Palo Alto Cortex XSIAM
Palo Alto Cortex XSIAM
Palo Alto Cortex XSIAM integrates data from multiple sources to centralize detection and response workflows. It applies analytics and automation to streamline investigation and remediation processes.
Palo Alto Cortex XSIAM integrates data from multiple sources to centralize detection and response workflows. It applies analytics and automation to streamline investigation and remediation processes.
Cost considerations
Cost considerations
Functionality
Functionality
Compatibility
Compatibility
User experience
User experience
Customer support
Customer support
Why these ratings?
Cyberse perspective
Cyberse perspective
Solution details
Key features
API access
Platform solution
Pricing
Free trial available
Target industry
Technology
Public sector
Industrials
Healthcare
Retail
Manufacturing
Financial services
Deployment
Cloud-native
Cloud ecosystem partners
Amazon Web Services
Microsoft Azure Cloud
Google Cloud Platform
Services support
In-house services
Managed services
Market segment
Enterprise
Product features
Security Incident and Event Management (SIEM)
Security Orchestration Automation and Response (SOAR)
Security operations management
Threat intelligence
Threat detection and response
Integrations
Endpoint security
Vulnerability management
Identity security
Cloud security
Governance Risk and Compliance
Network security
Data security
Subcategory
User and Entity Behavior Analytics
Security Orchestration Automation and Response
Security Information and Event Management
We use the following criteria to evaluate this product:
We use the following criteria to evaluate this product:
Cost considerations
Palo Alto Cortex XSIAM is normally sold on a mix of user count and log-ingestion credits, with separate fees for add-ons, which pushes the per-event price above most automation rivals. Government catalogue pricing shows list rates of roughly £115 per unit plus professional-services uplifts, reinforcing its premium positioning. Because the higher licensing and integration costs offset only incremental efficiency gains, many buyers struggle to reach break-even in under two years
Cost considerations
Palo Alto Cortex XSIAM is normally sold on a mix of user count and log-ingestion credits, with separate fees for add-ons, which pushes the per-event price above most automation rivals. Government catalogue pricing shows list rates of roughly £115 per unit plus professional-services uplifts, reinforcing its premium positioning. Because the higher licensing and integration costs offset only incremental efficiency gains, many buyers struggle to reach break-even in under two years
Functionality
Cortex XSIAM offers thousands of pre-built playbooks and a visual drag-and-drop builder, while AI models link alerts from cloud, network, and endpoint sources and trigger two-way actions through hundreds of integrations. Cortex XSIAM also supplies case management workspaces and dashboards that report response times, playbook success, and other performance metrics.
Functionality
Cortex XSIAM offers thousands of pre-built playbooks and a visual drag-and-drop builder, while AI models link alerts from cloud, network, and endpoint sources and trigger two-way actions through hundreds of integrations. Cortex XSIAM also supplies case management workspaces and dashboards that report response times, playbook success, and other performance metrics.
Compatibility
Cortex XSIAM offers more than 700 prebuilt, vendor-supported connectors and an open REST API, so most popular SIEM, endpoint, ticketing, and chat tools connect out-of-the-box without coding. The large marketplace means future tools can be added quickly through maintained content packs. This breadth minimizes integration projects and lowers ongoing maintenance risk.
Compatibility
Cortex XSIAM offers more than 700 prebuilt, vendor-supported connectors and an open REST API, so most popular SIEM, endpoint, ticketing, and chat tools connect out-of-the-box without coding. The large marketplace means future tools can be added quickly through maintained content packs. This breadth minimizes integration projects and lowers ongoing maintenance risk.
User experience
G2 reviewers highlight that Cortex XSIAM’s dashboards and visual builders make everyday investigations straightforward. Other reviews note a challenging initial setup and a noticeable learning curve, so new analysts are seldom productive on day one
User experience
G2 reviewers highlight that Cortex XSIAM’s dashboards and visual builders make everyday investigations straightforward. Other reviews note a challenging initial setup and a noticeable learning curve, so new analysts are seldom productive on day one
Customer support
Palo Alto Networks offers 24×7 phone support on Premium and Platinum tiers with first-response goals under one hour for critical issues and global regional centers. A searchable knowledge base, integration guides and an active LIVEcommunity forum provide self-help resources. Proactive playbook health checks and free enablement sessions are not standard, so customer support aligns with level-4 in the rubric.
Customer support
Palo Alto Networks offers 24×7 phone support on Premium and Platinum tiers with first-response goals under one hour for critical issues and global regional centers. A searchable knowledge base, integration guides and an active LIVEcommunity forum provide self-help resources. Proactive playbook health checks and free enablement sessions are not standard, so customer support aligns with level-4 in the rubric.
Continue exploring
Continue exploring