Palo Alto Networks Cortex XSOAR Reviews

I work for a company, and we provide support and complete end-to-end management of the product for our customers who hold the product.

Over thirty users are currently using Palo Alto Networks Cortex XSOAR in your organization. The role is inclusive, like administrator and engineer.

According to Gartner, it's a leader in NID. Customers are investing more in it, and that's why we are using the product.

The dashboard performance could be improved.

Another area of improvement is a support team. Moreover, we need to pay for modifying anything with scripting in terms of customization. It can be a challenge if the person isn't 100% good with scripting.

I have been using this solution for around four years and currently use the latest version.

It is a stable solution. I would rate it a nine out of ten.

It is quite scalable. I would rate it a ten out of ten.

Customer support could be better.

Neutral

For maintenance, two or three engineers are involved.

We use the yearly subscription.

Overall, I rate the solution a nine out of ten.

Our primary case issues are phishing, TI, and sensors.

The most valuable feature is automation. There is a huge variety of automation that can help any team and there is a threat model.

I think they should increase their collaboration base so that XSOAR can be utilized for any number of automation.

I have been using Palo Alto Networks Cortex XSOAR for the past two years.

Stability takes around three to six months to achieve complete stability in the environment.

The existing model is good, but if we go for big deployments, I think there are a few challenges in scalability. They use their internal BoltDB, which is good for a medium organization, but for large organizations, they support Elasticsearch, which is too costly. The DR capabilities are not good.

Technical support is professional, but they are not very friendly. The overall remote support is not where it should be.

Neutral

Palo Alto Networks Cortex XSOAR has a straightforward setup. Stability takes three months to six months, and then further stability, performance, and then complete utilization. Usually, it takes around a year to deploy it fully.

Normally, we use a third-party team to help us with the deployment.

I would rate Palo Alto Networks Cortex XSOAR an eight out of ten.

We primarily use the solution for automation and the orchestration of security.

We've only just installed the solution and need time to explore its functionality and capabilities. So far, we haven't experienced any issues.

The stability has been good overall.

The initial implementation wasn't overly complex. It was easy.

The pricing is very good.

Technical support is helpful and responsive.

Although we haven't used the solution for too long, we haven't come across any issues and haven't noticed any features that are lacking. We're largely satisfied with the offering. 

The user interface could be a bit better. It's the only aspect I've noticed that could possibly be improved. 

Other than that, we've been pretty happy with it.

We've just implemented the solution. We've only been using it for a few weeks. It hasn't been too long just yet.

So far, we have found the stability to be very reliable. There are no bugs or glitches. It doesn't crash or freeze. The performance, in the few weeks we've used it, has been good.

Technical support has been helpful so far. They are knowledgeable and responsive and we've been very satisfied with their level of support.

The installation was very straightforward. It only took about a day. Not even that long. The deployment was fast. A company shouldn't have run into any issues with the initial setup.

I was able to handle the implementation myself. I did not need the assistance of an integrator or consultant.

We've found the pricing to be very reasonable. It's not particularly expensive.

The customers do not have to pay for licensing; we deliver it for free.

We have the solution integrated into our QRadar.

In the time we've used it, from what I've experienced, I'd rate the product at an eight out of ten. We've had a very positive experience.

I would recommend the solution to other companies.

The solution is user-friendly and provides integration with multiple products.

The solution's features for reporting and dashboards need improvement. They need more customization options.

We have been using the solution for two years.

The solution is stable. I rate its stability a nine out of ten.

It is a scalable solution. I rate its scalability an eight out of ten.

The solution's initial setup process with proxy environments is complicated. It takes an hour to two complete.

I rate the process a seven out of ten.

The solution's cost is high. I rate its pricing a nine out of ten.

I rate the solution a nine out of ten.

I'm using Cortex XSOAR to manage our network security.

I've been using Cortex XSOAR for about one year.

I have no complaints about Cortex's stability.

As far as I know, Cortex XSOAR's scalability is okay. I'm just a user, so I don't know.

Setting up Cortex is straightforward. This use case is the easiest to implement. I had help from two or three technicians.

I rate Palo Alto Networks Cortex XSOAR eight out of 10. I would recommend it to others.

Our customers use the product for automation.

It is a good tool for automation. The product is quite easy to use. It provides great integrations.

We need a little hands-on experience to install the solution. The installation process is technical.

I have been working with the solution for six months.

The solution is quite stable. I rate the stability an eight out of ten. So far, the stability is okay.

The product is scalable. I rate the scalability an eight out of ten. At a managed service level, the product can really scale well. So far, it’s good. Our clients are small, medium and enterprise businesses.

We will need specific knowledge to install the product, depending on the use case.

We need to maintain the solution from time to time, especially with the upgrades. One person is enough to maintain the product.

The solution is a bit on the expensive side. I rate the pricing a seven out of ten.

We are resellers and managed service providers of the product. The infrastructure is handled by someone else. I do the analysis. Overall, I rate the product an eight out of ten.

We are using this solution to have a completely organized SOC from a list of devices in our environment. We are able to manage all of our devices, such as firewalls and endpoint protection solutions.

The most valuable features are the orchestration because of the way in which it coordinates the loss from all the devices and it provides us with a high-level overview of the critical log information. Additionally, this solution integrates very well, we have integrated a Palo Alto firewall and everything is working perfectly.

There should be an on-premise version available for customers to have different choices.

I have been using this solution for approximately one year.

The solution is very reliable because it is on the cloud.

The solution is scalable. We have already approximately 200 devices deployed into the cloud and we are planning to increase usage in the future. We have approximately 600 employees using this solution in my organization and the solution has been completely coordinating the logs of all these users well.

The technical support is satisfactory. If we need any clarification or faced any issues we have been in contact with the support. However, there is room for improvement.

The solution is easy to deploy and manage.

There is a yearly license required for this solution and it is expensive.

We have evaluated other solutions but they do not compare with the number of features this solution provides. There is a wide range of features in this solution.

I would recommend this solution to those that already have a SOC or a NOC. It will enhance their logs and XSOAR will handle their internet activities. 

If they are not involved with SOCs or NOCs then I do not think they require this solution.

I rate Palo Alto Networks Cortex XSOAR an eight out of ten.

The use cases basically came from the customers. Most of the time, the major concern is from a security perspective because various kinds of attacks are happening. To restrict or stop those attacks, we are building playbooks. We are also automating repetitive tasks.

We are using on-premise as well as cloud deployments.

The automation part and the playbook creation part are awesome. The way it is responding to the customers and incidents is also very good. In the SOC environment, I guess it will carry out around 50% of the work.

For building automation, there is not a lot of good documentation. The documentation is there, but it is not very good from my perspective. There should be an improvement in this area. I don't see issues with anything else.

In terms of new features, I have heard that other products have EBA functionality. It would be good if this functionality could be added.

I have been working on this solution for the last four months.

Its stability is okay.

It is very scalable. It can be easily integrated with other third-party APIs.

Their technical support is awesome. It is far better than the technical support of any other company.

The setup is very easy. It is very straightforward. The deployment took around 15 minutes.

From the cost perspective, I have heard that its price is a bit high as compared to other similar products.

For each SOC and MSS environment, I would recommend using Cortex XSOAR for better productivity, scalability, performance, and efficiency. A lot of manual work is happening right now, and that could be avoided. People can be utilized for more productive work.

I would rate Palo Alto Network Cortex XSOAR an eight out of ten.