We performed a comparison between Prisma Cloud by Palo Alto Networks and CrowdStrike Falcon Cloud Security based on our users’ reviews in five categories. After reading all of the collected data, you can find our conclusion below.
Features: Prisma Cloud by Palo Alto Networks is known for its extensive visibility, robust management features, and user-friendly web interface. Users also praised Prisma Cloud's continuous compliance monitoring and seamless integration with third-party tools. In contrast, CrowdStrike Falcon Cloud Security was lauded for its strong adherence to security best practices. It particularly excels in endpoint protection and its ability to leverage machine learning and AI. Prisma Cloud by Palo Alto Networks could be more customizable and improve integration with ticketing solutions. CrowdStrike Falcon Cloud Security could improve its Kubernetes and GCP support.
Service and Support: Some clients have commended Palo Alto support for being helpful and responsive, while others have reported sluggish response times and insufficient issue resolution. CrowdStrike Falcon Cloud Security users are generally content with the support team's assistance and promptness.
Ease of Deployment: Users found the initial setup for Prisma Cloud by Palo Alto Networks to be straightforward and easy, with helpful assistance from engineers and documentation. The setup for CrowdStrike Falcon Cloud Security was also deemed easy, but some users struggled with the Kubernetes implementation.
Pricing: Some found the price of Prisma Cloud to be reasonable and competitive. Others said the license is costly but justified due to the features it provides. The pricing structure is transparent, with no hidden expenses. Users consider the pricing of CrowdStrike Falcon Cloud Security to be fair, but it may be pricier than on-premises alternatives.
ROI: Prisma Cloud delivers a solid ROI by mitigating threats, enhancing risk understanding, and automating tasks. Users have provided limited feedback about the return on investment for CrowdStrike Falcon Cloud Security.
Comparison Results: Prisma Cloud by Palo Alto Networks is favored over CrowdStrike Falcon Cloud Security. Users appreciate Prisma Cloud's easy setup, comprehensive management features, powerful web GUI, and integration with other tools. It is also praised for its ability to provide security in various cloud environments. CrowdStrike Falcon Cloud Security has received mixed reviews about its setup, user interface, and pricing.
"The product supports out-of-the-box reporting with context about the asset and allows us to perform complex custom queries on UI."
"Our most important features are those around entitlement, external exposure, vulnerabilities, and container security."
"The vulnerability management modules and the discovery and inventory are the most valuable features. Before using Wiz, it was a very manual process for both. After implementing it, we're able to get all of the analytics into a single platform that gives us visibility across all the systems in our cloud. We're able to correspond and understand what the vulnerability landscape looks like a lot faster."
"The automation roles are essential because we ultimately want to do less work and automate more. The dashboards are easy to read and visually pleasing. You can understand things quickly, which makes it easy for our other teams. The network and infrastructure teams don't know as much about security as we do, so it helps to have a tool that's accessible and nice to look at."
"I like Wiz's reporting, and it's easy to do queries. For example, it's pretty simple to find out how many servers we have and the applications installed on each. I like Wiz's security graph because you can use it to see the whole organization even if you have multiple accounts."
"The solution is very user-friendly."
"Out of all the features, the one item that has been most valuable is the fact that Wiz puts into context all the pieces that create an issue, and applies a particular risk evaluation that helps us prioritize when we need to address a misconfiguration, vulnerability, or any issue that would put our environment into risk."
"The first thing that stood out was the ease of installation and the quick value we got out of the solution."
"Technical support is helpful."
"Cloud security is one valuable feature. Spotlight is the other one. There is also vulnerability management and a couple of more features."
"It is fully cloud-based, so we don't need to invest in third-party agents repeatedly."
"Cloud security posture management (CSPM) is most valuable."
"It's easy to gather insights and conduct analysis about existing threats."
"The most valuable feature of CrowdStrike Falcon Cloud Security is its lightweight sensor, taking minimal space and not impacting server performance."
"CrowdStrike utilizes signatureless technology, eliminating the need for regular signature updates on endpoint systems."
"The most valuable feature of Falcon Cloud Security is its comprehensive threat-hunting ability."
"The ability to monitor the artifact repository is one of the most valuable features because we have a disparate set of development processes, but everything tends to land in a common set of artifact repositories. The solution gives us a single point where we can apply security control for monitoring. That's really helpful."
"The client wasn't using all of the features, but the one that stood out was infrastructure-as-code (IaC). I built IaC use cases and was trying to get them to use it. I also liked cloud workload protection. I worked with the vulnerability management team to develop a process. It's a manual process, so it can be challenging to remediate many image or container issues. It was nice that we could build out a reporting process and download the reports. The reports are solid."
"The most valuable feature is the option to add custom queries using the RQL language that they supply so that we can customize the compliance frameworks to what we need to look for."
"CSPM is the most valuable feature for any organization that runs its workloads in the cloud."
"I find the CSPM area to be a more valuable and flexible feature."
"The most valuable features of Prisma Cloud are its cloud security posture management and cloud workload protection capabilities."
"This solution helped us by allowing us to schedule and fix things. This is not an easy thing if you're managing 1,000 plus resources."
"The most valuable feature is that the rule set is managed and that it can be run on a regularly scheduled basis."
"The reporting isn't that great. They have executive summaries, but it's only a compliance report that maps all current issues to specific controls. Whether you look at one subscription or project, regardless of the size, you will get a multipage report on how the issues in that account map to that control. Our CSO isn't going to read through that. He won't filter that out or show that to his leadership and say, "Here's what we're doing." It isn't a helpful report. They're working on it, but it's a poor executive summary."
"Given the level of visibility into all the cloud environments Wiz provides, it would be nice if they could integrate some kind of mechanism to better manage tenants on multiple platforms. For example, let's say that some servers don't have an application they need, such as an antivirus. Wiz could include an API or something to push those applications out to the servers. It would be great if you could remedy these issues directly from the Wiz platform."
"We wish there were a way, beyond providing visibility and automated remediation, to wait on a given remediation, due to a critical aspect, such as the cost associated with a particular upgrade... We would like to see preventive controls that can be applied through Wiz to protect against vulnerabilities that we're not going to be able to remediate immediately."
"We would like to see improvements to executive-level reporting and data reporting in general, which we understand is being rolled out to the platform."
"The only small pain point has been around some of the logging integrations. Some of the complexities of the script integrations aren't supported with some of the more automated infrastructure components. So, it's not as universal. For example, they have great support for cloud formation and other services, but if you're using another type of management utility or governance language for your infrastructure-as-code automation components, it becomes a little bit trickier to navigate that."
"Wiz's reporting capabilities could be refined a bit. They are making headway on that, but more executive-style dashboards would be nice. They just implemented a community aspect where you can share documents and feedback. This was something users had been requesting for a while. They are listening to customer feedback and making changes."
"The solution's container security could be improved."
"The only thing that needs to be improved is the number of scans per day."
"Different file options should be available, and clients should be able to select from the options."
"The CrowdStrike dashboard currently lacks a username field."
"Incorporating threat intelligence into the system would be a valuable addition."
"There should be cloud storage scanning. We would like to have cloud storage vulnerability and threat management on any cloud storage."
"The only challenge lies in token verification."
"It gets the work done, but the main problem with the solution is that if you remediate anything, it takes 45 days for you to get any of the features displayed on the dashboard. This is the real weakness of CrowdStrike. Their customer support is also not ready to help with it. If you remediate any cloud vulnerability that they are giving you, such as removing a host from your organization, it takes around 45 days for them to remove it from their console."
"It would be more convenient if there was an easier way to install CrowdStrike, perhaps through better integration with Active Directory."
"The UI part needs to be improved."
"Sometimes, when you assign subnets to regions, the IP address will jump from one location to another because it will automatically change substantially. Then, we need to add those IP subnets to our firewall for existing access. The need to update those subnets potentially causes maintenance or access issues. So far, we can only provide bigger customers with six subnets, and a small company may not be able to access those services."
"A couple of exporting functionalities should be more user-friendly because if I want to export something, I can get a lot of data visible to that particular CSV."
"I would like Prisma Cloud to improve its mapping feature to increase usability."
"We would like to have the detections be more contemporaneous. For example, we've seen detections of an overprivileged user or whatever it might be in any of the hundreds of Prisma policies, where there are 50 minutes of latency between the event and the alert."
"The challenge that Palo Alto and Prisma have is that, at times, the instructions in an event are a little bit dated and they're not usable. That doesn't apply to all the instructions, but there are times where, for example, the Microsoft or the Amazon side has made some changes and Palo Alto or Prisma was not aware of them. So as we try to remediate an alert in such a case, the instructions absolutely do not work. Then we open up a ticket and they'll reply, "Oh yeah, the API for so-and-so vendor changed and we'll have to work with them on that." That area could be done a little better."
"A better correlation between the multiple products Prisma Cloud contains would be crucial. It would reduce the time spent looking at reports and enable you to get all the actionable insights across products. I think that Palo Alto is working on it, but they need to work faster because it doesn't make sense to have all these products in a single pane of glass without any correlation between them."
"One major observation is that it is not possible to implement Prisma Cloud on-premises. This is the limitation. Prisma Cloud itself is on a cloud. It is sitting on AWS and Google Cloud. It is a SaaS solution, but some of my clients have a local regulatory requirement, and they want to install it locally on their premises. That capability is not there, but government entities and ministries want to have Prisma Cloud installed locally."
"There is room for improvement on the logging and monitoring front because it's still not as holistic as I would want it to be."
More CrowdStrike Falcon Cloud Security Pricing and Cost Advice →
More Prisma Cloud by Palo Alto Networks Pricing and Cost Advice →
CrowdStrike Falcon Cloud Security is ranked 7th in Cloud Security Posture Management (CSPM) with 13 reviews while Prisma Cloud by Palo Alto Networks is ranked 1st in Cloud Security Posture Management (CSPM) with 82 reviews. CrowdStrike Falcon Cloud Security is rated 8.8, while Prisma Cloud by Palo Alto Networks is rated 8.4. The top reviewer of CrowdStrike Falcon Cloud Security writes "Enhances the overall safety of our company's environment from cyber threats". On the other hand, the top reviewer of Prisma Cloud by Palo Alto Networks writes "The dashboard is very user-friendly and can be used to generate custom RQL based on user requirements". CrowdStrike Falcon Cloud Security is most compared with AWS GuardDuty, Qualys VMDR, Sysdig Falco, Akamai Guardicore Segmentation and Orca Security, whereas Prisma Cloud by Palo Alto Networks is most compared with Microsoft Defender for Cloud, Aqua Cloud Security Platform, AWS Security Hub, AWS GuardDuty and Snyk. See our CrowdStrike Falcon Cloud Security vs. Prisma Cloud by Palo Alto Networks report.
See our list of best Cloud Security Posture Management (CSPM) vendors, best Container Security vendors, and best Cloud Workload Protection Platforms (CWPP) vendors.
We monitor all Cloud Security Posture Management (CSPM) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.
