29 Ratings
<a href='https://www.trustradius.com/static/about-trustradius-scoring' target='_blank' rel='nofollow noopener'>trScore algorithm: Learn more.</a>
Score 8.1 out of 100
15 Ratings
<a href='https://www.trustradius.com/static/about-trustradius-scoring' target='_blank' rel='nofollow noopener'>trScore algorithm: Learn more.</a>
Score 9 out of 100

Likelihood to Recommend

Cisco Secure Web Appliance

We have both scenarios where we can describe that. For example, in the HQ, where we have about 3,000 users, Cisco IronPort Web Security Appliance is the ideal solution, because we can consolidate all the Internet access, policies, rules, etc. in the same box. However, if you have small offices with a few users, it's hard to justify one big and expensive box that could cost more than the whole office infrastructure.
Eduardo Viero | TrustRadius Reviewer

Palo Alto Networks Cortex XDR

In a scenario where EDR is a requirement or necessity XDR performs well with or without a SIEM. There are millions of events and logs to parse through and XDR is capable of handling the large load. On top of the large data that is being parsed, features such as Live Terminal, File Retrieval, OS support, and general Metrics, the tool has room to grow and provide a lot for a Security team or organization. Incident Response is a great example of how XDR can shine
Anonymous | TrustRadius Reviewer

Feature Rating Comparison

Incident Response Platforms

Cisco Secure Web Appliance
Palo Alto Networks Cortex XDR
8.9
Company-wide Incident Reporting
Cisco Secure Web Appliance
Palo Alto Networks Cortex XDR
8.7
Integration with Other Security Systems
Cisco Secure Web Appliance
Palo Alto Networks Cortex XDR
8.1
Attack Chain Visualization
Cisco Secure Web Appliance
Palo Alto Networks Cortex XDR
7.8
Centralized Dashboard
Cisco Secure Web Appliance
Palo Alto Networks Cortex XDR
9.3
Machine Learning to Prevent Incidents
Cisco Secure Web Appliance
Palo Alto Networks Cortex XDR
9.3
Live Response for Rapid Remediation
Cisco Secure Web Appliance
Palo Alto Networks Cortex XDR
10.0

Pros

Cisco Secure Web Appliance

  • SMA gave us central control over multiple servers, simplifying management.
  • Performance of the Appliance VM exceeded that of our old physical appliance-based solution.
  • Convenient licensing for virtualized environments that allows easy scaling.
Anonymous | TrustRadius Reviewer

Palo Alto Networks Cortex XDR

  • Malware prevention
  • Exploit prevention
  • EDR and XDR
  • Ransomware protection
  • Disk encryption (with Bit Locker and File Vault)
  • Device control features
  • Analytics
  • Investigation
  • Incident management
  • Forensics
  • NTA--network traffic analysis
  • UBA/UEBA--user entity behavior analysis
Darshil Sanghvi | TrustRadius Reviewer

Cons

Cisco Secure Web Appliance

  • The default metrics on the dashboard visualization are not that useful. It is not much customizable too. Some of the dashboard features like load, volume, etc. can have a hide option.
  • The false negatives are more than false positives. A lot of the times, it verdicts the same email as malicious and non-malicious. This can be reduced.
Kuntal Das | TrustRadius Reviewer

Palo Alto Networks Cortex XDR

  • Showing the significance of behavior based alerts. It is hard to understand what is implicated by these alerts.
  • Rollout to Macs was a challenge for us because of the permissions that have to be allowed. Endpoint management could have helped with this.
  • Still waiting for support in the Palo Alto Splunk app for logs from Cortex.
Allan Crittenden Edwards | TrustRadius Reviewer

Usability

Cisco Secure Web Appliance

Cisco Secure Web Appliance 9.0
Based on 1 answer
Because it's one of those products you almost don't realize it exists from the end user. From the administrator perspective, you can do everything on its web interface and it's very intuitive to manage, once you know the concepts behind identities, acls, etc. Also, once you build the control structure, I mean, you link 'local' groups with your own Active Directory groups, as we did here, you don't need to be managing those things on the appliance itself.
Eduardo Viero | TrustRadius Reviewer

Palo Alto Networks Cortex XDR

Palo Alto Networks Cortex XDR 9.0
Based on 1 answer
Cortex has a beautiful dashboard that is fairly easy to configure once you understand how policies work. My suggestion would be to definitely watch some of their training videos on copying and modifying the default policies before attempting to set anything up. But once you know, it is easy. Using endpoint management software (SCCM/JAMF/etc) for deployment is a must.
Allan Crittenden Edwards | TrustRadius Reviewer

Support Rating

Cisco Secure Web Appliance

Cisco Secure Web Appliance 6.5
Based on 4 answers
Our experience with Cisco's support was terrible. Other than the fact that they don't respond to service-related emails with urgency, they also keep on changing the policies that affected us. Recently, they came up with a new look for the same software, which was insanely slow. Renewal of keys for the old interface took months. Overall, the support was not very friendly from the users' point of view.
Kuntal Das | TrustRadius Reviewer

Palo Alto Networks Cortex XDR

Palo Alto Networks Cortex XDR 8.0
Based on 1 answer
Cortex XDR ranks high for its abilities in prevention. We do see malware that Cortex is able to stop that is undetected by Microsoft's endpoint protection. But it seems comparable products such as Crowdstrike may do better in providing details around alerts. Without this context we can't mount a more thorough response to alerts because we don't have the appropriate information to do so.
Allan Crittenden Edwards | TrustRadius Reviewer

Alternatives Considered

Cisco Secure Web Appliance

At home I have a McAfee service that does similar tasks and helps manage the users of my internet. McAfee seems more user friendly and easier to set exceptions.
Anonymous | TrustRadius Reviewer

Palo Alto Networks Cortex XDR

XDR is a solid tool against other security suites. Since XDR goes beyond a EDR tool it's possible to say it can be a replacement for other EndPoint Tools. Although there is a lack of sandboxing binaries the capabilities to customize and tune the tool are vast. XDR is considered a Next Gen product and along with it's Incident Response Features and integration Palo Alto XDR was selected for these reasons and it's ability to work well across many devices
Anonymous | TrustRadius Reviewer

Return on Investment

Cisco Secure Web Appliance

  • Security! Security! Security! We are financial company that work with very sensitive information. A lot of unsafe traffic was blocked on the Cisco IronPort WSA over years of using it. We did not earn on it but absolutely sure that we did not lose 'gazillion' of dollars being infected or scammed.
  • Easy to configure and use, no need to teach new personnel how work with this product (hopefully saving time = saving money).
  • Unfortunately the price of license subscription made financial managers push IT dept. to look for something cheaper.
Valeryi Mezentsev | TrustRadius Reviewer

Palo Alto Networks Cortex XDR

  • After putting Palo Alto Networks Cortex XDR on a user's system, users came back with a positive response that there are no performance issues now.
  • We are able to track and control granular suspicious and malicious activities.
  • Web controls are missing, which if they would have been there would have been very helpful.
Darshil Sanghvi | TrustRadius Reviewer

Pricing Details

Cisco Secure Web Appliance

General

Free Trial
Free/Freemium Version
Premium Consulting/Integration Services
Entry-level set up fee?
No

Palo Alto Networks Cortex XDR

General

Free Trial
Free/Freemium Version
Premium Consulting/Integration Services
Entry-level set up fee?
No

Rating Summary

Likelihood to Recommend

Cisco Secure Web Appliance
6.8
Palo Alto Networks Cortex XDR
8.1

Usability

Cisco Secure Web Appliance
9.0
Palo Alto Networks Cortex XDR
9.0

Support Rating

Cisco Secure Web Appliance
6.5
Palo Alto Networks Cortex XDR
8.0

Add comparison