Palo Alto Networks are a good option for large global enterprises looking for a solution with integrated SD WAN and SASE and strong cloud capabilities. The solution leverages machine learning to simplify network operations, removing the need for manual control. Further, the company are a good option for those looking for strong access to cloud vendors such as AWS, Azure and Google Cloud. However, caution may be taken as Palo Alto do not offer WAN acceleration and optimization - client’s looking for these services may need to look elsewhere.
Palo Alto's solution has very strong cloud connectivity (including cloud security) and security (SASE, XDR) capabilities. Their integrated SD WAN and SASE capabilities make them an ideal choice for large global enterprises with Machine Learning (ML) capabilities to simplify network operations - making them ideal for those with small or preoccupied IT teams. However, although Palo Alto's solution is strong, previous customers state that the solution can be very expensive. Further, as with a majority of vendors, Palo Alto do not support their own backbone (underlay connectivity), but instead use PoPs on third-party cloud platforms (AWS and Google Cloud Platform, for example). This is not necessarily an issue, however clients looking for a vendor provided overlay and underlay solution may not be suited to Palo Alto for this reason.
Author: Netify Research Team
If you have questions about Palo Alto Networks and how their capability is aligned to your needs, email the Netify research team. UK: uk@netify.co.uk North America: northamerica@netify.com
(Please use the UK email for ROW - Rest of the World - questions or inquiries)
Request the very latest Palo Alto SD WAN & SASE sales PDF directly from your local account team. Please check your junk folder if not received.
Complete your details to arrange a demo of Palo Alto. You will receive contact requesting available dates and times - please check your junk folder if not received.
Request your local in-country sales contact. You will receive details as soon as possible - please check your junk folder if not received.
Take our 90 second assessment quiz to find out which top 3 vendors or managed providers are a match for your answers.
Palo Alto Networks acquired CloudGenix (a software company founded in 2013) in 2020. The company is headquartered in San Jose, California, North America and offers SD WAN and SASE solutions. The company were awarded “Customer’s Choice” in the 2021 ‘Voice of the Customer’: WAN Edge Infrastructure by Gartner Peer Insights. Palo Alto’s SASE solution is used by over 2500 enterprises globally. As of 20th July 2021, Palo Alto partnered with Google Cloud to provide native threat detection for virtual private clouds through Cloud IDS, a joint network threat detection service. Their Unit 42 team leverages over 200 threat researchers as part of their threat intelligence support to enhance their products and provide services in the case of advanced attacks. Palo Alto Networks was named a Leader in The Forrester Wave™: Enterprise Firewalls, Q4 2022 report. In 2022, Palo Alto Networks entered negotiations to acquire Israeli AppSec operating system developer Cider Security.
List of the pros and cons associated with Palo Alto Networks SD WAN and SASE security.
Consider the points below to compare Palo Alto vs Fortinet vs FireEye SD WAN and SASE security.
Click the service provider logo to find out more about each respective SD WAN and SASE solution.
Palo Alto deliver ‘next generation’ Prisma SD WAN, delivering and connecting all branch services from the cloud. The aim is to replace legacy SD WAN platforms with Palo Alto SD WAN which uses machine learning to simplify overall network operations by eliminating 99% of trouble tickets.
Filter by tag, location, and service type:
(Select any number of tags)
The Prisma Access SASE security solution is designed to replace legacy SASE architectures. The security solution converges next generation SASE and next generation SD WAN into one cloud-delivered platform, securing applications used by workforce users in the branch office, remote or from home. Multiple security products are combined into one integrated service to reduce complexity whilst increasing agility.
Further, as of May/June 2022, Palo Alto has announced two new integrations between themselves and technology companies Infosys and Thales.
The integration between Palo Alto and Thales will allow customers to implement Palo Alto security systems globally, by integrating Thales SafeNet Trusted Access across Palo Alto's Prisma Access, ML-powered NGFW, Cortex XSOAR and GlobalProtect technologies - deploying Thales' zero trust model across Palo Alto's suite of solutions.
Palo Alto and Infosys aim to provide large-scale cybersecurity solutions for global enterprises, whilst securing hybrid cloud environments, all from a single, unified platform. The solution is also able to integrate SASE and Zero Trust and works by delivering network security from Palo Alto across Infosys' global network of Security Operations Centres (SOCs) and will be aimed at large multinational corporations.
In 2022 Palo Alto Networks introduced software-as-a-service (SaaS) Security Posture Management (SSPM) and new SD-WAN appliances (ION 1200-S and ION 3200) to its Prisma secure access service edge (SASE) platform.
As part of SSPM, Palo Alto Networks’ next-generation cloud access security broker (NG-CASB) is fully integrated within the SASE solution. SaaS settings can be viewed and configured via the SASE portal, bringing SASE with CASB and DLP into a unified cloud console, leaving no gaps in security. Features include access to corporate SaaS applications only for legitimate users, threat prevention via inline ML models, continuous application discovery, categorization and control of new and emerging SaaS applications via App-ID™ technology.
The solution includes some of the most extensive API-based coverage of SaaS apps in the industry, and cloud Enterprise DLP protects sensitive data and supports compliance everywhere.
Cortex XDR: Palo Alto's Cortex XDR features Next-Generation Anti-Virus (NGAV), host firewall, USB device control, disk encryption, threat detection driven by machine learning, deep forensics, incident management and automated root cause analysis.
| Cortex XDR Prevent | Cortex XDR Pro | |
| Endpoint Protection | ✓ | ✓ |
| Next-Generation Antivirus | ✓ | ✓ |
| Detection and Response | ✕ | Visibility across virtually all data |
| Forensics | ✕ | Optional |
| Managed Detection and Response | ✕ | Optional |
| Host Insights | ✕ | Optional |
Source: Palo Alto Networks (2022)
Cortex XSOAR: Palo Alto Cortex XSOAR can be hosted, deployed in a multitenant environment or on-premises and enables SecOps workflow and network security automation as well as incident case and threat intelligence management. The machine-learning enabled platform frees up Security Operations Centre (SOC) staff by automating routine tasks and the distribution of changes to enforcement points at scale. Cortex XSOAR features over 750 integrations and 680+ content packs for various security use cases. The solution can also improve the efficiency of human analysts through integrated threat intelligence management, real-time collaboration, incident-specific layouts, war rooms and customizable reporting.
Cortex Xpanse: Provides continual discovery and monitoring of the internet-facing corporate attack surface to find exposures in IT admin system portals, exposed development infrastructure, sensitive business operation applications, remote access service, unencrypted logins and text protocols, insecure file sharing/exchanging services, insecure or abandoned marketing portals, directly exposed Internet of Things (IoT) devices, weak and insecure/deprecated cryptography, and unpatched systems vulnerable to public exploit and end-of-life (EOL) systems.
Cortex XSIAM: Palo Alto's SIEM solution is their proprietary Cortex Extended Security Intelligence and Automation Management (XSIAM) solution. Cortex XSIAM is an autonomous SOC platform leveraging machine-learning-based security analytics, built-in attack surface management capabilities and threat intelligence to ensure proactive security. Cortex XSIAM provides end-to-end threat management across enterprise and cloud security operations from a single platform. The solution delivers threat detection and response, orchestration and automation, UEBA, Network and Cloud analytics, attack surface management, endpoint protection and intelligence, reporting and compliance, threat intelligence management, data foundation and detection analytics.
The Prisma Cloud Security platform offers comprehensive cloud security, which extends to AWS, Azure and Google Cloud. Palo Alto are an AWS partner, offering VM Series Cloud Migration, SD WAN Connectivity to AWS and hybrid cloud. They are a Microsoft Azure Gold partner in Application Development and Cloud Platform, and a Silver partner in Security. They also partner with Google Cloud and offer Managed Cloud Security through a partnership with Telus.
Palo Alto do not provide WAN optimization or acceleration. However, Quality of Service (QoS) and application routing services are available to improve performance.
Users that work from home are supported via Palo Alto’s Okyo Garde appliance. The device is available to both Enterprise as well as Home and Small business. The Enterprise edition provides teleworking staff with an easy-to-use and secure extension of the corporate network. The device uses Zero Trust access and multi-layered protection to deliver enterprise grade security to corporate devices on the home network. The lack of network isolation at an employee’s home and the inability to configure VPN or agents to some corporate devices means that the home environment becomes a significant hazard as the enterprise network becomes vulnerable to cyberattack or loss of sensitive data if an employee’s network is inadequately secured. Okyo Garde offers high performance corporate segments through the use of a mesh-enabled Wi-Fi 6 system and multi layer protection for all corporate devices on the network whilst being orchestrated through a single pane of glass. The home network becomes integrated with Prisma Access to provide SASE security without the need for a datacenter and a minimal deployment time to allow remote workers and IT administrators to attend to other tasks. An employee using the Okyo Garde enterprise edition is also able to set up an optional subscription to secure their own personal home network at no additional cost.
Palo Alto is available as a managed service through qualified Managed Security Service Providers (MSSP).
Palo Alto offer customers access to their Customer Support Portal, where assets and support cases can be registered and managed, questions can be answered and the Live Community can be accessed.
Below is a table displaying the main focus points of the Palo Alto Networks Service Level Agreement (SLA).
Support Plans and Services offered:
Platinum | Premium | Standard | |
Online support | Yes - 24x7x365 | Yes - 24x7x366 | Yes - 24x7x367 |
Telephone support | Yes - 24x7x365 | Yes - 24x7x365 | No |
Response Times | Platinum | Premium | Standard |
Severity 1 - Critical Product is down, critically affects customer environment. No workaround available. | ≤ 15 minutes | ≤ 1 hour | ≤ 2 hours |
Severity 2 - High Product is impaired, customer production not affected. Support is aware of the issue and a workaround is available. | ≤ 30 minutes | ≤ 2 hours | ≤ 4 hours |
Severity 3 - Medium A Product function has failed, customer production not affected. Support is aware of the issue and a workaround is available. | ≤ 2 hours | ≤ 4 hours | ≤ 12 hours |
Severity 4 - Low Non-critical issue. Does not impact customer business. Feature, information, documentation, how-to and enhancement requests from customer. | ≤ 4 hours | ≤ 8 Business hours | ≤ 48 hours |
Additional Services | Platinum | Premium | Standard |
Premium United States Government (“USG”) Support | N/A | Yes, if eligible | N/A |
Security Assurance | Yes, if eligible | Yes, if eligible | N/A |
Expert Assistance | Yes, if eligible | N/A | N/A |
Focused Services including Plus and Elite tiers | Optional, if eligible | Optional, if eligible | N/A |
Hardware RMA | 4-hr Premium or 4-hr Platinum | Premium or Platinum | Standard |
Advance Replacement Service: 4-Hour Replacement (available only for Hardware located within a specified range of Palo Alto Networks service locations) | Yes, if eligible | No | No |
Advance Replacement Service: Next Business Day Service | N/A | Yes | No |
Return and Repair | N/A | N/A | Yes |
Palo Alto End User Support Agreement. (Palo Alto, 2020.) See more at:https://www.paloaltonetworks.com/content/dam/pan/en_US/assets/pdf/legal/palo-alto-networks-global-customer-support-services-terms-and-conditions-eusa.pdf
Customer Success Plans and Services Offered:
Premium | Standard | |
Online support | Yes - 24x7x366 | Yes - 24x7x367 |
Telephone support | Yes - 24x7x365 | No |
Response Times | Premium | Standard |
Severity 1 - Critical Product is down, critically affects customer production environment. No workaround available yet. | ≤ 1 hour | ≤ 2 hours |
Severity 2 - High Product is impaired, customer production up, but impacted. No workaround available yet. | ≤ 2 hours | ≤ 4 hours |
Severity 3 - Medium A Product function has failed, customer production not affected. Support is aware of the issue and a workaround is available. | ≤ 4 hours | ≤ 12 hours |
Severity 4 - Low Non-critical issue. Does not impact customer business. Feature, information, documentation, how-to and enhancement requests from customer. | ≤ 8 Business hours | ≤ 48 hours |
Self-help guidance:
| Yes | Yes |
Customer Success Team assistance:
| Optional, if eligible | No |
Additional Services | Premium | Standard |
Premium United States Government (“USG”) Success | Yes, if eligible | No |
Focused Services including Plus and Elite tiers | Optional, if eligible | No |
Hardware RMA | Premium or Platinum | Standard |
Advance Replacement Service: 4-Hour Replacement (available only for hardware located within a specified range of Palo Alto Networks service locations) | No | No |
Advance Replacement Service: Next Business Day Service | Yes | No |
Return and Repair | N/A | Yes |
Palo Alto End User Support Agreement. (Palo Alto, 2020.) See more at:https://www.paloaltonetworks.com/content/dam/pan/en_US/assets/pdf/legal/palo-alto-networks-global-customer-support-services-terms-and-conditions-eusa.pdf
Palo Alto’s solution supports DIA, MPLS and LTE connectivity underlay services. As a vendor, Palo Alto do not manage or support SD WAN underlay. However, these services may be available via one of their service provider partners (See, Which service providers do Palo Alto support?).
The most comprehensive top 10 guide we have ever created.
List your business with Netify Learn More →
Please complete the form to ask a question or send a message directly to Palo Alto Networks. Netify have carefully curated global sales contacts based on your IP location. If you do not receive contact, please check your junk folder.
Book a demo of the Palo Alto Networks SD WAN and SASE security capability over Zoom or Teams. Learn about their management portal, deployment, SLA and support. You will receive an email asking for times/dates, please check your junk folder if not received.
A Netify Vendor Briefing is a 30 minute Zoom research session for IT decision makers, and an opportunity to learn about the vendors products, services and business strategies specifically or a related technology or market. We'll also discuss their competitors and which other solutions your business should consider. If you do not receive contact, please check your junk folder.
