Compare BigFix vs. Carbon Black CB Defense

BigFix is ranked 3rd in Endpoint Protection (EPP) for Business with 32 reviews while Carbon Black CB Defense is ranked 4th in Endpoint Protection (EPP) for Business with 10 reviews. BigFix is rated 8.4, while Carbon Black CB Defense is rated 9.0. The top reviewer of BigFix writes "Enabled us to have a highly successful endpoint patching program for the past decade". On the other hand, the top reviewer of Carbon Black CB Defense writes "It has a higher detection ratio because it's cloud-based and it also does a lookup to virus total". BigFix is most compared with SCCM, Ansible and Tanium, whereas Carbon Black CB Defense is most compared with Carbon Black Cb Response, Cylance and Microsoft Windows Defender. See our BigFix vs. Carbon Black CB Defense report.
Cancel
You must select at least 2 products to compare!
BigFix Logo
28,970 views|16,226 comparisons
Carbon Black CB Defense Logo
32,135 views|21,727 comparisons
Most Helpful Review
Find out what your peers are saying about BigFix vs. Carbon Black CB Defense and other solutions. Updated: January 2020.
398,050 professionals have used our research since 2012.
Quotes From Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Pros
One of the biggest benefits BigFix has had for our organization is the ease and efficiency to perform many different tasks, across pillars and platforms, all from one pane of glass.The older version of the tools that I use also included the connectivity aspect, and the fact that the tool now has it separate from the collection of usage data makes the deployment of these tools much easier.The most valuable feature is patch management, a must have, even for Linux and iOS.It's enabled us to have a highly successful endpoint patching program for the past decade. It's been enormously successful there. It's also become a core part of many of our business processes, from compliance monitoring of endpoints, encryption management, key escrow, and local administrator password escrow. It's built into our inventory. It's very much everywhere.Servers are patched more consistently than they have been previously.Being able to intelligently create reports, gather data, export CSVs and give that to the leadership of some of the client groups that my team supports has helped my organization.We are able to use BigFix through API connections to automate and reduce resources and time. The product's been great for us. It's increased the security posture ten-fold and it's increased our visibility across our endpoints enormously.BigFix has drastically reduced the maintenance window period to patch and reboot servers.

Read more »

The most valuable feature is that it detects and stops malicious executables.The offline networking is the most important feature. Some of our users are engineers that work offsite, and they can still be on the solution, which is also great.The number of false-positives is very, very low compared to other products using AI.The biggest feature out of CarbonBlack is its ability to dive in with more depth. You can look at the entire kill chain and understand, not only if an alarm or identified incident is truly a true security issue versus a false positive, and it allows us to backtrack and figure out why it actually happened and how it got into the environment.The data analysis is the most valuable because of the whitelist database. It is different than standard IDS solutions.It actually does some heuristics, and some behavioral analysis.The most valuable asset is the time-lining capability for any breach activity.This product has the capability of uploading scripts to the tool and this is a very comprehensive feature.

Read more »

Cons
I would like to see SDK for Web UI included in the next release.I self-taught for this online, so the initial setup was a little difficult to pick up at first. I had to create a couple of testing environments and destroy them in order to learn how to use it. There was a lot of trial and error, a lot of reading of the manuals.I would like to see the Self Service section made more user-friendly.Around the scalability concern, I would like to see the ability to run teamed, clustered, or hierarchical root servers, in order to provide a more robust, high availability system. The single monolithic root server model does somewhat bother me.I would like to see the integration of user security between the different products to be improved. There's separate security for compliance, separate security for web reports, and the console, and you have to manage those things separately.The stability is generally pretty good. The one thing that we came across is the battle between load on endpoints and load on our servers and relays versus how quickly, effectively and reliably actions can be taken. I'd like to not have to take an action on a system while I'm working with someone and then have to say whether something will happen between five seconds or thirty minutes from that point.I would like to see API connectivity, built-in API connectors to the standard toolsets, whether it's for your ServiceNow or your Qualys. More API connectivity to make it easier to integrate to other tools.I would like to see a web UI SDK so we could take what is provided currently and be able to build our own customized web UI for particular customers that want to sell service.

Read more »

This solution works well but needs lots of tuning and optimization.The endpoint machines need improvement.The implementation of the solution should be improved. It takes too much time.Carbon Black needs to do a better job of proving their platform in the industry, and providing a bit more access to do industry testing with real world examples to help prove their platform.The UI interface needs improvement. The management needs further work in future versions.The tech support communicates, but it's just not with movement.I would personally give the tech support a rating of seven out of ten.Adding an application and a device control feature would be a great help for this solution.

Read more »

Pricing and Cost Advice
Compliance, inventory, and licensing are really pricey. They should lower the price. It discourages users from getting onboard.The product is less costly when compared to other solutions, and this is a good solid solution for what we have paid.

Read more »

Carbon Black might be a touch more expensive than Symantec. They tend to get a premium for their capabilities. They're sort of an industry leader in a lot of areas with the functionality that they provide.I am not really involved in the pricing of this product. But, from my understanding, it is OK for us.The cost is a considerable factor, but the benefit factor is the most important. When you compare it with other products, the price is high. Carbon Black will negotiate the price.​The cost/benefit factor has great relevance in Cb Defense implementations​.

Read more »

report
Use our free recommendation engine to learn which Endpoint Protection (EPP) for Business solutions are best for your needs.
398,050 professionals have used our research since 2012.
Answers from the Community
Miriam Tover
author avatar
Consultant

BigFix and Carbon Black are really two different products from a functionality standpoint and are not really competing products.

Carbon Black Defense is essentially an anti-malware (with more smarts and they refer to it as Next-gen AV)

BigFix does not provide anti-malware functionality. BigFix has multiple components that you would use to protect your environment
BigFix Patch: As the name suggests, this is used for patching your servers and workstations and supports just about any OS (AIX, Redhat, Ubuntu, Windows, Solaris, Oracle Linux and more). This allows you to report and deploy patches in your environment and be able to provide near realtime reporting for the current patch status.

BigFix Compliance: This component is used to provide vulnerability assessments and remediation of your environment. Supports PCI, DISA, CIS and a few more.

BigFix also integrates with IBM QRadar to provide a more comprehensive security overview. Cb can also report to QRadar, but there is no native app for it, but this is currently being developed.

So in the end, I cannot recommend one over the other as they are both important.

Ranking
Views
28,970
Comparisons
16,226
Reviews
32
Average Words per Review
532
Avg. Rating
8.4
Views
32,135
Comparisons
21,727
Reviews
10
Average Words per Review
693
Avg. Rating
8.9
Top Comparisons
Compared 42% of the time.
Compared 17% of the time.
Compared 5% of the time.
Compared 11% of the time.
Also Known As
Tivoli Endpoint ManagerBit9, Confer
Learn
HCL
Carbon Black
Video Not Available
Overview

IBM BigFix provides complete visibility and control into all endpoints through a single, unified platform. Enterprises can now bridge the bridge the gap between threat detection and response, drastically reducing remediation times and costs by consolidating best-in-class EDR, enterprise asset discovery, endpoint interrogation, rich threat intelligence, multi-platform patch management (90+ OS) and software distribution. Security and operations teams can see, understand and act on all endpoint threats while proactively reducing the attack surface. • SEE: Discover and audit every endpoint, on or off the corporate network—and rapidly detect evasive attacks using behavioral analytics that understand how attackers compromise your endpoints. • UNDERSTAND: Guided investigation enables security analysts to understand the full context and scope of an attack based on real-time endpoint information, not just historical data. • ACT: Respond with purpose. BigFix provides the capability to deliver targeted remediation—not only on patient zero but enterprise-wide—in minutes or hours.

CB Defense is an industry-leading next-generation antivirus (NGAV) and endpoint detection and response (EDR) solution. CB Defense is delivered through the CB Predictive Security Cloud, an endpoint protection platform that consolidates security in the cloud using a single agent, console and data set. CB Defense is certified to replace AV and designed to deliver the best endpoint security with the least amount of administrative effort. It protects against the full spectrum of modern cyber attacks, including the ability to detect and prevent both known and unknown attacks. CB Defense leverages the powerful capabilities of the CB Predictive Security Cloud, applying our unique streaming analytics to unfiltered endpoint data in order to predict, detect, prevent, respond to and remediate cyber threats. In addition, CB Defense provides a suite of response and remediation tools, including Live Response, which allows security personnel to perform remote live investigations, intervene with ongoing attacks and instantly remediate endpoint threats. For peace of mind, CB Defense customers can also leverage CB ThreatSight, Carbon Black’s managed threat alert service, to validate alerts and uncover new threats.

Offer
Learn more about BigFix
Learn more about Carbon Black CB Defense
Sample Customers
US Foods, Penn State, St Vincent's Health US Foods, Sabadell Bank, SunTrust, Australia Sydney, Stemac, Capgemini, WNS Global Services, Jebsen & Jessen, CenterBeam, Strauss, Christian Hospital Centre, Brit Insurance, Career Education CorporationNetflix, Progress Residential, Indeed, Hologic, Gentle Giant, Samsung Research America
Top Industries
REVIEWERS
University19%
Healthcare Company16%
Retailer16%
Hospitality Company6%
VISITORS READING REVIEWS
Software R&D Company35%
Comms Service Provider10%
Government5%
Retailer5%
REVIEWERS
Construction Company25%
Manufacturing Company13%
Insurance Company13%
Hospitality Company13%
VISITORS READING REVIEWS
Software R&D Company34%
Comms Service Provider8%
Media Company7%
Manufacturing Company6%
Company Size
REVIEWERS
Small Business19%
Midsize Enterprise13%
Large Enterprise69%
VISITORS READING REVIEWS
Midsize Enterprise14%
Large Enterprise86%
REVIEWERS
Small Business36%
Midsize Enterprise9%
Large Enterprise55%
VISITORS READING REVIEWS
Small Business24%
Midsize Enterprise22%
Large Enterprise54%
Find out what your peers are saying about BigFix vs. Carbon Black CB Defense and other solutions. Updated: January 2020.
398,050 professionals have used our research since 2012.
We monitor all Endpoint Protection (EPP) for Business reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.