

Valley National Bank, IDT Corporation

Related questions

  • 131
What are the pros and cons of internal SOC vs SOC-as-a-Service?
  • 85
What are the Top 5 cybersecurity trends in 2022?
  • 229
How do you decide about the alert severity in your Security Operations Center (SOC)?
  • 139
What is the difference between cyber resilience and business continuity?
  • 288
What is an incident response playbook and how is it used in SOAR?
  • 315
What is the difference between mitigation and remediation in incident response?
  • 38
What does the Log4j/Log4Shell vulnerability mean for your company?
  • 46
What tools and solutions do you use for automated incident response in an enterprise in 2022?
  • 74
What are the latest trends in Security Operations Center (SOC)?
  • 52
What are the best practices for Security Operations Center (SOC)?

Product Categories

Product Categories
Security Incident Response
Endpoint Detection and Response (EDR)

Popular Comparisons

Popular Comparisons
IBM Resilient vs SECDO Platform Logo
IBM Resilient vs SECDO Platform
See all alternatives
 

SECDO Platform reviews

Sort by:
PeerSpot user
Founder/ CEO
Verified user of SECDO Platform
Aug 5, 2021
Great documentation, good technical support, and very in-depth

Pros

"Technical support is great. Palo Alto is extremely helpful and responsive. "

Cons

"Many will try to use this as an out-of-the-box solution, however, it needs to be configured to fit what a company would like to do with it."

What is our primary use case?

A lot of people are using the solution to meet the compliance side of things, as opposed to using the genuine solution. A lot of people are saying, "Hey, this has a lot of brand behind it and has a lot of documentation." That, and you can hire someone out of the box to work with it, as opposed to say CrowdStrike which just purchased an XDR not long ago. In the case of that product, it's going to be a struggle for people to find someone who knows that XDR really well out of the box without training. I'd say a lot of clients are primarily looking for a product from the ease of use side.

What is most valuable?

The brand behind the product is quite useful. The solutions that are coming out, granted out of the box, typically work a lot better than SIEM tools.

The solution is pretty in-depth. There's a lot you can do with it.

Technical support is great. Palo Alto is extremely helpful and responsive. 

The product is a good solution for enterprise clients. 

There's a lot of training documentation provided by Palo Alto.

*Disclosure: My company has a business relationship with this vendor other than being a customer. Implementer
Read full review (790 words)
PeerSpot user
Technical Services Consultant at a tech vendor with 1,001-5,000 employees
Verified user of SECDO Platform
May 11, 2020
Mature threat detection, easy to manage with a good dashboard, and the educational portal is helpful

Pros

"The ease of deployment is a valuable feature. "

Cons

"The price should be reduced in order to be more competitive in the market."

What is our primary use case?

We are a solution provider and we have implemented the SECDO platform as a project for one of our customers.

What is most valuable?

This is a mature product in terms of threat detection.

The ease of deployment is a valuable feature.

The cloud-based management and the dashboard are really good. You can easily see the status in terms of malware detection and analysis.

Having access to the educational portal makes it easy to operate.

*Disclosure: My company has a business relationship with this vendor other than being a customer. partner
Read full review (326 words)
Buyer's Guide
Download free report
Find out what your peers are saying about Security Incident Response. Updated July 2025
863,679 professionals have used our research since 2012.
PeerSpot user
Co-Founder & CEO at a marketing services firm with 1-10 employees
Verified user of SECDO Platform
Nov 1, 2017
It automates the entire alert investigation process

Pros

"It basically automates the entire alert investigation process."

Cons

"Maybe the notifications setting could use a simpler setting."

What is most valuable?

  • Full endpoint visibility
  • Records everything! Every endpoint.
  • IOC/BIOC rules
  • It basically automates the entire alert investigation process.

How has it helped my organization?

We used to get hundreds of false positives a day. Now, we only deal with real alerts.

*Disclosure: My company does not have a business relationship with this vendor other than being a customer.
Read full review (259 words)