We primarily use the product as endpoint security which we have deployed on all servers and locations. This is not limited to the endpoint, however, as it has further integration with the firewalls and email solutions. Therefore, it can give us quick visibility in case there is any malicious or suspicious activity happening.
Cisco SecureX Competitors and Alternatives
Read reviews of Cisco SecureX competitors and alternatives
Network Designer at a computer software company with 1,001-5,000 employees
Easy to set up with excellent trend analytics and isolation feature
Pros and Cons
- "The initial setup is pretty easy."
- "In reporting they should have a customizable dashboard due to the fact that C-level people don't like reporting to the IT department. They prefer to have a real-time dashboard. That kind of dashboard needs to have various customizations."
What is our primary use case?
What is most valuable?
The solution offers a very high-performance.
The solution has analytics that watch patterns and trends. If there is a change in user behavior or communication, it has the ability to track that.
The solution has a very helpful isolation feature. If any system gets compromised, with one click I can access the system and isolate it from other networks, and then go into further forensic investigation of the current threat without compromising anything else.
There are a lot of lead solutions in this space, however, Palo Alto is number one.
The initial setup is pretty easy.
What needs improvement?
The solution should enhance the ADR and reporting. As of right now, they are giving reports, which are okay, however, there are other ways to get better reporting. That is an area where I already requested that Palo Alto work on.
In reporting they should have a customizable dashboard due to the fact that C-level people don't like reporting to the IT department. They prefer to have a real-time dashboard. That kind of dashboard needs to have various customizations.
They should extend the solution for URL filtering, as other endpoint security products are doing that already. Nowadays, users are working from home and therefore we have plenty of traffic back through the data center just for URL filtering security. If that functionality could be there in the endpoint, then we would be happy. It would ensure users working from home couldn't access malicious websites.
For how long have I used the solution?
We've been using the solution for one year. Before that, we were using Palo Alto Trap.
What do I think about the stability of the solution?
The solution is very stable. I pretty much depend on product stability. Over the last six months, we have been able to see it's that Palo Alto is more stable than most. There is no such issue in that regard.
This is a very stable product, whether it is running on a database or email system or on any platform. It works perfectly fine.
What do I think about the scalability of the solution?
The solution is very scalable. This is due to the fact that it is being managed through the cloud making it easy to deploy to a thousand endpoints. There is no issue at all. As long as there's enough space for the solution to expand, it can grow out to any size you need.
How are customer service and technical support?
Technical support from Palo Alto is perfect. However, we have first-level support from a third-party. They sometimes take time to respond, which is not ideal. That said, when we get aligned with the tech support from Palo Alto, that really works well. Their level one support is with other vendors, and level two and level three support is with Palo Alto. That's how they are set up. They deal with bigger issues.
Overall, we've been pretty satisfied with technical support.
Which solution did I use previously and why did I switch?
We're service providers. We offer a variety of solutions to our clients, including Palo Alto, Cisco, Microsoft, and McAfee, depending on their needs. We don't just use or recommend one particular endpoint protection product.
About a year back I implemented Cisco and Palo Alto for our customer. Cisco AMP is also a good solution while it is running with the grid, however, I have not been involved with using it for three years.
In routing and switching, Cisco is good. However, Cisco AMP, which is an endpoint security, requires you to work with many other AMP solutions from Cisco.
My first preference would be Palo Alto and my second preference would be Cisco AMP.
How was the initial setup?
The initial setup is not complex at all. It is very straightforward and very easy to implement. I implemented it for 1000 or so users, and it took only about one month to execute. Even when we were in a pandemic situation where users were at home, we did it that quickly. It is very easy to deploy.
What's my experience with pricing, setup cost, and licensing?
The pricing is actually very reasonable. Palo Alto is very invested in some commercial endeavors and they have simplified their license. A team license can be used on-cloud, or on-prem. We have not faced segregation on any technologies, so a simple license gets any user anywhere without limitations. It is easy to increase the license as it's a cloud service. You just speak to your account manager and they can increase the licenses for you.
What other advice do I have?
While we deal with the cloud deployment model, we've also often used the on-premises deployment.
I'd advise other companies to use the solution. It really is the best one out there.
Overall, I'd rate the solution nine out of ten. The reporting is a bit weak, and it's my understanding they are working on that. However, performance-wise and security-wise, this is the best product.
Which deployment model are you using for this solution?
Disclosure: I am a real user, and this review is based on my own experience and opinions.