It's a perfect solution. It integrates well into the environment.
What needs improvement?
I would like to see them include NDR (Network Detection Response). Then it would work well with SIEM Response. Also, if they could make an on-premises version we would definitely go with Cortes. At this time, they are not offering an on-premises solution.
What other advice do I have?
We had to move away from working with Cortex XDR by Palo Alto Networks due to the regulations. They state that the logs have to be kept in Saudi Arabia. Also, the log is in the cloud, which is against the regulations. We chose Fidelis. They meet the regulations and they are on-premises. We had no… more »
Which other solutions did I evaluate?
We evaluated Fideles and are currently using it, as it meets the regulations and is on-premises.