We performed a comparison between Cortex XDR by Palo Alto Networks and Symantec Endpoint Detection and Response based on real PeerSpot user reviews.
Find out in this report how the two EPP (Endpoint Protection for Business) solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI."Having all monitoring, response, tracking, and mitigation tools in one dashboard provides our analysts and SOC team with a comprehensive view at a glance."
"NGAV and EDR features are outstanding."
"It is stable and scalable."
"The ease of deployment and configuration is valuable. It's very easy compared to other vendors like Sophos. Sophos' configuration is complex. Fortinet is a lot easier to understand. You don't need a lot of admin knowledge to do the configuration."
"The stability is very good."
"The solution was relatively easy to deploy."
"The product detects and blocks threats and is more proactive than firewalls."
"The price is low and quite competitive with others."
"The interface is easy to use and it is more up to date than our previous solution."
"We have a complete overview of all our PCs and it's very easy to handle and to use the interface. It has a lot of benefits for us."
"Being a cloud solution it is very flexible in serving internal and external connections and a broad range of devices."
"The most valuable feature is that you can select remote access of any machine for sandboxing."
"Its interface and pricing are most valuable. It is better than other vendors in terms of security."
"One of the things that I enjoy the most is using policy extensions. It's like having host firewalls to control USB connections. I think it's a wonderful tool to restrict use when connecting to our computers. Another important tool is Home Insights. That is an add-on to the Cortex solution. I like that because we can see all the vulnerabilities in the environment and control what assets are connected to our network."
"Palo Alto is constantly adding new features."
"The product's most valuable features are massive user and feature intelligence exploit detection."
"I have had absolutely no problem with using this solution, it really works well."
"There are times when Symantec Endpoint Detection and Response tags an executable as malicious when it is trying to get executed on the machine. In this case, it prevents the execution and it gives you a process view of things where you can look into what has happened and whether it is a genuine process trying to access some system activities, or it's a malicious one. Depending upon the process, it gives you a clear identification, and we can do the containment from the interface itself and isolate the machine from the network. The process review on network isolation is good."
"The solution can scale well."
"The most valuable features of this product include network isolation for machines and the ability to work with a consistent and defined set of virtual machines."
"It is very simple to use."
"The most valuable features of the solution are that it is easy to use and has good support."
"The most valuable feature is that the same agent can act as the endpoint detection and response agent."
"The solution is stable."
"Making the portal mobile friendly would be helpful when I am out of office."
"FortiEDR could add a separate scanning dashboard. In incident management, we prefer to remove the endpoint system from the environment and scan the system. We typically use Symantec for that, but if we want to use FortiEDR for that, then we need a scanning tab to clarify things."
"Detections could be improved."
"They can include the automation for the realtime updates. We have a network infrastructure with remote sites. Whenever they send updates, they are not automated. We have to go into the console and push those updates. I wish it was more automated. The update file is currently around 31 MB. It could be smaller."
"Everything with Fortinet having to do with their cloud services. They need to invest more in their internal infrastructure that they are running in the cloud. One of the things I find with their cloud environment compared to others' is that they go cheap on the equipment. So it causes some performance degradation."
"We've encountered challenges during API deployment, occasionally resulting in unstable environments."
"The SIEM could be improved."
"I think cloud security and SASE are areas of concern in the product where improvements are required. The tool's cloud version has to be improved in terms of the security it offers."
"There are some third-party solutions that are difficult to integrate with, which is something that can be improved."
"The licensing model is complex to understand. It requires expertise to explain how the licensing works. You need expertise to guide you through the subscription plan."
"Cortex XDR should have a lightweight agent, and the agent size should not be heavy."
"The dashboard could use some significant improvement, just making it more useful with more information. It has a limited amount of information right now. It is customizable, but I'd love to see a better out-of-box dashboard."
"It would be better if they could educate the customers more. Some sort of seminars and roadshows will help educate the customers and show what the product can do. The price could be better. It would also help if they had a team for deployment and support."
"It's more focused on network communication. If a customer wants to increase the level of protection and start working with documents, it's impossible to integrate these features into the system. It's more of a communication-oriented system than a content security-oriented system."
"A little bit more automation would be nice."
"Cortex XDR by Palo Alto Networks could improve by offering remote management. It would be useful to look at the client's issue to fix it."
"They need to improve their cloud presence."
"It is not possible to buy it from the company itself, or resellers in other countries. If it is available, I see that it is offered as part of a larger service. For me, this was not suitable."
"Reporting is a major issue, as it is not user friendly."
"The product doesn’t offer MDM functionality under its current licensing model."
"The network forensics feature could be improved."
"The solution can always be more stable and more secure."
"One potential area for improvement in Symantec EDR is the reporting engine."
"The Symantec portfolio is not big enough to cover the organization in all 360 degrees."
More Cortex XDR by Palo Alto Networks Pricing and Cost Advice →
More Symantec Endpoint Detection and Response Pricing and Cost Advice →
Cortex XDR by Palo Alto Networks is ranked 4th in EPP (Endpoint Protection for Business) with 80 reviews while Symantec Endpoint Detection and Response is ranked 24th in EDR (Endpoint Detection and Response) with 28 reviews. Cortex XDR by Palo Alto Networks is rated 8.4, while Symantec Endpoint Detection and Response is rated 7.6. The top reviewer of Cortex XDR by Palo Alto Networks writes "It provides a whole new level of visibility and integrates with most other vendors". On the other hand, the top reviewer of Symantec Endpoint Detection and Response writes "A highly stable and affordable solution for detecting and preventing security threats". Cortex XDR by Palo Alto Networks is most compared with Microsoft Defender for Endpoint, CrowdStrike Falcon, Darktrace, Symantec Endpoint Security and Microsoft Defender for Cloud, whereas Symantec Endpoint Detection and Response is most compared with Microsoft Defender for Endpoint, Trend Vision One, Kaspersky Endpoint Detection and Response Expert, Trellix Endpoint Security (ENS) and Elastic Security. See our Cortex XDR by Palo Alto Networks vs. Symantec Endpoint Detection and Response report.
We monitor all EPP (Endpoint Protection for Business) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.