Try our new research platform with insights from 80,000+ expert users

Google Security Operations vs Palo Alto Networks Cortex XSOAR comparison

 

Comparison Buyer's Guide

Executive SummaryUpdated on Oct 29, 2024
 

Categories and Ranking

Google Security Operations
Ranking in Security Orchestration Automation and Response (SOAR)
16th
Average Rating
8.6
Number of Reviews
3
Ranking in other categories
No ranking in other categories
Palo Alto Networks Cortex X...
Ranking in Security Orchestration Automation and Response (SOAR)
2nd
Average Rating
8.4
Number of Reviews
44
Ranking in other categories
SOC as a Service (2nd)
 

Mindshare comparison

As of October 2024, in the Security Orchestration Automation and Response (SOAR) category, the mindshare of Google Security Operations is 1.1%, down from 2.1% compared to the previous year. The mindshare of Palo Alto Networks Cortex XSOAR is 13.3%, down from 15.1% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Security Orchestration Automation and Response (SOAR)
 

Featured Reviews

CR
Apr 26, 2023
Great for reporting and ticketing for SOC MxDR client environments and has a great, supportive community
There are so many incredible features in the Chronicle SOAR platform that it's difficult to narrow down the list, however, if I had to choose, I would say that the most valuable features are the playbook builder and the integrations. The playbook builder allows us to establish workflows for the various case types that our analysts encounter within the SOC. These can be as granular or as high level as they need to be depending upon our business objectives and alert priorities. In turn, the tremendous number of integrations in the marketplace and the IDE (to custom-develop new integrations) are what make the playbooks as powerful as they are. Together, the integrations and playbooks make it simple to integrate powerful new capabilities and workflows.
NikhilSharma2 - PeerSpot reviewer
Aug 23, 2024
Ability to multiple playbooks to fetch data from multiple firewalls and utomated several tasks, including vulnerability scans and SOCL (Security Orchestration, Automation
Recently, they started implementing microservices in XSOAR, which has improved quality and addressed previous issues. However, they should focus more on licensing costs. The user licensing fees are quite high. For example, I received a quote for XSOAR, and it was $12,000 per user per year. If you have a SOC team of 30 members/analysts, you're looking at a substantial expense. They should consider reducing these costs since this high pricing seems to be more about profit. So, there is room for improvement in the pricing. Moreover, the reporting and dashboard features are decent but could be improved. The user interface (UI) is quite heavy and takes time to load, which is a major drawback.

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"Without hyperbole, I have never, in my entire career, encountered a vendor or a vendor community as awesome as Siemplify. Siemplify and the Siemplify Community quite literally made it possible for our SOC to increase almost five-fold in our number of clients and number of analysts and to go from a Monday to Friday 9-5 shop to a 24/7 shop all in the span of under a year and a half and all while continually adding capabilities and improving the services we offer to our clients."
"The playbooks feature in Siemplify is crucial for automation. We've utilized both standard and custom integrations with other security operation solutions, enhancing our flexibility. The user interface is generally straightforward, although recent changes may require some adjustment and Siemplify's integrations and capabilities offer potential support for various compliance requirements."
"The most valuable feature of Siemplify is the playbooks that can be created."
"They have a portal where you can find any kind of integration that you need."
"It has an extensive list of integrations that are available out of the box which makes it easy to start."
"Palo Alto is easy to use."
"Palo Alto has gotten the investigators more presence to actually go in the report because being that the platform will email the investigator that it's been assigned to, now the investigators will jump in there and start going through the review process a lot quicker."
"It is a scalable solution."
"The most valuable features are simplicity and ease of integration."
"The most valuable feature is its capability to automate responses and collect information for any security event before you even delve into the details. It's a vast product with an active roadmap, so I'm satisfied with it for now. It's very efficient at data collection and correlation."
"The orchestration in XSOAR is significantly easier compared to other SOAR tools I've used."
 

Cons

"I'm inclined to say that I'd love to see some Machine Learning capabilities integrated into the platform, however, I just attended a demo this morning where Siemplify gave a sneak peek into some Machine Learning capabilities that they are currently developing and have roadmapped for release soon."
"We often encounter minor issues that could be improved, but we maintain communication with the developers and submit feature requests. Recently, I requested enhancements such as improved search functionality within playbooks and expanded options for exporting case data."
"Building the playbooks could be easier and the integration could improve. It is a difficult process, such as what API connections need to be made."
"The dashboard performance could be improved."
"I would like to see Cortex become less dependent on Active Directory and group policies to manage the deployment. Maybe I need to update my understanding of how to deploy it, but that's the way I know how to use it."
"The tool’s multi-tenancy feature must be improved."
"Its dashboard features need improvement."
"The integration could be better. Cortex, for example, does not work with iPhone."
"The platform’s setup procedures could be streamlined compared to one of its competitors."
"The configuration of the solution could improve it is difficult."
"The user interface could be a bit better."
 

Pricing and Cost Advice

Information not available
"The solution's cost is reasonable."
"Cortex XSOAR's price could be lower."
"The solution's pricing needs improvement."
"There is a yearly license required for this solution and it is expensive."
"The solution's cost is high."
"The pricing is fair. The pricing reflects the value and feature set it offers."
"It is approx $10,000 or $20,000 per year for two user licenses."
"The solution is based on an annual licensing model that is expensive."
report
Use our free recommendation engine to learn which Security Orchestration Automation and Response (SOAR) solutions are best for your needs.
814,485 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Computer Software Company
19%
Financial Services Firm
11%
Educational Organization
7%
Retailer
7%
Financial Services Firm
13%
Computer Software Company
13%
Government
10%
Manufacturing Company
9%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
No data available
 

Questions from the Community

What do you like most about Siemplify?
The playbooks feature in Siemplify is crucial for automation. We've utilized both standard and custom integrations with other security operation solutions, enhancing our flexibility. The user inter...
What needs improvement with Siemplify?
We often encounter minor issues that could be improved, but we maintain communication with the developers and submit feature requests. Recently, I requested enhancements such as improved search fun...
What is your primary use case for Siemplify?
Siemplify has streamlined various tasks such as configuring playbooks, integrations, and running reports. It helps automate security incident response processes through configuration setup and prov...
What is your experience regarding pricing and costs for Palo Alto Networks Cortex XSOAR?
I do not know about the pricing as it was handled by the salespeople.
What needs improvement with Palo Alto Networks Cortex XSOAR?
Creating complex playbooks using coding languages, such as Python, could be easier. Sometimes the process becomes tedious and requires manual tasks.
 

Also Known As

Siemplify ThreatNexus
Demisto Enterprise, Cortex XSOAR, Demisto
 

Overview

 

Sample Customers

FedEx Mondelez Intenrational Check Point Trustwave Atos Cyberint Bae Systems Crowe Longwall Security Telefonica Nordea HCL
Cellcom Israel, Blue Cross and Blue Shield of Kansas City, esri, Cylance, Flatiron Health, Veeva, ADT Cybersecurity
Find out what your peers are saying about Google Security Operations vs. Palo Alto Networks Cortex XSOAR and other solutions. Updated: October 2024.
814,485 professionals have used our research since 2012.