We compared CylancePROTECT and Microsoft Defender for Endpoint based on our user's reviews in several parameters.
In summary, CylancePROTECT is praised for its exceptional threat detection capabilities, customer service, positive ROI, and ease of use, while users highlight the need for improvements in detection capabilities and integration. On the other hand, Microsoft Defender for Endpoint stands out for its comprehensive threat protection, efficient system management, and incident response capabilities, with users also satisfied with customer service and ROI. Pricing, setup, and licensing are perceived positively for both products, with room for improvement in certain areas mentioned by users.
Features: CylancePROTECT stands out for its exceptional threat detection, zero-day attack prevention, easy implementation, low system impact, and comprehensive analytics. Microsoft Defender for Endpoint excels in comprehensive threat protection, real-time monitoring, efficient system management, user-friendly interface, seamless integration, and incident response capabilities.
Pricing and ROI: The setup cost for CylancePROTECT is described as minimal, straightforward, and hassle-free, while Microsoft Defender for Endpoint's setup process is deemed straightforward and doesn't require much effort., The ROI from CylancePROTECT was highly positive, delivering improved security measures, increased efficiency, and reduced costs. Users praised its user-friendly interface and fast deployment. On the other hand, Microsoft Defender for Endpoint was seen as positive with users expressing satisfaction with its performance, effectiveness in protecting against threats, ease of use, and real-time insights.
Room for Improvement: CylancePROTECT has room for improvement in detection capabilities, integration with other security tools, reporting and analytics functionalities, and user interface. Microsoft Defender for Endpoint also has areas for enhancement according to user feedback.
Deployment and customer support: Based on user feedback, the duration required to establish a new tech solution varies for both CylancePROTECT and Microsoft Defender for Endpoint. Some users for CylancePROTECT mentioned different timeframes for deployment and setup, while for Microsoft Defender for Endpoint, users also had different timeframes but emphasized the importance of context., The customer service for CylancePROTECT is praised for exceptional assistance, personalized guidance, and resolving issues promptly. Microsoft Defender for Endpoint provides helpful, efficient, and prompt support with effective solutions.
The summary above is based on 98 interviews we conducted recently with CylancePROTECT and Microsoft Defender for Endpoint users. To access the review's full transcripts, download our report.
"The setup is pretty simple."
"Fortinet has helped free up around 20 percent of our staff's time to help us out."
"It notifies us if there's any suspicious file on any PC. If any execution or similar kind of thing is happening, it just alerts us. It doesn't only alert. It also blocks the execution until we allow it. We check whether the execution is legitimate or not, and then approve it or keep it blocked. This gives us a little bit of control over this mechanism. Fortinet FortiEDR is also very straightforward and easy to maintain."
"It is very easy to set up. I would rate my experience with the initial setup a ten out of ten, with ten being very easy to set up."
"The solution was relatively easy to deploy."
"The features that I have found most valuable are the ability to customize it and to reduce its size. It lets you run in a very small window in terms of memory and resources on legacy cash registers."
"It is a scalable solution...The initial setup of Fortinet FortiEDR was straightforward."
"NGAV and EDR features are outstanding."
"The most valuable features are script blocking and macros within Word documents for stopping unwanted applications from running in the background."
"On the management side, we liked the way it displays things."
"The most valuable feature of CylancePROTECT is the support."
"It handles situations that the other threat management tools wouldn't find. It has worked well covering the weaker sides of the other products that we're integrating."
"The deployment of updates is easy."
"Specifically for a Windows domain environment, the product can be customized and pushed via GPO or SCCM without issue."
"We are quite security-focused. Blackberry Protect as an endpoint solution for our service really delivers what we are expecting."
"It secures different entry points into the network."
"It's effective against most types of infection, and the firewall is perfect for protection."
"The solution's threat protection is mostly AI and machine-learning based. That is the most important feature of the product. It also offers centralized management so I can remotely manage devices."
"Microsoft's technical support is fantastic."
"Defender's analytics are much better than CrowdStrike's."
"One of the features which differentiates it from other EDR providers is the Automated Investigation and Response, which reduces the workload of SOC analysts or engineers. They don't have to manually investigate each and every alert on the endpoint, since it does so automatically. And you can automate the investigation part."
"Defender has very little impact on the end-user and the agent works quite well with a minimal impact on the client and server."
"Stable endpoint manager, antivirus, and antimalware, with fast technical support and a straightforward setup."
"The most valuable features are that it is flexible, and it is integrated with Microsoft products."
"We'd like to see more one-to-one product presentations for the distribution channels."
"The EDR console should have more extensive reporting. You shouldn't need to purchase FortiAnalyzer. It should be included in the EDR part. The security adviser cloud platform could be improved with more options for exclusive or intensive rules for devices."
"We've had a lot of false positives; things incorrectly flagged that require manual configuration to allow. Even worse, after we allow a legitimate program, it sometimes gets flagged again after an update. This has caused a lot of extra work for my team."
"I haven't seen the use of AI in the solution."
"Making the portal mobile friendly would be helpful when I am out of office."
"The support needs improvement."
"I think cloud security and SASE are areas of concern in the product where improvements are required. The tool's cloud version has to be improved in terms of the security it offers."
"I would like the solution to extend beyond endpoint protection and include other attack surfaces such as other network components."
"An area for improvement in CylancePROTECT is its pricing, as it's a bit costly."
"The product does not do a lot of reporting on what it is taking care of. Enhanced reporting would be a welcome improvement."
"Additionally, their channel management has been lacking, with a notable disregard for small and medium-sized businesses, focusing primarily on large enterprises and very large MSPs."
"They could improve on the false positives, reporting and whitelisting features."
"CylancePROTECT's dashboard could be more user-friendly."
"I would like to see them fix the alerting system so that the endpoint reporting is a bit more streamlined."
"The solution’s technical support could be improved."
"Work on the math model. We are catching a lot of false positives, which gets to be a pain at the start of a deployment."
"The dashboard customization could be improved."
"It makes your Surface devices hot. It is resource-intensive. It strains your CPU, not more than other file scanners around, but it also does a lot more. When you are transmitting files or data, it is continuously scanning the traffic and analyzing it bit by bit to see what's going on, and that, of course, is costly in terms of CPU. It is CPU intensive, and if you are on battery, it drains your battery fast. That's the only drawback that it has."
"The product should reduce updates since it is hard to keep up."
"I would like Microsoft to have some kind of direct integration for USB controls. They have GPO and other controls to control the access of the USB drives on devices, but if there is something that can be directly implemented into the portal, it would be good. There should be a way to control via a cloud portal or something like that in a dynamic way. USB control for data exfiltration would be a good feature to implement. Currently, there are ways to do it, but it involves too many different things. You have to implement it via GPOs and other stuff, and then you move or copy those big files via Defender ATP. If there is a simple way of implementing those features, it would be great."
"The pricing could be a bit better."
"With the XDR dashboard, when you're doing an investigation and you're drilling down to obtain further details it tends to open many different tabs that take you away from your main tabs. You can end up having 10 tabs open for one investigation. This is another area for improvement because you can end up getting lost in the multiple tabs. Therefore, the central console can be improved so that it does not take you to several different pages for each investigation."
"The integration and effectiveness of email security could be better. It's already built-in to the solution and checks emails, scans the links they contain etc."
"The detection of viruses could be a little bit better."
More Microsoft Defender for Endpoint Pricing and Cost Advice →
CylancePROTECT is ranked 23rd in Endpoint Protection Platform (EPP) with 40 reviews while Microsoft Defender for Endpoint is ranked 1st in Endpoint Protection Platform (EPP) with 182 reviews. CylancePROTECT is rated 8.0, while Microsoft Defender for Endpoint is rated 8.0. The top reviewer of CylancePROTECT writes "Ensures advanced AI-driven threat detection to provide robust endpoint security, effectively preventing both known and unknown threats with minimal impact on system performance". On the other hand, the top reviewer of Microsoft Defender for Endpoint writes "Eliminates the need to look at multiple dashboards by automatically providing one XDR dashboard to show the security score of each subscription". CylancePROTECT is most compared with CrowdStrike Falcon, SentinelOne Singularity Complete, Cortex XDR by Palo Alto Networks and VMware Carbon Black Endpoint, whereas Microsoft Defender for Endpoint is most compared with Symantec Endpoint Security, Intercept X Endpoint, SentinelOne Singularity Complete, CrowdStrike Falcon and ESET Endpoint Protection Platform. See our CylancePROTECT vs. Microsoft Defender for Endpoint report.
See our list of best Endpoint Protection Platform (EPP) vendors.
We monitor all Endpoint Protection Platform (EPP) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.