Anonymous UserSolution Architect / Presales Engineer at a comms service provider
Ron HennPerformance & Monitoring Lead at NCR Corporation
CTIo67CIO / CTO at a financial services firm
We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
"For the initial first level of support, we provide it from our side. If there's escalation required, we use Cisco tech for the AMP. And again, they are perfect. I mean, one of the best, compared to any other vendors."
"The most valuable features of this solution are the IPS and the integration with ISE."
"The simplicity of use is its most valuable feature. You can very clearly see things."
"The stability of the solution is perfect. I believe it's the most stable solution on the market right now."
"I am really satisfied with the technical support."
"It is a very stable program."
"The solution's integration capabilities are excellent. It's one of the best features."
"It doesn't impact the devices. It is an agent-based solution, and we see no performance knock on cell phones. That was a big thing for us, especially in the mobile world. We don't see battery degradation like you do with other solutions which really drain the battery, as they're constantly doing things. That can shorten the useful life of a device."
"The most valuable feature is patch management, a must have, even for Linux and iOS."
"The older version of the tools that I use also included the connectivity aspect, and the fact that the tool now has it separate from the collection of usage data makes the deployment of these tools much easier."
"One of the biggest benefits BigFix has had for our organization is the ease and efficiency to perform many different tasks, across pillars and platforms, all from one pane of glass."
"The solution is unbelievably scalable."
"What I like most is that it is a powerful solution."
"This has very much improved our organization by saving time to deploy thousands of endpoints to our customers."
"BigFix technical support is good."
"It's easy to use, not complicated."
"Before we used this solution, our mail was blacklisted. Now we are white listed by all organizations, including Google. Also the security of our institution has really improved."
"We had a ransomware attack and the SandBlast agent automatically picked up the ransomware."
"The most valuable feature is the integration with CheckPoint's firewalls. You can have one port, and follow the logs from both Endpoint and firewall security."
"The most valuable feature of this solution is the VPN."
"The biggest value we found was ease of deployment. I haven't really used it much, so I can't really comment beyond that. I haven't used it much, but it's working."
"We were under an attack in our environment, and the Check Point response was good because we didn't lose anything."
"Check Point Endpoint Security helps us ensure device control and security. It helps us make sure users can access only the network resources they should be accessing and keep malware to a minimum."
"One of the most valuable features is the Threat Emulation and Threat Extraction. These features are able to scan email attachments before the user is able to access the file and then provide a safe copy of the attachment. Malicious files never get to the users machine. This is a very valuable feature of this solution."
"The solution needs more in-depth analytics."
"In the next version of this solution, I would like to see the addition of local authentication."
"The initial setup is a bit complex because you need to execute existing antiviruses or security software that you have on your device."
"In the next release, I would for it to have back up abilities. I would like the ability to go back to a point in time to when my PC was uninfected and to the moment of when the infection happened."
"The reporting and analytics areas of the solution need to be improved."
"I would like more seamless integration."
"The technical support is very slow."
"I would recommend that the solution offer more availability in terms of the product portfolio and integration with third-party products."
"I would like to see the Self Service section made more user-friendly."
"I self-taught for this online, so the initial setup was a little difficult to pick up at first. I had to create a couple of testing environments and destroy them in order to learn how to use it. There was a lot of trial and error, a lot of reading of the manuals."
"I would like to see SDK for Web UI included in the next release."
"They don't have a proper mobile device management capability. They're working on it, however, that's the one thing that needs improvement so that you can have full unified endpoint management."
"They need better integration."
"We would like to see a different license plan, e.g. to include features from lifecycle with Patch Management, as an example."
"The product lacks AI, ML, and IIT."
"The remote software installation could be better."
"They should provide bandwidth regulation, so we can monitor and regulate bandwidth."
"One area of this product that has room for improvement is the disc encryption."
"The solution could improve VPN functionality and the VPN user-interface."
"I would like to see support for a policy in the appliance that will refuse to create a connection if it does not detect an active virus scanner."
"I'd also love to see them add full MDM support, but I appreciate that that's not the product market. If it did come in, I'd be more than happy to look at additional modules. It was probably one of the easiest products I've ever had to deploy it, but if it's not capable of doing MD, then that's going to impact its usefulness to us."
"We would like to have the ability to stop and restart the service remotely, which is something that we can do easily with Symantec but have a hard time with when using Check Point."
"I would like to see simple sandboxing for malware analysis."
"As I understand there will be a URL filtering feature included with the browser agent in the future. This will allow URL filtering without the need for a Gateway Device. This is something I am looking forward to and would be a great addition to list of features."
"The costs of 50 licenses of AMP for three years is around $9,360."
"The price is very good."
"The visibility that we have into the endpoint and the forensics that we're able to collect give us value for the price. This is not an overly expensive solution, considering all the things that are provided. You get great performance and value for the cost."
"Whenever you are doing the licensing process, I would highly advise to look at what other Cisco solutions you have in your organization, then evaluate if an Enterprise Agreement is the best way to go. In our case, it was the best way to go. Since we had so many other Cisco products, we were able to tie those in. We were actually able to get several Cisco security solutions for less than if we had bought three or four Cisco security solutions independently or ad hoc."
"In our case, it is a straightforward annual payment through our Enterprise Agreement."
"Our company was very happy with the price of Cisco AMP. It was about a third of what we were paying for System Center Endpoint Protection."
"There are a couple of different consumption models: Pay up front, or if you have an enterprise agreement, you can do a monthly thing. Check your licensing possibilities and see what's best for your organization."
"The Enterprise Agreement is like an all-you-can-eat buffet of Cisco products. In that vein, it was very affordable."
"You get what we call the Platform Edition, which you get for free. The patch service is maybe $0.50 per workstation per month. Then there's the basic server cost, which is about $1.50 per server per month. You also get into Lifecycle which does power management, OSD remote control, and those types of things, and that might be about 10 times the price - which works out to about $13 per server and, maybe $5 per workstation per month."
"The price is very fair."
"The price is reasonable, but our customers find it expensive."
"We pay on an annual basis. There are no additional fees, they mostly tell us what we have to pay. We have budgeted for it."
"We pay roughly 80,000 Swedish krona per year. When it comes to the firewall, it's roughly 150,000 Swedish krona yearly. There's also maintenance, of course, which is roughly 10,000 krona per month."
"I bought them for 12 months and I genuinely cannot remember what I paid for them. I think it's about 100 pounds per user per year, so about 10 pounds a month per person."
"The licensing cost for Check Point is $3 USD or $4 USD per end-user."
"In terms of licensing, have a buffer zone around your projects in terms of the amount of endpoints that you want to have. You can always have more, but it is best to leave room for a little increase or growth."
"The solution is too pricey."
"One of the key factors that made us go with this solution was the pricing. On the licensing part, there was an initial complementary set of licenses offered in the initial onboarding package, either 15 or 20. Then, we had some complementary licenses in the initial purchase of the package. That was pretty useful."
"Licensing comes free in that first year or is included in the base package. From a commercial point of view, it really just is the renewal cost, rather than a one-time fixed cost or buy-in."
Advanced Malware Protection (AMP) is subscription-based, managed through a web-based management console, and deployed on a variety of platforms that protects endpoints, network, email and web Traffic. AMP key features include the following: Global threat intelligence to proactively defend against known and emerging threats, Advanced sandboxing that performs automated static and dynamic analysis of files against more than 700 behavioral indicators, Point-in-time malware detection and blocking in real time and Continuous analysis and retrospective security regardless of the file's disposition and Continuous analysis and retrospective security.
HCL BigFix provides complete visibility and control into all endpoints through a single, collaborative endpoint management platform that enables IT/Security Operations to fully automate discovery, management and remediation of endpoints, whether they are on-prem or in the cloud, regardless of location or connectivity. BigFix bridges the gap between IT and Security Operations, drastically reducing remediation times and costs. With BigFix, enterprises can protect endpoints running Windows, UNIX, Linux, and macOS by achieving greater than 98% first-pass patch success rates and enabling continuous endpoint compliance. Unlike complex tools that cover a subset of endpoints and take days or weeks to remediate, BigFix can find and fix endpoints fast.
Check Point Harmony is the industry’s first unified security solution for users, devices and access.
The solution protects devices and internet connections from the most sophisticated attacks while ensuring Zero-Trust Access to corporate applications.
BigFix is ranked 14th in Endpoint Protection (EPP) for Business with 10 reviews while Check Point Harmony Endpoint is ranked 8th in Endpoint Protection (EPP) for Business with 21 reviews. BigFix is rated 9.2, while Check Point Harmony Endpoint is rated 9.2. The top reviewer of BigFix writes "Very stable and easy to deploy with excellent patch compliance". On the other hand, the top reviewer of Check Point Harmony Endpoint writes "Enables us to integrate endpoints into our IPS and we are seeing things which, without this tool, we would be exposed to". BigFix is most compared with SCCM, Ansible, Tanium, Red Hat Satellite and Chef, whereas Check Point Harmony Endpoint is most compared with CrowdStrike Falcon, Microsoft Defender Antivirus, Cortex XDR by Palo Alto Networks, Symantec End-User Endpoint Security and Kaspersky Endpoint Security. See our BigFix vs. Check Point Harmony Endpoint report.
See our list of best Endpoint Protection (EPP) for Business vendors.
We monitor all Endpoint Protection (EPP) for Business reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.