Palo Alto Networks Cortex XSOAR Reviews

We are using this solution to have a completely organized SOC from a list of devices in our environment. We are able to manage all of our devices, such as firewalls and endpoint protection solutions.

The most valuable features are the orchestration because of the way in which it coordinates the loss from all the devices and it provides us with a high-level overview of the critical log information. Additionally, this solution integrates very well, we have integrated a Palo Alto firewall and everything is working perfectly.

There should be an on-premise version available for customers to have different choices.

I have been using this solution for approximately one year.

The solution is very reliable because it is on the cloud.

The solution is scalable. We have already approximately 200 devices deployed into the cloud and we are planning to increase usage in the future. We have approximately 600 employees using this solution in my organization and the solution has been completely coordinating the logs of all these users well.

The technical support is satisfactory. If we need any clarification or faced any issues we have been in contact with the support. However, there is room for improvement.

The solution is easy to deploy and manage.

There is a yearly license required for this solution and it is expensive.

We have evaluated other solutions but they do not compare with the number of features this solution provides. There is a wide range of features in this solution.

I would recommend this solution to those that already have a SOC or a NOC. It will enhance their logs and XSOAR will handle their internet activities. 

If they are not involved with SOCs or NOCs then I do not think they require this solution.

I rate Palo Alto Networks Cortex XSOAR an eight out of ten.

The use cases basically came from the customers. Most of the time, the major concern is from a security perspective because various kinds of attacks are happening. To restrict or stop those attacks, we are building playbooks. We are also automating repetitive tasks.

We are using on-premise as well as cloud deployments.

The automation part and the playbook creation part are awesome. The way it is responding to the customers and incidents is also very good. In the SOC environment, I guess it will carry out around 50% of the work.

For building automation, there is not a lot of good documentation. The documentation is there, but it is not very good from my perspective. There should be an improvement in this area. I don't see issues with anything else.

In terms of new features, I have heard that other products have EBA functionality. It would be good if this functionality could be added.

I have been working on this solution for the last four months.

Its stability is okay.

It is very scalable. It can be easily integrated with other third-party APIs.

Their technical support is awesome. It is far better than the technical support of any other company.

The setup is very easy. It is very straightforward. The deployment took around 15 minutes.

From the cost perspective, I have heard that its price is a bit high as compared to other similar products.

For each SOC and MSS environment, I would recommend using Cortex XSOAR for better productivity, scalability, performance, and efficiency. A lot of manual work is happening right now, and that could be avoided. People can be utilized for more productive work.

I would rate Palo Alto Network Cortex XSOAR an eight out of ten.

I have found the solution very useful, it integrates well with other platforms.

I have used Palo Alto Networks Cortex XSOAR within the last 12 months.

The solution is stable.

I have found Palo Alto Networks Cortex XSOAR to be scalable all the time.

The technical support is good.

The configuration of the solution could improve it is difficult.

We have four engineers that do the implementation and maintenance of the solution.

The price of Palo Alto Networks Cortex XSOAR is expensive.

I rate Palo Alto Networks Cortex XSOAR a nine out of ten.

We are a solution provider and this is one of the products that we are selling to our clients.

The most valuable features are simplicity and ease of integration.

The documentation is fantastic.

Implementing this solution requires a lot of involvement from the vendor and it should be made easier for the partners.

It has to be richer with respect to IoT. I expect that in future versions, support for a variety of devices will be added.

We have about two months of experience with Demisto Enterprise.

This is a stable solution.

My impression is that Demisto is scalable and it is capable of working across wide geography at any given point in time. The traffic comes in from everywhere in the world and this solution is able to identify threats ahead of time.

Our clients for this solution are medium-sized and enterprise-level businesses.

The initial setup of this solution is complex. My understanding is that it can be deployed within a few days.

There is a perception that it is priced very high compared to other solutions.

Demisto is a product that I recommend.

I would rate this solution an eight out of ten.