We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
"The most valuable features are simplicity and ease of integration."
"The automation part and the playbook creation part are awesome. The way it is responding to the customers and incidents is also very good. In the SOC environment, I guess it will carry out around 50% of the work."
"The pricing is very good."
"The automation is excellent."
"The most valuable features are the orchestration because of the way in which it coordinates the loss from all the devices and it provides us with a high-level overview of the critical log information."
"The solution is very reliable."
"The ease of deployment is a valuable feature."
"Implementing this solution requires a lot of involvement from the vendor and it should be made easier for the partners."
"For building automation, there is not a lot of good documentation. The documentation is there, but it is not very good from my perspective. There should be an improvement in this area. I don't see issues with anything else. In terms of new features, I have heard that other products have EBA functionality. It would be good if this functionality could be added."
"The user interface could be a bit better."
"When Palo Alto bought the solution, the pricing increased by 1.5 times. There's been a 50% increase, which is a lot."
"There should be an on-premise version available for customers to have different choices."
"The solution is very expensive."
"The price should be reduced in order to be more competitive in the market."
"There is a perception that it is priced very high compared to other solutions."
"From the cost perspective, I have heard that its price is a bit high as compared to other similar products."
"There is a yearly license required for this solution and it is expensive."
"The price of this solution is the highest in the market, although there are no costs in addition to the standard licensing fees."
Earn 20 points
Demisto Enterprise delivers a complete solution that helps Tier-1 through Tier-3 analysts and SOC managers to optimize the entire incident life cycle while auto documenting and journaling all the evidence. More than 100+ integrations enable security orchestration workflows for incident management and other critical security operation tasks.
SECDO enables security teams to identify and remediate incidents fast. Using thread-level endpoint monitoring and causality analytics, SECDO provides visibility into every endpoint along with the context necessary for understanding whether a suspicious activity is a genuine threat. Unique deception techniques force threats like ransomware out into the open early, and trigger automated containment and remediation.
SECDO provides the most intuitive investigation experience available so you can quickly unravel complex incidents across the organization. You can investigate incidents detected by SECDO as well as alerts from the SIEM. SECDO visualizes the attack chain so you immediately understand the “who, what, where, when and how” behind the incident. Then, based on an analysis of exactly how endpoints were compromised, SECDO surgically remediates the incident with minimum user impact.
Palo Alto Networks Cortex XSOAR is ranked 3rd in Security Orchestration Automation and Response (SOAR) with 6 reviews while SECDO Platform is ranked 5th in Security Incident Response with 1 review. Palo Alto Networks Cortex XSOAR is rated 8.2, while SECDO Platform is rated 9.0. The top reviewer of Palo Alto Networks Cortex XSOAR writes "User-friendly and robust with good technical support". On the other hand, the top reviewer of SECDO Platform writes "Mature threat detection, easy to manage with a good dashboard, and the educational portal is helpful". Palo Alto Networks Cortex XSOAR is most compared with Splunk Phantom, Fortinet FortiSOAR, IBM Resilient, ServiceNow Security Operations and Rapid7 InsightConnect, whereas SECDO Platform is most compared with Fortinet FortiSOAR, IBM Resilient, Cortex XDR by Palo Alto Networks, Siemplify and Splunk Phantom.
See our list of .
We monitor all Security Orchestration Automation and Response (SOAR) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.