Try our new research platform with insights from 80,000+ expert users

IBM Resilient vs Palo Alto Networks Cortex XSOAR comparison

 

Comparison Buyer's Guide

Executive SummaryUpdated on Dec 5, 2024

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Categories and Ranking

IBM Resilient
Ranking in Security Orchestration Automation and Response (SOAR)
13th
Average Rating
7.4
Reviews Sentiment
6.6
Number of Reviews
18
Ranking in other categories
Security Incident Response (3rd)
Palo Alto Networks Cortex X...
Ranking in Security Orchestration Automation and Response (SOAR)
2nd
Average Rating
8.4
Reviews Sentiment
6.9
Number of Reviews
46
Ranking in other categories
SOC as a Service (2nd)
 

Mindshare comparison

As of April 2025, in the Security Orchestration Automation and Response (SOAR) category, the mindshare of IBM Resilient is 2.1%, down from 2.7% compared to the previous year. The mindshare of Palo Alto Networks Cortex XSOAR is 11.0%, down from 12.9% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Security Orchestration Automation and Response (SOAR)
 

Featured Reviews

Usman Bhatti - PeerSpot reviewer
Simple deployment, scalable, but lacking third-party solution compatibility
Integrating IBM Resilient with other applications can be very difficult and technically challenging. Often, they use the excuse that you are using the latest version of an application, such as an endpoint security system, and they don't have an API or support for it at the moment. There is no automation in the SOAR solution. It's worth noting that many third-party add-on applications needed to be purchased separately to integrate with IBM Resilient. While there were built-in applications available for incident remediation, the selection was limited. Additionally, integrating third-party applications was often a difficult and time-consuming process due to the technical complexity involved.
NikhilSharma2 - PeerSpot reviewer
Ability to multiple playbooks to fetch data from multiple firewalls and utomated several tasks, including vulnerability scans and SOCL (Security Orchestration, Automation
Recently, they started implementing microservices in XSOAR, which has improved quality and addressed previous issues. However, they should focus more on licensing costs. The user licensing fees are quite high. For example, I received a quote for XSOAR, and it was $12,000 per user per year. If you have a SOC team of 30 members/analysts, you're looking at a substantial expense. They should consider reducing these costs since this high pricing seems to be more about profit. So, there is room for improvement in the pricing. Moreover, the reporting and dashboard features are decent but could be improved. The user interface (UI) is quite heavy and takes time to load, which is a major drawback.

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"Stability-wise, I rate the solution a ten out of ten...Scalability-wise, I rate the solution a ten out of ten."
"The most valuable features of IBM Resilient are its flexibility and customization options for incident response."
"Its flexibility is the most valuable."
"The solution is reliable in our usage."
"It's really simple and has a flexible interface."
"What I like most about IBM Resilient is that it has a complete stack, which means you don't need to use different OEM products because you have all you need under the IBM Resilient umbrella. You don't need to worry much about integrations and components because you're working with tested and proven architecture."
"The UBA, User Behavior Analytics, is very good."
"The solution is very easy to use."
"The repository of playbooks and the integration between Palo Alto and IBM QRadar are some useful features"
"The automation part and the playbook creation part are awesome. The way it is responding to the customers and incidents is also very good. In the SOC environment, I guess it will carry out around 50% of the work."
"It is a scalable solution."
"From the security team's standpoint, the solution has improved our organization's overall cybersecurity."
"The most valuable feature is automation."
"The most valuable features of Palo Alto Networks Cortex XSOAR are the remote controller from the workstation that can execute commands and isolate the systems outside of the network. Only the system with an internet connection can execute the task because the main console is in the cloud."
"The pricing is very good."
"Many different playbooks are available and can be customized."
 

Cons

"The product needs a bit more development."
"Its price needs improvement."
"The integration could be improved so that it is easy to integrate with other solutions."
"The initial setup is complex."
"IBM Resilient is quite complex, including its configuration."
"The product must provide more integration with other tools."
"The tool needs to improve its documentation on license scripts."
"The implementation could be a bit simpler."
"Corex XSOAR could be improved by reducing the time it takes to process large amounts of data and increasing the number of integrations."
"There is room for improvement in terms of the pricing model."
"The tool’s multi-tenancy feature must be improved."
"The platform’s setup procedures could be streamlined compared to one of its competitors."
"There is room for improvement in support. The response time could be faster."
"It is not a very scalable solution."
"The product can be tailored for each deployment to respond to specific customer needs, and this complexity may be seen as a downside."
"The dashboard performance could be improved."
 

Pricing and Cost Advice

"The licensing cost for IBM Resilient is not too expensive, but it's not affordable, so it's moderately expensive. Regarding price, I'm rating the solution seven out of ten. The company pays for the license yearly, based on the number of users. Apart from the cost of the license you need to pay for each user, you also need to spend an initial investment for the base platform. You also have to pay for IBM Resilient support."
"There are no costs except for the support services that our company pays in addition to the licensing charges attached to the solution."
"The cost of the product is quite high."
"I feel it is an expensive product when my company pays annually for renewal, support, and follow-up."
"There is a license you need to pay for in order to use this product."
"We could create unlimited users using the license we had purchased."
"Pricing for the solution is good, in my opinion."
"I would rate the tool’s pricing a three out of ten. The tool’s pricing is on a yearly basis."
"The solution is a bit on the expensive side."
"My company did not make any payments towards the licensing costs attached to the product since we were only using its pilot version."
"The solution is based on an annual licensing model that is expensive."
"Cortex XSOAR's price could be lower."
"The solution is expensive."
"The price of Palo Alto Networks Cortex XSOAR is comparable to other solutions in the market."
"The pricing is fair. The pricing reflects the value and feature set it offers."
"The price of Palo Alto Networks Cortex XSOAR could be reduced. We are always looking for a discount. There is an annual license needed to use this solution."
report
Use our free recommendation engine to learn which Security Orchestration Automation and Response (SOAR) solutions are best for your needs.
848,716 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Financial Services Firm
33%
Computer Software Company
11%
Manufacturing Company
9%
Government
6%
Financial Services Firm
15%
Computer Software Company
13%
Manufacturing Company
9%
Government
9%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
 

Questions from the Community

What do you like most about IBM Resilient?
It is a stable solution...It is a scalable solution.
What is your experience regarding pricing and costs for IBM Resilient?
I am not the one in charge of pricing, so I am not sure about the costs.
What needs improvement with IBM Resilient?
Integration with some devices, including Cisco PowerPower and certain antivirus products, has limitations.
What is your experience regarding pricing and costs for Palo Alto Networks Cortex XSOAR?
Even though customers often comment on the price, the potential savings come from managing a large number of security events with a limited number of analysts. This leads to economic advantages des...
What needs improvement with Palo Alto Networks Cortex XSOAR?
The complexity of Cortex XSOAR has a trade-off with its versatility. The product can be tailored for each deployment to respond to specific customer needs, and this complexity may be seen as a down...
 

Also Known As

No data available
Demisto Enterprise, Cortex XSOAR, Demisto
 

Overview

 

Sample Customers

Golden Living, Health Equity, USA Funds
Cellcom Israel, Blue Cross and Blue Shield of Kansas City, esri, Cylance, Flatiron Health, Veeva, ADT Cybersecurity
Find out what your peers are saying about IBM Resilient vs. Palo Alto Networks Cortex XSOAR and other solutions. Updated: April 2025.
848,716 professionals have used our research since 2012.