There is no shortage of endpoint protection products out there with SOAR capabilities. All of the following products enable you to automate security operations, streamline incident response, and orchestrate security workflows to varying extents.
Some include native SOAR and some integrate with additional modules from the same vendor while others integrate with SOAR offerings from third parties. However, the "built-in" aspect is a bit of a moving target.
Cisco Secure Endpoint includes Cisco SecureX to provide SOAR functionality.
CrowdStrike Falcon integrates with the company's Falcon Fusion SOAR framework.
Microsoft Defender for Endpoint is a part of the Microsoft 365 Defender suite and the suite works with Microsoft Sentinel which provides SOAR capabilities.
Palo Alto Networks Cortex XDR Cortex works with PAN's XSOAR which is built on an extensible SOAR platform.
Symantec Endpoint Protection does not have built-in SOAR but can integrate with PAN XSOAR and IBM SOAR.
Search for a product comparison in Endpoint Protection Platform (EPP)
Find out what your peers are saying about Microsoft, SentinelOne, CrowdStrike and others in Endpoint Protection Platform (EPP). Updated: February 2025.
Endpoint Protection Platform (EPP) safeguards endpoints by preventing malware, detecting malicious activities, and providing a centralized management system.
Modern EPPs are designed to address the growing threat landscape with features like real-time monitoring, machine learning-based threat detection, and integration with other security tools. They offer comprehensive protection that includes antivirus, anti-malware, and endpoint detection and response capabilities.
What features...
There is no shortage of endpoint protection products out there with SOAR capabilities. All of the following products enable you to automate security operations, streamline incident response, and orchestrate security workflows to varying extents.
Some include native SOAR and some integrate with additional modules from the same vendor while others integrate with SOAR offerings from third parties. However, the "built-in" aspect is a bit of a moving target.
Cisco Secure Endpoint includes Cisco SecureX to provide SOAR functionality.
CrowdStrike Falcon integrates with the company's Falcon Fusion SOAR framework.
Microsoft Defender for Endpoint is a part of the Microsoft 365 Defender suite and the suite works with Microsoft Sentinel which provides SOAR capabilities.
Palo Alto Networks Cortex XDR Cortex works with PAN's XSOAR which is built on an extensible SOAR platform.
Symantec Endpoint Protection does not have built-in SOAR but can integrate with PAN XSOAR and IBM SOAR.
Cortex XSOAR from Palo Alto Networks has a built-in SOAR, security orchestration, automation, and response.
Link: https://www.paloaltonetworks.c...