Case Study: Sitecore achieves 90% SOC automation with Palo Alto Networks Cortex XSOAR

Sitecore achieves 90% SOC automation with Cortex XSOAR

Sitecore, a global leader in digital experience software with about 2,200 employees across 27 locations, needed to modernize its SOC by removing repetitive, low-skill tasks, reducing alert noise, and freeing analysts to focus on critical threats. With a growing, dynamic security surface and difficulty hiring large SOC teams, Sitecore sought an automation-first approach to improve incident investigation, collaboration, and threat mapping.

Using Palo Alto Networks Cortex XSOAR to unify orchestration, playbooks, case management and threat intelligence (integrating sources like Prisma Cloud, Recorded Future, Veracode and ServiceNow), Sitecore automated 90% of security events, achieving an average time-to-fix of nine minutes. The SOC now processes up to 45,000 events per week with just two analysts, handles fewer than 10% of incidents manually, maintains a low error rate (~10%), and documents actions for ongoing improvement.

Sitecore

Adam Button

Senior Product Manager