CrowdStrike Falcon vs Symantec Endpoint Detection and Response Comparison 2024

Sponsored

Fortinet FortiEDR

Read 30 Fortinet FortiEDR reviews

10,049 views|7,442 comparisons

CrowdStrike Falcon

Read 106 CrowdStrike Falcon reviews

37,408 views|27,203 comparisons

Symantec Endpoint Detection and Response

Read 28 Symantec Endpoint Detection and Response reviews

2,011 views|1,310 comparisons

Comparison Buyer's Guide

Download the complete report

Buyer's Guide

CrowdStrike Falcon vs. Symantec Endpoint Detection and Response

March 2024

Executive Summary

We performed a comparison between CrowdStrike Falcon and Symantec Endpoint Detection and Response based on real PeerSpot user reviews.

Find out in this report how the two Endpoint Detection and Response (EDR) solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI.

To learn more, read our detailed CrowdStrike Falcon vs. Symantec Endpoint Detection and Response Report (Updated: March 2024).

Download the complete report

770,428 professionals have used our research since 2012.

Featured Review

Tintin Rahman

CISO at DSA

Helped our organization by providing reports that identify network weaknesses

Fortinet FortiEDR has helped our organization by providing reports that identify network weaknesses. With the proper training, the solution is easy... Read more →

Jawaria Abbas

Security Engineer at a computer software company

Researched Symantec Endpoint Detection and Response but chose CrowdStrike Falcon: Makes investigation easy and has a lightweight agent

Everything is changing rapidly nowadays, and new threats can come into the organization from any source. I have found this product to be very... Read more →

Hamid Harroud

IT Director at Al Akhawayn University

A highly stable and affordable solution for detecting and preventing security threats

Quotes From Members

We asked business professionals to review the solutions they use.
Here are some excerpts of what they said:

Pros

"he solution is an anti-malware product that integrates well with other vendor products such as firewalls, SIEM, etc. It captures threat intelligence and gives you better visibility. The product also has sandboxing features.""Exceptions are easy to create and the interface is easy to follow with a nice appearance.""It is a scalable solution...The initial setup of Fortinet FortiEDR was straightforward.""I like FortiClient EMS. FortiEDR has a lot of great features like lockdown mode, remote wipes, and encryption. I can set malware outbreak policies and controls for detecting abnormalities. You can also simulate phishing attacks.""It is very easy to set up. I would rate my experience with the initial setup a ten out of ten, with ten being very easy to set up.""The price is low and quite competitive with others.""The product's initial setup phase is very easy.""Forensics is a valuable feature of Fortinet FortiEDR."

More Fortinet FortiEDR Pros →

"The malware protection is the most valuable feature of CrowdStrike Falcon.""The most valuable feature is the indicator of compromise, which show you what file was either quarantined or removed.""One of the most valuable features of CrowdStrike Falcon is when there are upgrades there are no additional fees.""Overall, what I found most valuable in CrowdStrike Falcon is its good mechanism. It also has a good reporting feature. CrowdStrike Falcon is an invaluable tool because, through it, you can take quick action, for example, when an OS is missing specific patches.""I value the overall behavior analysis of CrowdStrike. The engine of this product is what drew us to this solution.""The solution can scale easily.""The feature I like the most is the solution's detection.""The most valuable aspects of CrowdStrike Falcon for me are its device observability, identification, and software and OS recognition."

More CrowdStrike Falcon Pros →

"The Detection vulnerability is very effective.""It is very simple to use.""The most valuable features of Symantec Endpoint Detection and Response are its immediate response and investigation.""The solution does its job with no issues.""The most valuable features are that it is easy to connect and global settings are good.""The most valuable features of this product include network isolation for machines and the ability to work with a consistent and defined set of virtual machines.""The solution can scale well.""It is mostly used for malware detection and antivirus purposes."

More Symantec Endpoint Detection and Response Pros →

Cons

"The dashboard isn't easy to access and manage.""We find the solution to be a bit expensive.""Making the portal mobile friendly would be helpful when I am out of office.""The SIEM could be improved.""We've encountered challenges during API deployment, occasionally resulting in unstable environments.""They can include the automation for the realtime updates. We have a network infrastructure with remote sites. Whenever they send updates, they are not automated. We have to go into the console and push those updates. I wish it was more automated. The update file is currently around 31 MB. It could be smaller.""FortiEDR could add a separate scanning dashboard. In incident management, we prefer to remove the endpoint system from the environment and scan the system. We typically use Symantec for that, but if we want to use FortiEDR for that, then we need a scanning tab to clarify things.""We've had a lot of false positives; things incorrectly flagged that require manual configuration to allow. Even worse, after we allow a legitimate program, it sometimes gets flagged again after an update. This has caused a lot of extra work for my team."

More Fortinet FortiEDR Cons →

"I would like to see a more accurate integration and an option to check the local machine.""CrowdStrike should provide better visibility in its reporting. There should be more forensic details about detected threats.""They don't really have anything when it comes to scanning attachments.""CrowdStrike needs to quit making up stuff about its features and functionality to bash its competition.""CS Falcon sensing capabilities for non-domain machines should be enhanced since the agent doesn't detect the neighbor's IP Address and/or any anomaly which was identified in the network for the non-domain machine.""CrowdStrike Falcon could improve if it became an XDR. When we look only to an end-point, we lost the context of the environment. I know it's another line of design of the product. However, if CrowdStrike becomes an XDR, it could be very good.""We can do a threat analysis of any machine at any time, but that threat analysis is very limited.""The installation process for this software needs to be simplified."

More CrowdStrike Falcon Cons →

"The interface has many issues.""Technical support is not as good as we expect, and resolving problems should be more timely.""It would be good if it can anticipate zero-day attacks. I don't know how it can be done and if it is even a feature of this product.""The solution’s scalability and stability could be improved.""The network forensics feature could be improved.""One potential area for improvement in Symantec EDR is the reporting engine.""That's why I wouldn't recommend it for other systems. It works only with SAP clients. That's why I'm giving it a six. It would get higher if it worked on all networks without the help of SAP.""The interface is very complicated."

More Symantec Endpoint Detection and Response Cons →

Pricing and Cost Advice

"I know it is tough to get big budget additions up front, but I highly recommend deploying environment wide and adding the forensic service."

"There are no issues with the pricing."

"The price is comprable to other endpoint security solutions."

"The pricing is typical for enterprises and fairly priced."

"I'm not familiar with pricing, but it looks a bit costly compared to other vendors I think."

"The pricing is good."

"I would rate the solution's pricing an eight out of ten."

"The hardware costs about €100,000 and about €20,000 annually for access."

More Fortinet FortiEDR Pricing and Cost Advice →

"The pricing will depend upon your volume of usage."

"I would like them to further reduce the price, because it is quite pricey at the moment."

"Purchasing the product through the AWS Marketplace is just a click away. Since we were using the on-premise version of the product, we continued on the cloud by purchasing it through the AWS Marketplace."

"I do not have experience with the cost or licensing of the product."

"The other administrator and I can log in to check the exact details of what happened, what was running, and what caused the detection. We know exactly what was happening on the end users PC and we can tell if it's something that we actually need or something that's malicious."

"We are at about $60,000 per year."

"This solution has a very competitive price."

"Our company pays approximately US$ 65,000 annually for 900 machines."

More CrowdStrike Falcon Pricing and Cost Advice →

"We are satisfied with the pricing."

"The price is okay, but it really depends on the customer's requirements."

"The price is really high and it should be lower."

"We have a yearly subscription, and the pricing is fair."

"It's a yearly subscription."

"Of late, because of the Broadcom purchase, its price has been increasing."

"The more devices we have the more expensive it becomes, which is where the challenge is."

"The price is reasonable."

More Symantec Endpoint Detection and Response Pricing and Cost Advice →

See Which Vendors Are Best For You

Use our free recommendation engine to learn which Endpoint Detection and Response (EDR) solutions are best for your needs.

See Recommendations

770,428 professionals have used our research since 2012.

Questions from the Community

What's the difference between Fortinet's FortiEDR and FortiClient?

Top Answer:I suggest Fortinet’s FortiEDR over FortiClient for several reasons. For starters, FortiEDR guarantees solid protection… more »

What do you like most about Fortinet FortiEDR?

Top Answer:We have FortiEDR installed on all our systems. This protects them from any threats.

Read all 23 answers →

What is your experience regarding pricing and costs for Fortinet FortiEDR?

Top Answer:We license it per employee, so as long as the employee count remains the same, the licensing won't change. We have it… more »

Read all 16 answers →

Comparing CrowdStrike Falcon to Cortex XDR (Palo Alto)

Top Answer:Cortex XDR by Palo Alto vs. CrowdStrike Falcon Both Cortex XDR and Crowd Strike Falcon offer cloud-based solutions that… more »

How does Crowdstrike Falcon compare with Darktrace?

Top Answer:Both of these products perform similarly and have many outstanding attributes CrowdStrike Falcon offers an amazing… more »

How does Microsoft Defender for Endpoint compare with Crowdstrike Falcon?

Top Answer:The CrowdStrike solution delivers a lot of information about incidents. It has a very light sensor that will never push… more »

Read all 2 answers →

What do you like most about Symantec Endpoint Detection and Response?

Top Answer:The product is cheap.

Read all 21 answers →

What needs improvement with Symantec Endpoint Detection and Response?

Top Answer:Symantec is a dead product. The product does not have any add-on features. The interface has many issues. There is no… more »

Read all 23 answers →

Comparisons

Fortinet FortiClient vs. Fortinet FortiEDR

Compared 19% of the time.

Microsoft Defender for Endpoint vs. Fortinet FortiEDR

Compared 12% of the time.

SentinelOne Singularity Complete vs. Fortinet FortiEDR

Compared 6% of the time.

Cortex XDR by Palo Alto Networks vs. Fortinet FortiEDR

Compared 5% of the time.

ESET Endpoint Protection Platform vs. Fortinet FortiEDR

Compared 4% of the time.

More Fortinet FortiEDR Competitors →

Microsoft Defender XDR vs. CrowdStrike Falcon

Compared 12% of the time.

Darktrace vs. CrowdStrike Falcon

Compared 6% of the time.

Microsoft Defender for Endpoint vs. CrowdStrike Falcon

Compared 5% of the time.

Trend Micro Deep Security vs. CrowdStrike Falcon

Compared 4% of the time.

VMware Carbon Black Endpoint vs. CrowdStrike Falcon

Compared 3% of the time.

More CrowdStrike Falcon Competitors →

Microsoft Defender for Endpoint vs. Symantec Endpoint Detection and Response

Compared 19% of the time.

Trend Vision One vs. Symantec Endpoint Detection and Response

Compared 16% of the time.

Kaspersky Endpoint Detection and Response Expert vs. Symantec Endpoint Detection and Response

Compared 13% of the time.

Bitdefender GravityZone EDR vs. Symantec Endpoint Detection and Response

Compared 9% of the time.

Fidelis Elevate vs. Symantec Endpoint Detection and Response

Compared 7% of the time.

More Symantec Endpoint Detection and Response Competitors →

Also Known As

enSilo, FortiEDR

CrowdStrike Falcon, CrowdStrike Falcon XDR

Learn More

Fortinet

CrowdStrike

Broadcom

Overview

Fortinet FortiEDR is a real-time endpoint protection, detection, and automated response solution. Its primary purpose is to detect advanced threats to stop breaches and ransomware damage. It is designed to do so in real time, even on an already compromised device, allowing you to respond and remediate incidents automatically so your data can remain protected.

Fortinet FortiEDR Features

Fortinet FortiEDR has many valuable key features, including:

Easily customizable
Real-time proactive risk mitigation & IoT security
Pre-infection protection
Post-infection protection
Track applications and ratings
Reduce the attack surface with risk-based proactive policies
Achieve analysis of entire log history
Optional managed detection and response (MDR) service

Fortinet FortiEDR Benefits

Some of the key benefits of using Fortinet FortiEDR include:

Protection: Fortinet FortiEDR provides proactive, real-time, automated endpoint protection with the orchestrated incident response across platforms. It stops the breach with real-time postinfection blocking to protect data from exfiltration and ransomware encryption.
Single unified console: Fortinet FortiEDR has a single unified console with an intuitive interface, which makes management easier. The solution automates mundane endpoint security tasks so your employees don’t need to do it.
Cost savings: With Fortinet FortiEDR you can eliminate post-breach operational expenses and breach damage costs.
Flexibility: Fortinet FortiEDR can be deployed on premises or on a secure cloud instance. With Fortinet FortiEDR, endpoints are protected both on- and off-line.
Scalability: Because Fortinet can be deployed quickly and has a small footprint, it is easy to scale up to protect hundreds of thousand endpoints.

Reviews from Real Users

Below are some reviews and helpful feedback written by Fortinet FortiEDR users.

An Owner at a security firm says, "The features that I have found most valuable are the ability to customize it and to reduce its size. It lets you run in a very small window in terms of memory and resources on legacy cash registers. The customer has literally about 800 cash registers. That was the use case for Fortinet FortiEDR - to get that down into a tiny space. The only way to do that was to use this product because it had that ability to unbundle services that were a surplus.”

Chandan M., Chief Technical Officer at Provision Technologies LLP, mentions, “The ease of deployment and configuration is valuable. It's very easy compared to other vendors like Sophos. Sophos' configuration is complex. Fortinet is a lot easier to understand. You don't need a lot of admin knowledge to do the configuration.” He also adds, “The security is also very good and the firewall response is good.”

Harpreet S., Information Technology Support Specialist at Chemtrade Logistics, explains, "It notifies us if there's any suspicious file on any PC. If any execution or similar kind of thing is happening, it just alerts us. It doesn't only alert. It also blocks the execution until we allow it. We check whether the execution is legitimate or not, and then approve it or keep it blocked. This gives us a little bit of control over this mechanism. Fortinet FortiEDR is also very straightforward and easy to maintain."

DeAndre V., Senior Network Administrator at a financial services firm, states, “The dashboard is easy to follow and use. The deployment and uninstalling were easy. I like the detailed information about the path of a file that might be suspicious. Being able to check that out was easy to follow. Exceptions are easy to create and the interface is easy to follow with a nice appearance.

CrowdStrike Falcon offers advanced threat detection, real-time visibility, easy interface, and responsive customer support. It enhances workflow and efficiency, promotes collaboration, streamlines processes, and boosts productivity. With features like incident response options, customizable alerts, and proactive threat hunting, it helps protect organizations from malware and ransomware attacks.

Symantec Endpoint Detection and Response (EDR) is a powerful security solution designed to help organizations proactively detect, investigate, and mitigate advanced threats across their endpoint environments. As part of Broadcom's cybersecurity portfolio, Symantec EDR provides comprehensive visibility into endpoint activities, enabling security teams to quickly identify and respond to threats that evade traditional defenses.

Symantec EDR leverages machine learning, behavioral analysis, and global threat intelligence from Symantec's vast network to detect sophisticated threats, including zero-day attacks, ransomware, and advanced persistent threats (APTs). This allows organizations to identify malicious activities early and respond swiftly to mitigate potential damage. The solution offers automated response options that enable security teams to contain and remediate threats quickly.

Symantec EDR provides detailed forensic capabilities, allowing security analysts to dive deep into endpoint data, investigate incidents thoroughly, and understand the scope and impact of attacks. Features such as timeline analysis, incident graphing, and the ability to isolate endpoints enhance investigative efforts and support effective remediation strategies.

With its centralized management console, Symantec EDR offers visibility across the entire endpoint environment, regardless of the operating systems or whether endpoints are on-premise or remote. Symantec EDR seamlessly integrates with other Symantec security solutions, enhancing its detection capabilities and enabling a unified approach to threat management. Its scalable architecture ensures that businesses of all sizes can benefit from its advanced security features without compromising performance.

Quickly discover and resolve threats with deep endpoint visibility and superior detection analytics, reducing mean time to remediation. Overcome cyber security skills shortages and streamline SOC operations with extensive automation and built-in integrations for sandboxing, SIEM, and orchestration.

Fortify security teams with the unmatched expertise and global scale of Symantec Managed Endpoint Detection and Response services.
Roll out Endpoint Detection and Response (EDR) across Windows, macOS, and Linux devices using Symantec Endpoint Protection (SEP)-integrated EDR or a dissolvable agent.

Sample Customers

Financial, Healthcare, Legal, Technology, Enterprise, Manufacturing ...

Information Not Available

Top Industries

REVIEWERS

Financial Services Firm21%

Comms Service Provider11%

Manufacturing Company11%

Retailer5%

VISITORS READING REVIEWS

Computer Software Company16%

Government8%

Manufacturing Company8%

Financial Services Firm8%

REVIEWERS

Computer Software Company19%

Financial Services Firm15%

Manufacturing Company9%

Comms Service Provider7%

VISITORS READING REVIEWS

Computer Software Company15%

Financial Services Firm10%

Manufacturing Company8%

Government7%

REVIEWERS

Financial Services Firm18%

Healthcare Company12%

Comms Service Provider12%

Computer Software Company12%

VISITORS READING REVIEWS

Computer Software Company15%

Financial Services Firm13%

Retailer12%

Manufacturing Company8%

Company Size

REVIEWERS

Small Business50%

Midsize Enterprise16%

Large Enterprise34%

VISITORS READING REVIEWS

Small Business31%

Midsize Enterprise19%

Large Enterprise50%

REVIEWERS

Small Business32%

Midsize Enterprise22%

Large Enterprise45%

VISITORS READING REVIEWS

Small Business25%

Midsize Enterprise18%

Large Enterprise57%

REVIEWERS

Small Business46%

Midsize Enterprise21%

Large Enterprise32%

VISITORS READING REVIEWS

Small Business27%

Midsize Enterprise18%

Large Enterprise55%

Buyer's Guide

CrowdStrike Falcon vs. Symantec Endpoint Detection and Response

March 2024

Free Report: CrowdStrike Falcon vs. Symantec Endpoint Detection and Response

Find out what your peers are saying about CrowdStrike Falcon vs. Symantec Endpoint Detection and Response and other solutions. Updated: March 2024.

DOWNLOAD NOW

770,428 professionals have used our research since 2012.

CrowdStrike Falcon is ranked 3rd in Endpoint Detection and Response (EDR) with 106 reviews while Symantec Endpoint Detection and Response is ranked 25th in Endpoint Detection and Response (EDR) with 28 reviews. CrowdStrike Falcon is rated 8.8, while Symantec Endpoint Detection and Response is rated 7.6. The top reviewer of CrowdStrike Falcon writes "Easy to set up with good behavior-based analysis but needs a single-click recovery option". On the other hand, the top reviewer of Symantec Endpoint Detection and Response writes "A highly stable and affordable solution for detecting and preventing security threats". CrowdStrike Falcon is most compared with Microsoft Defender XDR, Darktrace, Microsoft Defender for Endpoint, Trend Micro Deep Security and VMware Carbon Black Endpoint, whereas Symantec Endpoint Detection and Response is most compared with Microsoft Defender for Endpoint, Trend Vision One, Kaspersky Endpoint Detection and Response Expert, Bitdefender GravityZone EDR and Fidelis Elevate. See our CrowdStrike Falcon vs. Symantec Endpoint Detection and Response report.

See our list of best Endpoint Detection and Response (EDR) vendors.

We monitor all Endpoint Detection and Response (EDR) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.

CrowdStrike Falcon vs Symantec Endpoint Detection and Response comparison