Palo Alto Cortex XSIAM
Palo Alto Cortex XSIAM
Palo Alto Cortex XSIAM integrates data from multiple sources to centralize detection and response workflows. It applies analytics and automation to streamline investigation and remediation processes.
Palo Alto Cortex XSIAM integrates data from multiple sources to centralize detection and response workflows. It applies analytics and automation to streamline investigation and remediation processes.
Cost considerations
Functionality
Compatibility
User experience
Customer support
Why these ratings?
Cyberse perspective
Solution details
Key features
Pricing
Target industry
Deployment
Cloud ecosystem partners
Services support
Market segment
Product features
Integrations
Subcategory
We use the following criteria to evaluate this product:
Cost considerations
Palo Alto Cortex XSIAM is normally sold on a mix of user count and log-ingestion credits, with separate fees for add-ons, which pushes the per-event price above most automation rivals. Government catalogue pricing shows list rates of roughly £115 per unit plus professional-services uplifts, reinforcing its premium positioning. Because the higher licensing and integration costs offset only incremental efficiency gains, many buyers struggle to reach break-even in under two years
Cost considerations
Palo Alto Cortex XSIAM is normally sold on a mix of user count and log-ingestion credits, with separate fees for add-ons, which pushes the per-event price above most automation rivals. Government catalogue pricing shows list rates of roughly £115 per unit plus professional-services uplifts, reinforcing its premium positioning. Because the higher licensing and integration costs offset only incremental efficiency gains, many buyers struggle to reach break-even in under two years
Functionality
Cortex XSIAM offers thousands of pre-built playbooks and a visual drag-and-drop builder, while AI models link alerts from cloud, network, and endpoint sources and trigger two-way actions through hundreds of integrations. Cortex XSIAM also supplies case management workspaces and dashboards that report response times, playbook success, and other performance metrics.
Functionality
Cortex XSIAM offers thousands of pre-built playbooks and a visual drag-and-drop builder, while AI models link alerts from cloud, network, and endpoint sources and trigger two-way actions through hundreds of integrations. Cortex XSIAM also supplies case management workspaces and dashboards that report response times, playbook success, and other performance metrics.
Compatibility
Cortex XSIAM offers more than 700 prebuilt, vendor-supported connectors and an open REST API, so most popular SIEM, endpoint, ticketing, and chat tools connect out-of-the-box without coding. The large marketplace means future tools can be added quickly through maintained content packs. This breadth minimizes integration projects and lowers ongoing maintenance risk.
Compatibility
Cortex XSIAM offers more than 700 prebuilt, vendor-supported connectors and an open REST API, so most popular SIEM, endpoint, ticketing, and chat tools connect out-of-the-box without coding. The large marketplace means future tools can be added quickly through maintained content packs. This breadth minimizes integration projects and lowers ongoing maintenance risk.
User experience
G2 reviewers highlight that Cortex XSIAM’s dashboards and visual builders make everyday investigations straightforward. Other reviews note a challenging initial setup and a noticeable learning curve, so new analysts are seldom productive on day one
User experience
G2 reviewers highlight that Cortex XSIAM’s dashboards and visual builders make everyday investigations straightforward. Other reviews note a challenging initial setup and a noticeable learning curve, so new analysts are seldom productive on day one
Customer support
Palo Alto Networks offers 24×7 phone support on Premium and Platinum tiers with first-response goals under one hour for critical issues and global regional centers. A searchable knowledge base, integration guides and an active LIVEcommunity forum provide self-help resources. Proactive playbook health checks and free enablement sessions are not standard, so customer support aligns with level-4 in the rubric.
Customer support
Palo Alto Networks offers 24×7 phone support on Premium and Platinum tiers with first-response goals under one hour for critical issues and global regional centers. A searchable knowledge base, integration guides and an active LIVEcommunity forum provide self-help resources. Proactive playbook health checks and free enablement sessions are not standard, so customer support aligns with level-4 in the rubric.