Cisco XDR Reviews

Name: Cisco XDR
Brand: Cisco
Rating: 4.3 (3 reviews)

Vendor: Cisco

4.3 out of 5

3 reviews
100% willing to recommend

What is Cisco XDR?

Cisco XDR is primarily used for threat detection and response. It integrates with existing security infrastructure, offering real-time monitoring and quick incident response. This makes it valuable for organizations needing comprehensive security management.

Get the Extended Detection and Response (XDR) Buyer's Guide and find out what your peers are saying about Cisco XDR, CrowdStrike Falcon, Wazuh and more!

Cisco XDR is the #30 ranked solution in XDR Security products. PeerSpot users give Cisco XDR an average rating of 8.6 out of 10. Cisco XDR is most commonly compared to CrowdStrike Falcon: Cisco XDR vs CrowdStrike Falcon. Cisco XDR is popular among the large enterprise segment, accounting for 60% of users researching this solution on PeerSpot. The top industry researching this solution are professionals from a computer software company, accounting for 13% of all views.

Buyer's Guide

Extended Detection and Response (XDR)

March 2025

Get the category report

Helped 848,207 peers since 2012

Featured Cisco XDR reviews

Aruna Udawatte

Director -Digital Transformation at Convergence

The single point of maintenance and dashboards are the strong points of Cisco XDR ( /categories/extended-detection-and-response-xdr ). The visibility of the network is the main valuable feature. Customers frequently request features that offer better system visibility. The solution also offers automated response capability, which I would rate around eight out of ten.

Read full review

Umair Siddiqi

Network Security Specialist at a government with 1,001-5,000 employees

Cisco XDR offers threat intelligence and links with the Firewall. I can see the Cisco XDR feature in the Firewall with Threat Intelligence. The integration with XDR and Cisco Meraki solutions allows detection of zero-day attacks. XDR connects with Cisco's cloud for updates on zero-day attacks. There is good integration with Splunk, which Cisco acquired, providing comprehensive log management and analysis.

Read full review

Colin Oxendine

SOC Analyst at a educational organization with 501-1,000 employees

I use Cisco XDR as more of an integration tool for all of our Cisco tools. I work in a Cisco Suite. We have AMP, Umbrella, Firepower, and all these different tools connected to Cisco XDR, and I can get all my data in one place. It's easier to look at just one tool versus the eight to ten other tools that we have to get data. It saves time and puts us ahead of different threats since it's all in one spot. I saw the benefits of Cisco XDR immediately after the tool came out. We had meetings with Cisco where they were telling us about the tool. The higher-ups that I work for saw a need for it first, and then they came to the SOC group. When we sat in on the first meeting, we immediately knew that this was a tool we needed to help us save time and get ahead.

Read full review

Cisco XDR mindshare

As of April 2025, the mindshare of Cisco XDR in the Extended Detection and Response (XDR) category stands at 1.5%, up from 0.1% compared to the previous year, according to calculations based on PeerSpot user engagement data.

Extended Detection and Response (XDR)

Key learnings from peers

Last updated Apr 15, 2025

Valuable Features

"One of my favorite features of Cisco XDR is the automation tool, which saves a lot of time because we can craft these automations and workflows."
"One of my favorite features of Cisco XDR is the automation tool, which saves a lot of time because we can craft these automations and workflows."
"Technical support from Cisco is good and very helpful."

Room for Improvement

"When we first started with Cisco XDR in August, everybody was having issues. There were three people in our organization, including me, who couldn't even log in to Cisco XDR."
"If we have a list of domains we need to block, such as 4,000 domains, I can only block 100 domains at a time because if I put in more than 100 domains, I hit that 2,000 character max and can't continue with an investigation. Being able to put in all 4,000 domains, without a character limit or observable limit, would make doing those case books a whole lot easier and blocking those domains a whole lot easier too."
"One area that needs improvement is the limited visibility due to the licensing structure. For more visibility, customers need the advantage or premier licensing, which involves additional costs."

These insights are based on the in-depth reviews provided by peers to help you make a better buying decision.

Download our Extended Detection and Response (XDR) Buyer's Guide for additional reliable information.

Top industries

By visitors reading reviews

Computer Software Company

13%

Government

Energy/Utilities Company

Comms Service Provider

University

Financial Services Firm

Non Profit

Real Estate/Law Firm

Educational Organization

Healthcare Company

Manufacturing Company

Retailer

Media Company

Recreational Facilities/Services Company

Outsourcing Company

Aerospace/Defense Firm

Hospitality Company

Non Tech Company

Insurance Company

Legal Firm

Logistics Company

Performing Arts

Consumer Goods Company

International Affairs Institute

Security Firm

Construction Company

Transportation Company

Marketing Services Firm

Compare Cisco XDR with alternative products

Learn more about Cisco XDR

Cisco XDR provides robust threat detection, advanced analytics, and automated response capabilities. Users appreciate its integration with multiple security tools, offering comprehensive visibility across networks. The customizable dashboards help streamline incident management, and updated threat intelligence ensures effective protection against emerging threats. It assists in consolidating alerts from different sources, streamlining investigation efforts and minimizing time to remediate incidents. However, users have noted the need for better integration capabilities with third-party tools, improved performance speed, and enhanced reporting features. Some find it difficult to configure and believe its analytics could be more intuitive. There is also a desire for more detailed documentation and more responsive technical support.

What are the most important features of Cisco XDR?

Threat Detection: Identifies potential threats quickly and accurately.
Advanced Analytics: Provides detailed insights into security events.
Automated Response: Responds to incidents with minimal manual intervention.
Comprehensive Visibility: Integrates with various tools for a holistic view.
Customizable Dashboards: Allows for tailored incident management interfaces.
Updated Threat Intelligence: Keeps protection measures current against new threats.

What are the key benefits and ROI to look for in reviews?

Real-Time Monitoring: Enhances proactive threat management.
Quick Incident Response: Reduces downtime during security incidents.
Streamlined Investigations: Consolidates alerts for efficient analysis.
Improved Security Posture: Detects advanced persistent threats with precision.
Enhanced Efficiency: Minimizes time to remediate incidents.

In industries such as finance, healthcare, and government, Cisco XDR is implemented to enhance security measures and protect critical data. Its advanced threat detection and automated response mechanisms are crucial for organizations facing sophisticated cyber threats. Meanwhile, businesses in sectors like retail and manufacturing benefit from its ability to integrate with security infrastructure, ensuring continuous monitoring and protection of assets.