Cortex XSOAR 2026: Benefits, Features & Pricing

Software Advice offers objective insights based on verified user reviews and independent product and market research. When our advisors match you to a software provider, we may earn a referral fee.

How Software Advice ensures transparency

Software Advice lists all providers across its website—not just those that pay us—so that users can make informed purchase decisions. Users can talk to our advisors for free to receive software recommendations matching their needs. Software providers pay us for sponsored profiles to reach users interested in their products.

How Software Advice verifies reviews

Software Advice carefully verified over 2 million reviews to bring you authentic software experiences from real users. Our human moderators verify that reviewers are real people and that reviews are authentic. They use leading tech to analyze text quality and to detect plagiarism and generative AI.

Independent research methodology

Researchers at Software Advice use a mix of verified reviews, independent research, and objective methodologies to bring you selection and ranking information you can trust. While we may earn a referral fee when you visit a provider through our links or talk to an advisor, this has no influence on our research or methodology.

On this page

Overview
Pricing and Plans
Features
User Reviews

Overview

Cortex XSOAR

4.8

(4)

Pricing

Pricing available upon request

About Cortex XSOAR

Cortex XSOAR is a security orchestration, automation, and response (SOAR) solution that helps businesses correlate incidents, aggregate multi-source feeds and conduct malware analysis, among other processes on a centralized platform. It allows staff members to use automated and purpose-built playbooks to parse, de-duplicate and manage indicators from multiple external sources.

Cortex XSOAR enables team members to manage incident response, ransomware remediation and threat intelligence across on-premise, hybrid and cloud-native environments. It lets employees conduct real-time investigations, solve emergent threats, manage authentication protocols, prioritize alerts and more from within a unified platform. Additionally, it allows business leaders to utilize customizable dashboards to monitor incidents based on multiple criteria, such as severity, indicator source and SLA.

Cortex XSOAR enables organizations to integrate the platform with several third-party solutions. It also provides iOS and Android mobile applications, allowing employees to track security incidents remotely. Pricing is available on request and support is extended via live chat, documentation, phone, email and oth...

Cortex XSOAR Screenshots

Cortex XSOAR Pricing and Plans

Starting price: Pricing available upon request

Free Trial

Free Version

Cortex XSOAR Features

Popular features found in Cloud Security
Access Controls/Permissions
Alerts/Notifications
Behavioral Analytics
Compliance Management
Incident Management
Real-Time Monitoring
Reporting/Analytics
Threat Intelligence
More features of Cortex XSOAR
Data Visualization
Monitoring
Process/Workflow Automation
Real-Time Analytics
Real-Time Data
Real-Time Notifications
Reporting & Statistics
Risk Alerts
Search/Filter
Third-Party Integrations
Visual Analytics

Cortex XSOAR User Reviews

Overall Rating

4.8

Ratings Breakdown

75%

25%

Secondary Ratings

Ease of Use

4.5

Value for money

4.5

Customer support

4.7

Functionality

4.8

Have you used Cortex XSOAR and would like to share your experience with others?

Darshana K.

Verified reviewer

Computer & Network Security

11-50 employees

Used daily for less than 6 months

Review source

Reviewed August 2019

SOAR at its very best!

Tailored response playbooks are utilized with Demisto in case a suspicious event occurs. Overall, it helps the team focus on proactive security objectives.

Ratings Breakdown

Ease of use

Value for money

Customer support

Functionality

Pros:

The classic war room concept has been stationed here with impressive response capabilities. Analysts can collaborate on the commands run in real-time, significantly increasing the chances of mitigation.

Cons:

The only concern for the time being should turn out to be the pricing options, but with endless integrations and to-the-point monitoring it provides, there is not much of an argument.

Giuseppe T.

Verified reviewer

Information Technology and Services

10000+ employees

Used daily for less than 6 months

Review source

Reviewed June 2023

Great SOC Tool

Great tool for SOC monitoring, very easy to use and comprehensive.

Ratings Breakdown

Ease of use

Value for money

Functionality

Pros:

XSOAR allows SOC Teams to monitor all security alerts in one place. Easy to use, fast analysis of security alerts, integration with other tools such as Crowdstrike and VirusTotal. Task automation is also great.

Cons:

Nothing wrong with the tool, as it has many features already that are very useful for cybersecurity analysts.

Shubham J.

Verified reviewer

Computer & Network Security

201-500 employees

Used monthly for less than 12 months

Review source

Reviewed January 2025

One place solution to your organization's security queries.

Overall Cortex XSOAR is a capable security orchestration and automation tool. Our integration with NGFW, XDR and cloud proxy has managed us to find a one place solution to every security related queries of our organization.

Ratings Breakdown

Ease of use

Value for money

Customer support

Functionality

Pros:

Cortex XDR compliments with this tool so well, seamless integration and also Palo Alto supports more than 150 more integrations with other security tools. Features worth noting are Dashboard and incident layout customization that goes with user or organization specific needs. Pre-Process rules is a good feature that helps reduce the alert noise. Updated threat intel.

Cons:

Playbook development has a larger learning curve also troubleshooting is tricky. Incident classification goes wrong sometime, the remediation in turns becomes ineffective classification and mapping is done wrong.

Eduardo R.

Verified reviewer

Oil & Energy

501-1000 employees

Used monthly for less than 6 months

Review source

Reviewed July 2023

Great for Automation