TrustRadius: an HG Insights company
Back to Overview

Cisco XDR Reviews and Ratings

Rating: 7.8 out of 10
Score
7.8 out of 10
Learn More

Reviews

6 Reviews

Cisco XDR benefits

Rating: 8 out of 10
Incentivized

Use Cases and Deployment Scope

We use Cisco XDR as a central tool in our security platform for centralizing security monitoring and alerting. We have integrated it with about 15 different applications via the native integrations. For about the last 6 months it has been our primary tool for evaluating the impact of security incidents including ones we wouldn't have previously discovered.

Pros

  • Automatic incident summarization
  • Integration with popular third party applications
  • Native support for most Cisco tools

Cons

  • Better integration with Palo Alto firewalls

Likelihood to Recommend

It is well suited for environments that have a large mix of Cisco products and popular software packages. As a SaaS application it doesn't require much for a local footprint but at the same time won't work in an environment that requires your security tools to store data or run locally.

VU
Verified User
Engineer in Information Technology (201-500 employees)
Vetted Review
Cisco XDR
1 year of experience

Cisco XDR

Rating: 7 out of 10
Incentivized

Use Cases and Deployment Scope

We use Cisco XDR to detect threats and correlate suspicious activities to identify threat actors and where these activities are in the MITR kill chain. We use it for forensics when initiating an incident response team in response to a threat. Our 24/7 SOC leverages it to have visibility.

Pros

  • Providing visibility for threat risks
  • Detecting holes in the network that have vulnerabilites
  • Flagging ddos events and kicking off an incident response

Cons

  • XDR can improve with more integrations
  • XDR can be improved with more programmability for the end user
  • XDR can be improved with more options to mitigate events

Likelihood to Recommend

I enjoy how well it integrates Cisco systems to provide a single pane of glass for security events that are easily digestible to the SOC. However there is room for improvement to integrate more seamlessly with non Cisco products. XDR is great to identify where malicious processes are in the MITR kill chain and is useful for threat analysis.

VU
Verified User
Engineer in Engineering (10,001+ employees)
Vetted Review
Cisco XDR
4 years of experience

Loving my Cisco XDR

Rating: 10 out of 10
Incentivized

Use Cases and Deployment Scope

Cisco XDR is my SOC in a box. Cisco XDR simplifies integrations allowing me to have access to multiple streams of data in one place. We use Cisco XDR to enhance our security posture.

Pros

  • Setup
  • Integrates with other products
  • Constantly evolving

Cons

  • Cisco XDR could be more customizable
  • An option for manual incident creation would be of use
  • Better UI for workflows

Likelihood to Recommend

It caught and made us aware of some configuration changes that needed to take place, proving its value almost immediately

JG
Jefferson Green
Information Security Analyst in Information Technology at Henrico County (5001-10,000 employees)
Vetted Review
Cisco XDR
1 year of experience

Cisco XDR Overview

Rating: 8 out of 10
Incentivized

Use Cases and Deployment Scope

We use Cisco XDR solutions as the first line of device protection for our clients. Through Cisco XDR, we can manage and monitor devices and work proactively. In Brazil, the cost and integration of the solution with SIEM tools are still high, and other more affordable solutions compete in the market. Let me know if you'd like any refinements or adjustments!

Pros

  • Visibility
  • Orientation
  • Power to make decision

Cons

  • Automation
  • Integration
  • Visibility

Likelihood to Recommend

As I mentioned earlier, in Brazil, the cost of addition is still expensive. Despite providing great visibility, there are other tools on the market with lower costs. The big advantage is the integration with the Cisco ecosystem.

The Umbrella offers, reduces operational complexities and eliminates the challenges of multiple vendors.

VU
Verified User
C-Level Executive in Sales (201-500 employees)
Vetted Review
Reseller
Cisco XDR
1 year of experience

Cisco XDR very good IR tool

Rating: 9 out of 10
Incentivized

Use Cases and Deployment Scope

In our organization, Cisco XDR is the main tool to manage security incidents and perform IR (incident response)

Pros

  • In my experience, Cisco XDR Detects malicious trajectory well
  • In my opinion, Cisco XDR Identifies all the assets involved well

Cons

  • In my opinion, there is room for improvement in Cisco XDR with Better integration with Splunk

Likelihood to Recommend

If asked, I think I am likely to recommend Cisco XDR to a colleague because, in my experience, Cisco XDR Identifies all the Kill chain

FM
Florentino Martinez Gragera
IT speialist in Information Technology at EUIPO (1001-5000 employees)
Vetted Review
Cisco XDR
3 years of experience

Provide a single pane of glass

Rating: 5 out of 10
Incentivized

Use Cases and Deployment Scope

To supplement my SIEM

Pros

  • Provide Customisable Dashboards
  • API based integration
  • Search using natural language

Cons

  • Provide proactive incident notification using AI
  • Not all incidents do appear in Cisco XDR
  • Behaviour base incident creation

Likelihood to Recommend

Integrate with Cisco Secure Endpoint and identify lateral movement and C&C traffic

VU
Verified User
Director in Customer Service (201-500 employees)
Vetted Review
Cisco XDR
3 years of experience