Cisco XDR Review Insights

Score6.9 out of 10

6 Reviews and Ratings

Back to Reviews

Insights from Cisco XDR Reviewers

Based on 5 verified reviews published in the last 18 months

What positive or negative impact (i.e. Return on Investment or ROI) has Cisco XDR had on your overall business objectives?

5 answered

This analysis synthesizes 5 recent reviews to assess the return on investment (ROI) of Cisco XDR. While the sample size limits definitive conclusions, the reviews suggest a positive impact on business objectives, primarily through accelerated incident detection and improved analyst efficiency. Specifically, 2 of 5 reviewers highlighted the product's ability to accelerate incident detection and reduce the time to detect malware. Another 2 reviewers noted that Cisco XDR saves analysts time and contributes to operational efficiency. No negative impacts on business objectives were mentioned in the available reviews.

Saves analysts time

2 mentions

Reviewers also appreciate the time-saving aspects of Cisco XDR for security analysts. Two reviewers explicitly stated t…

Reviewers also appreciate the time-saving aspects of Cisco XDR for security analysts. Two reviewers explicitly stated that the product saves their analysts time and contributes to operational efficiency. This suggests that the platform streamlines workflows and reduces the manual effort required for security tasks.

Accelerated incident detection

2 mentions

A significant benefit reported by reviewers is the acceleration of incident detection. Two out of five reviewers specif…

A significant benefit reported by reviewers is the acceleration of incident detection. Two out of five reviewers specifically mentioned this capability, indicating that Cisco XDR helps reduce the time needed to identify and address malware threats. This faster detection is seen as a key factor in improving overall security posture.

Besides Cisco XDR, what other software do you regularly use? How likely would you be to recommend it to a friend or colleague?

5 answered

This analysis synthesizes 5 recent product reviews to identify software solutions commonly used alongside Cisco XDR and the likelihood of reviewers recommending them. Due to the small sample size, findings should be interpreted as directional rather than definitive. Reviewers mentioned Cisco Secure Endpoint and Cisco Firepower alongside Cisco XDR. Cisco Secure Endpoint was mentioned by 3 of 5 reviewers. Cisco Firepower was mentioned by 2 of 5 reviewers.

Cisco Secure Endpoint

3 mentions

Cisco Secure Endpoint was mentioned by 3 of the 5 reviewers. These reviewers use Cisco Secure Endpoint alongside Cisco…

Cisco Secure Endpoint was mentioned by 3 of the 5 reviewers. These reviewers use Cisco Secure Endpoint alongside Cisco XDR. Due to the limited data set, specific reasons for using Cisco Secure Endpoint cannot be determined.

Cisco Firepower

2 mentions

Cisco Firepower was mentioned by 2 of the 5 reviewers. These reviewers use Cisco Firepower alongside Cisco XDR. Due to…

Cisco Firepower was mentioned by 2 of the 5 reviewers. These reviewers use Cisco Firepower alongside Cisco XDR. Due to the limited data set, specific reasons for using Cisco Firepower cannot be determined.

Describe how you use Cisco XDR in your organization. What are the business problems the product addresses and what is the scope of your use case?

5 answered

This report synthesizes 5 recent reviews to analyze how organizations are using Cisco XDR, focusing on the business problems the product addresses and the scope of use cases. Reviewers most frequently mention using Cisco XDR for incident management and response (3 of 5 reviewers). Two reviewers cite its role in enhancing their overall security posture and for device management and monitoring. However, one reviewer notes that the cost and integration with SIEM tools in Brazil are high, suggesting that affordability may be a concern in some markets.

Incident Management and IR

3 mentions

A majority of reviewers (3 of 5) highlight Cisco XDR's importance in incident management and response. They use it as a…

A majority of reviewers (3 of 5) highlight Cisco XDR's importance in incident management and response. They use it as a primary tool for managing security incidents, detecting threats, correlating suspicious activities, and identifying threat actors. It also plays a role in forensics when initiating an incident response team.

Security Posture Enhancement

2 mentions

Two reviewers emphasize Cisco XDR's ability to enhance their security posture. One describes it as a 'SOC in a box' for…

Two reviewers emphasize Cisco XDR's ability to enhance their security posture. One describes it as a 'SOC in a box' for its simplification of integrations and unified access to multiple data streams. The other simply states its use for improving overall security.

Device Management and Monitoring

2 mentions

Two reviewers mention using Cisco XDR for device management and monitoring. One reviewer uses it as the first line of d…

Two reviewers mention using Cisco XDR for device management and monitoring. One reviewer uses it as the first line of device protection for clients. However, another reviewer notes that while it enables proactive device management and monitoring, the cost and integration challenges in Brazil, make it less competitive compared to more affordable solutions.

Please provide some detailed examples of areas where Cisco XDR has room for improvement.

5 answered

This report analyzes five recent reviews to identify areas for improvement in Cisco XDR. A key area centers on integrations with other security tools. Three of the five reviewers mentioned the need for better or more integrations. For example, one reviewer specifically cited a desire for "Better integration with Splunk." Another area of suggested improvement, cited by two reviewers, is the ability to manually create incidents and the desire for behaviour based incident creation. These capabilities would provide users with more control and flexibility in managing security events.

Improve integrations

3 mentions

Three of the five reviewers expressed a need for improved or expanded integrations with other security tools. Reviewers…

Three of the five reviewers expressed a need for improved or expanded integrations with other security tools. Reviewers specifically mentioned the desire for better integration with tools like Splunk. The lack of comprehensive integrations appears to limit the effectiveness and usability of the XDR platform for some users.

Improve incident creation

2 mentions

Two of the five reviewers suggested improvements related to incident creation. One reviewer specifically requested "An…

Two of the five reviewers suggested improvements related to incident creation. One reviewer specifically requested "An option for manual incident creation," while another mentioned "Behaviour base incident creation." These requests suggest a desire for more flexible and automated incident management capabilities within the XDR platform.

Please provide some detailed examples of things that Cisco XDR does particularly well.

5 answered

This report synthesizes 5 recent reviews to identify areas where Cisco XDR performs well. Reviewers positively mention its visibility and detection capabilities, with 3 of 5 reviewers highlighting its ability to provide visibility into threat risks and detect malicious activity. Two reviewers also praised its integration capabilities, noting its ability to integrate with other products through API-based integration. Given the small sample size, these findings should be interpreted as directional indications rather than definitive conclusions.

Visibility and Detection

3 mentions

A majority of reviewers, 3 out of 5, specifically call out the visibility and detection capabilities of Cisco XDR as st…

A majority of reviewers, 3 out of 5, specifically call out the visibility and detection capabilities of Cisco XDR as strengths. Reviewers appreciate the product's ability to provide visibility into potential threat risks and its effectiveness in detecting malicious trajectories, suggesting it aids in identifying and understanding security threats.

Integration and Setup

2 mentions

Two reviewers highlight the integration capabilities of Cisco XDR as a positive aspect. They specifically mention its a…

Two reviewers highlight the integration capabilities of Cisco XDR as a positive aspect. They specifically mention its ability to integrate with other products, particularly through API-based integration, suggesting that it can be seamlessly incorporated into existing security infrastructures.