Securing your systems is now easier with Palo Alto Threat Protection
September 05, 2025

Securing your systems is now easier with Palo Alto Threat Protection

irfan shaik | TrustRadius Reviewer
Score 9 out of 10
Vetted Review
Verified User

Overall Satisfaction with Palo Alto Networks Advanced Threat Prevention

The main reason to use Palo Alto Networks in our organisation it acts as key component of our cyber security strategy to detect and block advanced threats. It also focus on the critical endpoints to provide real time inspection of the traffic ensuring that malicious activities are identified and prevented before they can cause damage. It has played a vital role in resolving various business problems like protection against zero day threats which means this acts a barrier for any real time issue that block the enterprise system. Earlier in the cloud there was no such specific threat blocking mechanism as a part of which multiple jammers has blocked our complete enterprise infrastructure that way blocked the complete site as we have implemented Advance threat protection it helped us in Safeguarding hybrid and cloud environments as more workload running in the cloud we need a consistent way to secure traffic across on premises and cloud environments. Alto Networks Threat prevention provides unified threat prevention capabilities

Pros

  • Preventing the data breaches
  • Safeguarding Hybrid and cloud environments
  • Reducing the false alarms
  • Network Perimeter secuirty

Cons

  • Though ATP performs very well in the cloud environments deep inspection across east west traffic in cloud native architectures need to be strengthned
  • Considering the Palo Alto networks though it seems to be great brand this is considered to be premium subscription add on to Palo Alto firewalls which is considered to be the expensive for mid-size organisations
  • Complexity in configuration and policy management sometimes fine tuning policies to balance security and usability sometime requires trial and error which consumes so much time to make decisions
  • Compliance and Audit readiness
  • Lower Incident response cost
  • Reduced security breaches
  • Operational overhead
  • High intial investment
The reason to give ATP this rating is it specialises in detecting command control traffic whose primary role is to identify unusual outbound traffic patterns which blocks the command control communication and notifies to different security team to take necessary actions. ATP Global protect holds the responsibility of inspecting all the inbound and outbound traffic going to and from corporate system regardless of the network they are on. ATP plays a major role to identify the threats that blocks threats that could lead to data breach also it identifies any malicious file enter the system will be blocked proactively
Earlier we relayed completely on cisco network but we faced serious security breach even after using this tool. As cisco primarily relies on signature based behaviour of detecting the anamoly and the hijackers/attackers has bypassed the validation principle that way an threat has entered our system and data breach has happened to overcome from this kind of situation we relay on ATP which uses inline deep learning and advanced heuristics to detect threats in realtime even before signature exists. But there are some performance overhead has been observed in heavy traffic but new models has optimised but compare to ATP cisco doesnt have that functionality in intrusion detection.

Do you think Palo Alto Networks Advanced Threat Prevention delivers good value for the price?

Yes

Are you happy with Palo Alto Networks Advanced Threat Prevention's feature set?

Yes

Did Palo Alto Networks Advanced Threat Prevention live up to sales and marketing promises?

Yes

Did implementation of Palo Alto Networks Advanced Threat Prevention go as expected?

Yes

Would you buy Palo Alto Networks Advanced Threat Prevention again?

Yes

Securing the cloud workloads which means we had to deploy heavy workloads in the aws and integrate them with different third party saas tools and attackers primarily focus on destroy these web application. Here ATP helps inspecting inbound traffic to cloud hosted apps and outbound connections from SaaS Platform, blocking exploits and malicious file downloads. A real time use case i can say is like the emails that land in to our inbox are all not considered genuine in this situation ATP uses inline deep learning to detect the exploit behaviour and block the file in realtime before it reaches the endpoint/server. Also this focus on major compliance driven environments. But i feel ATP is less appropriate for any mid-size organisations with less than 100 or 200 employees as licensing and subscription costs are high compared to other security tools. Also ATP mechanism of detecting traffic without SSL/TLS decryption is limited.

Comments

More Reviews of Palo Alto Networks Advanced Threat Prevention

  1. Home
  2. Intrusion Detection Systems
  3. Palo Alto Networks Advanced Threat Prevention Reviews
  4. User Review of Palo Alto Networks Advanced Threat Prevention