Cortex XDR by Palo Alto Networks and Cisco Secure Endpoint are two leading solutions in the endpoint protection market. Cisco Secure Endpoint seems to have the upper hand due to its feature richness and ease of deployment.
Features: Cortex XDR offers advanced threat detection, powerful analytics, and integration with other Palo Alto Networks products. Cisco Secure Endpoint includes endpoint visibility, comprehensive threat intelligence, and a robust suite of security features.
Room for Improvement: Cortex XDR needs to enhance its reporting capabilities, ease the initial setup complexity, and improve user interface design. Cisco Secure Endpoint requires performance optimization, reduction in false positives, and better offline protection.
Ease of Deployment and Customer Service: Cortex XDR is moderately challenging to deploy but benefits from strong customer service support. Cisco Secure Endpoint is recognized for its relatively straightforward deployment process and excellent customer service.
Pricing and ROI: Cortex XDR offers a reasonable return on investment despite higher upfront setup costs. Cisco Secure Endpoint users feel the pricing and ROI are well-aligned with the comprehensive services, providing better value for the investment in relation to its extensive features and ease of deployment.
They appreciate the rich telemetry data from the solution, as it provides in-depth threat identification.
Every vendor has similar support; it depends on how the case is handled and raised.
Cortex XDR is stable, offering high quality and reliable performance.
Cortex XDR could improve its sales support team, including better commission structures and referral programs.
Cortex XDR is perceived as expensive by some customers, yet offers dynamic pricing.
It incorporates AI for normal behavior detection, distinguishing unusual operations.
Cisco Secure Endpoint is a comprehensive endpoint security solution that natively includes open and extensible extended detection and response (XDR) and advanced endpoint detection and response (EDR) capabilities. Secure Endpoint offers relentless breach protection that enables you to be confident, be bold, and be fearless with one of the industry’s most trusted endpoint security solutions. It protects your hybrid workforce, helps you stay resilient, and secures what’s next with simple, comprehensive endpoint security powered by unique insights from 300,000 security customers and deep visibility from the networking leader.
Cisco Secure Endpoint was formerly known as Cisco AMP for Endpoints.
Reviews from Real Users
Cisco Secure Endpoint stands out among its competitors for a number of reasons. Two major ones are its ability to enable developers to easily secure their endpoints with one single operation using its management console and its advanced alerting techniques.
Tim C., an IT manager at Van Der Meer Consulting, writes, "The solution makes it possible to see a threat once and block it everywhere across all endpoints and the entire security platform. It has the ability to block right down to the file and application level across all devices based on policies, such as, blacklisting and whitelisting of software and applications. This is good. Its strength is the ability to identify threats very quickly, then lock them and the network down and block the threats across the organization and all devices, which is what you want. You don't want to be spending time working out how to block something. You want to block something very quickly, letting that flow through to all the devices and avoiding the same scenario on different operating systems."
Wouter H., a technical team lead network & security at Missing Piece BV, notes, "Any alert that we get is an actionable alert. Immediately, there is information that we can just click through, see the point in time, what happened, what caused it, and what automatic actions were taken. We can then choose to take any manual actions, if we want, or start our investigation. We're no longer looking at digging into information or wading through hundreds of incidents. There's a list which says where the status is assigned, e.g., under investigation or investigation finished. That is all in the console. It has taken away a lot of the administration, which we would normally be doing, and integrated it into the console for us."
Cortex XDR by Palo Alto Networks delivers comprehensive endpoint security, integrating well with other systems to offer robust threat detection and real-time protection through AI-driven analytics.
Cortex XDR by Palo Alto Networks offers advanced endpoint protection and threat detection through AI and behavior-based analytics. Its user-friendly design simplifies integration with firewalls, delivering multi-layered protection with low resource consumption. Valued for policy management, USB control, and incident correlation, Cortex XDR enhances threat management and real-time threat hunting capabilities. However, users note challenges with third-party integration, reporting, and dashboard automation. Agent performance across operating systems and memory consumption are areas for improvement, alongside reducing false positives and simplifying endpoint management and setup.
What features does Cortex XDR offer?Cortex XDR is crucial in industries requiring robust endpoint protection, such as finance, healthcare, and technology. It supports malware detection, behavioral analysis, and ransomware mitigation across endpoints, including remote work environments, providing comprehensive threat visibility and security policy management. The solution's integration with firewalls and specialized industry requirements enhances security posture in diverse operational settings.
We monitor all Endpoint Protection Platform (EPP) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.