Palo Alto Networks Cortex XSOAR vs. Watchguard Endpoint Security

XSOAR is well suited for phishing detection and response. Phishing alerts are as much of a
problem today as they were decades ago. This is because: ●Attackers Can leverage automation to launch high-quantity phishing attacks with the click
of a button.
●Spear Phishing attacks are sophisticated and sometimes indistinguishable from real
emails, resulting in compromise through human error.
●Security Teams aren’t able to follow set processes while responding to phishing alerts.
They must coordinate across email inboxes, threat intel, NGFW, ticketing, and
other tools. Each tool has different consoles, data conventions, and contexts,
making it difficult for security teams to fill in the gaps while minimizing
errors. XSOAR is less suited for analyzing traffic.

Incentivized

I can only speak to WatchGuard Endpoint Security being well suited for us. Because we have over 350 devices (tablet, laptops, desktops, phones) on our network, this product has been a great fit, especially when paired wih our Firebox m390. Again, the protection is fast, low overhead, and virtually undetectable that it is running all the time.

Incentivized

• Automation with immediate security responses.
• Comprehensive phishing protection and increased email protection.
• Analysis and reporting feature.
• Intuitive and easy-to-view panels.
• Alerts by email and sms of incidents for the administration.
• Centralized monitoring.

Incentivized

• Threat Detection.
• Evaluation times for unknown executables in the cloud.
• User-friendly and intuitive interface.
• Resource consumption on the endpoint.
• Simple and visual automatic reports.
• Easy-to-access cloud platform without local resources.
• Threat alert and ability to schedule automatic actions.
• Possibility of remotely blocking equipment and taking automatic or manual actions.

Incentivized

• The XSOAR bot creates a lot of noise on the summary page of any XSOAR incident. Although the filter is available to reduce the view, by default this should not be visible cluttering the whole scenario.
• The interface has too much data on a single pane. I would love to have many buttons to just click and do stuff.
• Also, I would love to have search areas more interactive and easier to navigate.

• White listing scripts are either all or none, not able to white list a particular script
• There is a delay occasionally from when an endpoint recognizes a potential threat to when that is reported in the cloud management tool
• Other than those two, Watchguard Endpoint Security has been great - easy to deploy, manage, support and great at protection

Incentivized

It has proven to be far to valuable and effective to consider getting rid of it. Until something better comes along, this is staying in our product stack.

Incentivized

The ease of use, pricing, support, reliability, and quality of the product. Panda / WatchGuard products are highly rated, priced right and easy to maintain. All of this make it very easy to renew and purchase new licenses for us and our clients.

Incentivized

Easy and intuitive MSP management portal to manage all of your clients from a single pane of glass. Policies can be pushed down globally or individually based on needs. The client portal allows access to their tenant information and installs only which is nice if you are working with clients who might have an internal person or an IT team that also wants access to things to manage themself.

Incentivized

The software is 100% managed on a cloud platform that can be managed via an account even if they are not present within the company network where the software is installed, I even always opened the control panel on the browser of my smartphone to monitor the situation.I have never experienced any abnormal software crashes

Incentivized

The only annoyance I complain, if we want to be picky, is the fact of the constant disconnections from the control panel.Every about 4 hours the account logs out even if I set the "remember this device" flag; having said that I have not noticed neither slowdowns nor conflicts with other software

Incentivized

I gave it a 10 because I compare it to air conditioning. I need it to work every day, 24/7. I need it to be reliable and not something that requires a ton of interaction from staff to make sure it works every day. In addition, I should be able to run other things at my house when the AC is on. Panda fits that description.

Trainer was excellent, knew this product in-depth.

Incentivized

The training was very helpful. It demonstrated how to configure the service for initial install, items to monitor, and how to set up for ongoing protection. Hands on training is more helpful but this is a good starting point

Incentivized

It was much easier than we all anticipated.

Incentivized

Implementation shouldn't present any problems in standard office environments. In environments with development teams, however, caution is needed. If zero trust is enabled, mechanisms must be in place to ensure that internal software isn't classified as a false positive (software certificate, exception folder, etc.)

Incentivized

The quantity of integrations with security solutions is highest in Palo Alto Solution. The capacity to identify anomalous events is much better in Palo Alto Networks Cortex XSOAR. The flexibility of increased storage area is better as well. The dashboard is very intuitive about showing the most important incidents and how to resolve them.

Incentivized

Despite offering great value for money, comparing Sophos' offering to WatchGuard Endpoint Security we find Sophos' offering is far superiour due to it's support system, the distributors it uses (apart from Arrow), it's management console, the resource-light application and, primarily, it's ability as an Endpoint Security program. Though the fact we offer both solution proves that WatchGuard Endpoint Security has it's place in an MSP's portfolio.

Incentivized

With the implementation of watchguard (at the beginning Panda Endpoint, but it is the same) I was able to insert in the control panel all the unauthorized software previously installed by colleagues without any authorization from the various department heads.Now any licensed software goes into lockdown and can be unlocked from the control panel

Incentivized

• Demisto has Eased malware analysis and threat hunting
• With Demisto, it is simple to create playbooks and scripts
• This is helped automate policy configurations on our PA firewalls through Panorama

Incentivized

• It has allowed me to add clients without increasing IT staffing
• Its price point is very competitive for my company and my client's companies
• Its ability to prevent ALL successful attacks on my company and that of my clients over the last 23+ years has immeasurable value in both confidence and dollars

Incentivized