Azure Logic Apps vs. Palo Alto Networks Cortex XSOAR

Microsoft Azure Logic Apps was a perfect solution for us to integrate the apps and products we used in our business to create automated workflows which were also complex and very advanced. This was a very new feature for us, and also it reduced our software costs massively and also saved us a lot of time. With the crisis, we were in back then Azure turned out to be the best cost-friendly solution because we only had to pay for what we used!

Incentivized

XSOAR is well suited for phishing detection and response. Phishing alerts are as much of a
problem today as they were decades ago. This is because: ●Attackers Can leverage automation to launch high-quantity phishing attacks with the click
of a button.
●Spear Phishing attacks are sophisticated and sometimes indistinguishable from real
emails, resulting in compromise through human error.
●Security Teams aren’t able to follow set processes while responding to phishing alerts.
They must coordinate across email inboxes, threat intel, NGFW, ticketing, and
other tools. Each tool has different consoles, data conventions, and contexts,
making it difficult for security teams to fill in the gaps while minimizing
errors. XSOAR is less suited for analyzing traffic.

Incentivized

• Connecting to different services using OOB connectors
• Support for HTTP connectors which enables user to leverage RestAPIs
• Readability, i.e., it looks just like a Visio diagram. Even managers or HRs can have a look and get to know what's happening
• It's a Programmer's Lego. It's fun connecting them at the same time getting the work done

Incentivized

• Automation with immediate security responses.
• Comprehensive phishing protection and increased email protection.
• Analysis and reporting feature.
• Intuitive and easy-to-view panels.
• Alerts by email and sms of incidents for the administration.
• Centralized monitoring.

Incentivized

• It falls short of alerting capabilities.
• Microsoft Azure should be unclouded with its pricing. We don't always know how much an inclusion will affect the monthly price. So we have to speculate where we are with the price and if we can afford to include another asset.

Incentivized

• The XSOAR bot creates a lot of noise on the summary page of any XSOAR incident. Although the filter is available to reduce the view, by default this should not be visible cluttering the whole scenario.
• The interface has too much data on a single pane. I would love to have many buttons to just click and do stuff.
• Also, I would love to have search areas more interactive and easier to navigate.

It has proven to be far to valuable and effective to consider getting rid of it. Until something better comes along, this is staying in our product stack.

Incentivized

I found them easy to use and adapt to different scenarios, from Azure management to link processes between REST APIs. Together with Function Apps, they're probably the most useful resource type for Azure. Today, I use them in production, and that's a key component: stable, secure, easy to manage, and maintain.

Incentivized

Azure Logic Apps are backed by Azure and Microsoft. There is a wealth of information on the internet about both of these platforms. In addition to this Microsoft has a huge bush to using this platform and have offered many solutions and support options to the user. The only drawback is that it is a fairly new platform so the 3rd party information tends to be lacking.

Incentivized

It was much easier than we all anticipated.

Incentivized

This is very dependent on the line of work you are in and the unique company requirements, as is the case with everything. We utilize Azure Logic Apps for all of our computing solutions within our domain, and it has always worked flawlessly. One of the simplest clouds to set up and use is by far the most popular.

Incentivized

The quantity of integrations with security solutions is highest in Palo Alto Solution. The capacity to identify anomalous events is much better in Palo Alto Networks Cortex XSOAR. The flexibility of increased storage area is better as well. The dashboard is very intuitive about showing the most important incidents and how to resolve them.

Incentivized

• Moving to Serverless Computing obviously makes the organization get rid of dependent Infra.
• ROI can be seen immediately as the required infra can be decommissioned after a successful quarter run.
• Being deployed as a single entity or single app on Azure Logic Apps, Organizations need to be more careful with controls applied to meet compliance and security posture.

Incentivized

• Demisto has Eased malware analysis and threat hunting
• With Demisto, it is simple to create playbooks and scripts
• This is helped automate policy configurations on our PA firewalls through Panorama

Incentivized