Securonix Next-Gen SIEM and Cortex XSIAM are competitors in the security information and event management sector. Cortex XSIAM appears to have an edge due to its unified platform approach and extensive coverage across network and endpoints.
Features: Securonix Next-Gen SIEM focuses on user behavior analytics, detecting cyber and insider threats with flexibility for cloud and on-premises operations. It offers cloud monitoring and integration with applications like Office365 and Salesforce. Cortex XSIAM highlights its unified platform using machine learning for threat detection with impressive third-party integration and a holistic approach for network and endpoint security.
Room for Improvement: Securonix needs to ease initial deployment and enhance third-party integrations, such as ServiceNow, while simplifying the user experience. Cortex XSIAM should work on advancing cybersecurity integrations and refining performance for handling multiple tasks. Pricing structure improvements could also benefit Cortex XSIAM users.
Ease of Deployment and Customer Service: Securonix offers versatile deployment options in on-premises, public, private, and hybrid cloud environments and provides strong technical support, although responsiveness varies. Cortex XSIAM, limited to public cloud deployments, ensures a streamlined process respected for its efficiency.
Pricing and ROI: Securonix has a pricing model based on the number of identities, seen as competitive against solutions like Splunk, with ROI benefits through operational efficiency. Cortex XSIAM, although considered expensive, provides value comparative to Microsoft Sentinel, evident in faster threat detection and improved response times.
The solution is time-saving, particularly in the long run after it is deployed, enabling us to get value promptly.
It is ineffective in terms of responding to basic queries and addressing future requirements.
The Palo Alto support team is fully responsive and helpful.
If I raise a ticket, it initially goes to the L1 team, but the next level of escalation is really effective.
There is no UK-based support, which leads to delays in waiting for US support.
Without proper integration, scaling up with more servers is meaningless.
Cortex XSIAM is highly scalable.
The solution is scalable as it is cloud-based and cloud-native.
The product was easy to install and set up and worked right.
Overall, Cortex XSIAM is stable.
In terms of incident response automation, it is quite poor due to the lack of integration with all security tools, making manual intervention necessary.
Cortex XSIAM needs improvements in terms of data onboarding, parsers, and third-party integration supports.
Cortex XSIAM is pretty expensive, and the licensing process is not very comfortable compared to CrowdStrike.
The passing and setup are quite complex at the beginning, making onboarding not smooth.
When dealing with a large amount of data, such as when firewall logs increase, queries sometimes crash or get stuck.
SIEM could have better integration with other technologies.
The product is very expensive.
The first impression is that XSIAM would be more expensive than others we tried.
The licensing cost of Cortex XSIAM is more or less the same as Splunk, making it quite expensive compared to other tools.
Licensing is based on events per second (EPS), costing between $50 to $60 per EPS.
The pricing has similar ingestion charges compared to other solutions, such as Splunk.
Its signature-less subscriptions and robust detection power stand out in improving threat detection.
Cortex XSIAM is able to detect abnormal behavior of malicious code and subsequently block it.
One of the valued aspects of the product is its use of artificial intelligence to detect security vulnerabilities.
The software includes user behavior interactions, dashboards, and training capabilities.
Now, the process is automatic, reducing our workload.
Cortex XSIAM acts as a critical element for SOC foundations, integrating SIEM and EDR capabilities, valued for threat detection and seamless security orchestration with Palo Alto Networks products.
Organizations find Cortex XSIAM beneficial for SOC foundations due to its capability to integrate SIEM and EDR tools, facilitating data collection, detection, and response. It connects with third-party data sources while reducing management effort and offering cost-effective alternatives to competitors like CrowdStrike and Trend Micro. Featuring automation and integration with Palo Alto Networks products, Cortex XSIAM enhances threat detection. Unified architecture allows a comprehensive view of attacks, further supported by machine learning and integration with existing vendor solutions, ensuring that users gain insights without significant manual log analysis.
What are Cortex XSIAM's key features?
What benefits are evident in Cortex XSIAM reviews?
Industries implement Cortex XSIAM mainly in technology-driven sectors where centralized endpoint protection and automation of forensic investigation are paramount. By integrating several third-party systems for incident response, companies in competitive markets leverage its attributes for heightened operational security efficiency. However, users note areas for improvement, such as Attack Surface Management and integration enhancements, to better suit tech-heavy industries needing extensive connectivity with cybersecurity solutions.
Securonix Next-Gen SIEM is a security information and event management solution designed to provide advanced threat detection, response, and compliance capabilities. It leverages machine learning and big data analytics to offer a comprehensive security platform for modern enterprises.
Securonix Next-Gen SIEM utilizes advanced analytics and machine learning to detect complex threats that traditional SIEM solutions might miss. Its architecture is built on Hadoop, enabling scalability and the processing of large volumes of data in real-time. This allows organizations to gain deep insights into security incidents, prioritize threats, and automate response actions. The solution also includes behavior analytics to detect insider threats and unknown attacks, integrating seamlessly with existing IT infrastructure.
What are the critical features of Securonix Next-Gen SIEM?
What is the ROI expectations?
Securonix Next-Gen SIEM is implemented across various industries, including finance, healthcare, and retail. Its flexibility and advanced analytics capabilities make it suitable for environments with complex security needs. In finance, it helps detect fraud, while in healthcare, it ensures patient data security. In retail, it protects against data breaches and payment fraud.
In summary, Securonix Next-Gen SIEM offers advanced threat detection, scalability, and integration capabilities, making it a robust solution for modern enterprises.
We monitor all Security Information and Event Management (SIEM) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.
