Palo Alto Networks Cortex XSOAR Reviews

My primary use for Palo Alto Networks Cortex XSOAR is to protect the workstation for the end-users.

The most valuable features of Palo Alto Networks Cortex XSOAR are the remote controller from the workstation that can execute commands and isolate the systems outside of the network. Only the system with an internet connection can execute the task because the main console is in the cloud.

Palo Alto Networks Cortex XSOAR could improve the look, feel, and management of the cloud console. Additionally, the user could be more easily integrated.

I have been using Palo Alto Networks Cortex XSOAR for two years.

We have approximately 1,000 users using Palo Alto Networks Cortex XSOAR in our organization. The solution is scalable.

We only require one or two staff to deploy the agent of Palo Alto Networks Cortex XSOAR because it is very simple. One for the server and the other for the workstation.

The price of Palo Alto Networks Cortex XSOAR could be reduced. We are always looking for a discount. There is an annual license needed to use this solution.

I rate Palo Alto Networks Cortex XSOAR a ten out of ten.

The strengths of Palo Alto Networks Cortex XSOAR stem from the fact that it provides functionalities related to patching and URL blocking, and its strengths are the major reason why I recommend the product to others.

With Palo Alto Networks Cortex XSOAR, managing its setup phase can be a complicated task. The aforementioned aspects of the solution can be considered for improvement. In the future, I need the product to provide me with the ability to manage its base.

In the future, I want Palo Alto Networks Cortex XSOAR to provide me with an option that allows me to do an automatic setup process. I also want Palo Alto Networks Cortex XSOAR to plan a way to minimize the need for too many configuration processes in an architecture. I feel that currently, the setup process of the product is really hard.

I have experience with Palo Alto Networks Cortex XSOAR. My company has a partnership with Palo Alto Networks.

We don't face any issues with Palo Alto Networks Cortex XSOAR in our company right now. Certain issues only crop up with the firewall devices from Palo Alto Networks.

It is a scalable solution.

I rate the technical support a nine out of ten.

Positive

I only handle Palo Alto Networks.

I did not manage the initial setup of the product, as it was taken care of by a product specialist.

I am more comfortable with Palo Alto Networks compared to its competitors.

I can say that I am a bit satisfied with Palo Alto Networks Cortex XSOAR. I manage the product's setup phase, so I am getting familiarized with it.

I can only recommend Palo Alto Networks Cortex XSOAR after I personally complete the setup phase of the product in our environment. In general, after I complete the setup process of Palo Alto Networks Cortex XSOAR in my company, I will recommend it to others.

I rate the overall tool an eight out of ten.

The solution is used for security. 

Palo Alto is easy to use. 

The dashboard could be better. 

I have used Palo Alto Network Cortex for six months. 

There are issues with stability as it was giving false positives and has bugs. I rate the stability a seven out of ten. 

It is a scalable solution. There are two hundred users using the solution at present. I rate the scalability an eight out of ten. 

The solution was deployed by analysts. 

I rate the overall solution an eight out of ten. 

The product can be used for securing endpoints from various types of attacks, threat incidents, and malware attacks.

NGFW and Cortex are the best features of the product. The solution provides threat intelligence with EDR. The most interesting part is that the product uses artificial intelligence and machine learning capabilities.

The solution should be made a bit cheaper.

I have been using the solution for six months.

The solution is quite stable.

The product is scalable. It can integrate with a lot of products.

Support is good.

The initial setup is straightforward.

With the right skillsets, the deployment is quite easy and does not take a lot of time. You can do the deployment manually or push it through your Active Directory.

I would definitely recommend the product to others. Overall, I rate the product a nine out of ten.

It is a help desk ticketing tool. It's a sought platform, however, it is just a help desk ticketing tool.

It was useful as a ticketing tool. However, it's been discontinued. 

It doesn't have any integrations. It lacks multiple integrations. 

It is been decommissioned by Palo Alto. There's no more trying to support it. There will be no more additional items added.

The initial setup was complex.

I've been using the solution for a year or more. 

The stability is not there. 

I'm not sure how scalable the solution is.

I can't speak to technical support's capabilities. I don't have much experience with them. 

The setup has a bit of complexity. I'd rate the complexity five out of five. 

I'm not sure how long the deployment took.

We were a reseller. 

I'm not sure which version of the solution we're using. It might be behind a version or two. Demisto has been purchased by Palo Alto. There's a difference in versions between the organizations. The latest version is not defined by the organization.

Potential users should not purchase this product. They decommissioned the product, and it is now at end of life. 

I'd rate the solution three out of ten. It was sold to another company and decommissioned. 

We use the solution to create playbooks for all the operational programs.

The solution's integration with non-security solutions will be helpful.

We have been using the solution for almost two years now.

The solution is stable. I rate its stability an eight.

I rate the solution's scalability as an eight. It is complex to scale.

The solution's technical support team takes longer to reply to the queries.

Neutral

The solution's initial setup process is straightforward.

The solution's cost is reasonable. I rate its pricing as a five.

I rate the solution an eight.

I am satisfied with the product overall.

The solution’s price and technical support could be improved.

I would recommend Palo Alto Networks Cortex XSOAR for bigger businesses.

It is the kind of product I would recommend for clients who know what they want to achieve. They can put the potential tools to the test or POCs and verify the checkpoints of their needs before using the product. Palo Alto Networks Cortex XSOAR is not an out-of-the-box kind of product.

Overall, I rate the solution a seven out of ten.

XSOAR is the cherry on top of Cortex XDR. It provides you with the ability to make a lot of response actions to your incidents. Cortex XDR is collecting an incident, and Cortex XSOAR is providing you the ability to remediate it.

When the customers need the ability to remediate incidents, for example, antivirus or network security issues, some SIEM solution, et cetera, yet need to integrate everything, they can use the power of the platform without needing different solutions. Cortex XSOAR will give you the ability to integrate

For example, if some endpoint was infected in your infrastructure, you need to do something about that. XSOAR provides you the ability to understand how that endpoint was infected and to do something with that. 

Cortex XSOAR will go to the firewall and block the IP address of this endpoint. Cortex XSOAR will go to the domain and disable the user as well. Then it will go to some other solution and will do something there. It is a variety of actions based on the incidents. 

It is pretty modern. 

It has a lot of integrations. They have a portal where you can find any kind of integration that you need. The ability to integrate with third-party vendors and solutions is great. 

They have a big amount of playbooks. These are a set of actions that you need to perform based on some exact incident. For example, if you find malware, you will need to block an endpoint. If you find a botnet that is connecting to your infrastructure, you will need to block this botnet on the firewall. This set of playbooks that XSOAR already has inside it is really huge, and it is also great for a lot of informational security or managers and engineers that can just choose what they need and not have to create anything from the scratch.

The initial setup is straightforward. 

Nothing needs to be changed. It is a part of Cortex inside Palo Alto Networks. If you want to get all the benefits, you will need the Cortex XDR, then you will need to get Cortex XSOAR. It's like a brother and sister, and they will give you a lot of benefits if you integrate them. 

It's only one cloud right now. It might be helpful for some companies to have an on-premies option. 

I've been using the solution for a few months. It hasn't really been that long. 

As a cloud, it is really stable. All that you need to do is to provide a stable internet connection. That's all. Even without the internet connection, it still works, however, without the heart of the system, which is based in the cloud.

The solution is scalable. You have the ability to start from a small number of agents and go to any number of agents. Likely, small businesses will not need such a solution, however, if they will need it, and they need to grow, it can scale really well for them - so long as they have the money.

You get the same support you would get from Palo Alto Networks. It's the same support portal. You get really quick answers and nice instructions. The best practices they share with us are great.

The solution is on the cloud. You just have an agent on-premises, and all of the brains are in the cloud.

It is really straightforward, as it is a cloud deployment. You just need an agent, therefore, the basic deployment will be really straightforward, and it will take only maybe one hour or two. If you have thousands of endpoints, maybe it will take more time. That said, it is really is straightforward.

I can't speak to the exact cost of the solution. 

I'd recommend the solution.

I would rate it ten out of ten.