Most Helpful Review
Enables us to to build custom content and scale to additional endpoints without increasing staff time
Find out what your peers are saying about BigFix vs. Check Point SandBlast Agent and other solutions. Updated: September 2020.
441,672 professionals have used our research since 2012.
We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
"Its most valuable features are its scalability and advanced threat protection for customers."
"I am told that we get over 100 million emails a month. This filters them down and allows only somewhere about three million emails, which is a great help."
"For the initial first level of support, we provide it from our side. If there's escalation required, we use Cisco tech for the AMP. And again, they are perfect. I mean, one of the best, compared to any other vendors."
"The most valuable features of this solution are the IPS and the integration with ISE."
"The simplicity of use is its most valuable feature. You can very clearly see things."
"The stability of the solution is perfect. I believe it's the most stable solution on the market right now."
"I am really satisfied with the technical support."
"It is a very stable program."
"The product is less costly when compared to other solutions, and this is a good solid solution for what we have paid."
"It is user-friendly."
"My company provides support services to a lot of customers and companies. We have reduced a huge amount of man-effort. Along with the man-effort, we have reduced the timeline to fix the compliance and security gaps. We have an unbroken record. The documentation clearly says that we have done the patching of newly released patches, including Microsoft and third-party patches, in up to 80% of the computers, within 72 hours of the release of the production. That was a very massive benefit that we have seen. When I talk about the 80% endpoints, it is 100 or 200. I am talking about 25,000 endpoints."
"I would advise someone considering this product to go for it. It's easy to use, cheaper than the value, and there is tons and tons of support from the BigFix community. With almost every challenge we have someone who has encountered it, and you will have a solution right away."
"BigFix is incredibly fast and accurate in patching, reporting, and remediation."
"The most valuable feature is the patching."
"The use of fast query has been extremely valuable providing insight in real time of the endpoints."
"Having higher visibility on patching level, on patching successful, and non-successful has been a way that BigFix has improved my organization. Also, the ability to customize the content to do what we need it to do is very powerful and very flexible for us. Finally, in the area of custom interfaces like REST API really gives us the ability to provide for our external customers."
"Its ability to rollback anti-ransomware once an attack has started is the most valuable feature."
"Its ease of use is the most valuable feature. We had existing endpoints and it was an easy upgrade process. The interface board is also easy to use."
"Administratively, it's easy to control."
"The security is its most valuable feature."
"It helps us to detect running malicious activity in our network and after the COVID situation, most users are working from home where it becomes very difficult for IT admin to maintain security so such type of solution definitely helps us to prevent cyber attacks."
"The graphical interface is very easy to use and intuitive, which greatly facilitates the work and greatly facilitates the work and the location of threats on the users' computers."
"In terms of network usage, it actually reduced the amount of malicious attacks that we had. Before, we really didn't have a secure network. Each endpoint had to protect itself and probably most of them were not actually protected. Now, it's an entire process in which we've been able to cut down significantly the amount of malicious attacks by 60 percent that we get in the organization. It helps us to adequately monitor what has been going on with our network traffic and stopping individual attacks from accessing certain sites where we want to have restrictions or limitations."
"We now feel more secure with our PCs, even more with the non-technical persons."
"We would like to have an API integration with a SIEM solution, because as far as I know, it currently hasn't yet been released."
"I would like them to add whatever makes filtering more advanced in scanning and blocking for malware in emails."
"The solution needs more in-depth analytics."
"In the next version of this solution, I would like to see the addition of local authentication."
"The initial setup is a bit complex because you need to execute existing antiviruses or security software that you have on your device."
"In the next release, I would for it to have back up abilities. I would like the ability to go back to a point in time to when my PC was uninfected and to the moment of when the infection happened."
"The reporting and analytics areas of the solution need to be improved."
"I would like more seamless integration."
"Sometimes there is a lag time for our users."
"I would request them to build a robots, or an easier way for integration with the other tools, like ITSM tools."
"To make it a ten they should improve the licensing. Second, if they could have one environment for everything it would be nice. For you to install compliance you need to install the server, and then you add the modules. For you to install inventory you install the server and then you add the modules. It's not easy to do. When I was doing it before I learned it, it was not straight forward."
"I would like to see more integration with external data."
"I would like to see more emphasis on using the web console, to have the same power as the full fat client console that they do they now. It's a lighter way to log in and it would be faster for our operators to do their work. The console tends to take a long time for a large number of clients."
"The self-service application seems to need some work to replace the client UI. There are a lot of pop-ups if you use a baseline as the object that you're setting to a workstation. Unless you're using web UI, the message is not customizable in the user notification."
"License management isn't quite as easy as it should be to deal with the licensing. You need to take the server down to import the new licenses which I find to be annoying."
"I'm looking for them to make big web UI improvements."
"It needs to include built-in deployment. This will make the job easier rather than having to go and dig up an Active Directory deployment along with policy objects."
"There was a learning curve for our general population of employees (the user)."
"Off the top of my head, I can't think of a way it has improved my organization."
"We know that Check Point has a very good database about threats even Check Point tries to make this EDR stable still there are some issues we were facing after upgrading or taking TAC to help its got resolved but Check Point really needs to work on metadata."
"SandBlast Agent had moments in which it had a high load, we escalated it to the CheckPoint support that helped us to stabilize it. We had a problem with the parameterization of the solution. Once corrected by following the CheckPoint instructions, everything worked normally again."
"There should be some way of managing this solution outside the organization's network, possibly with some type of remote access. For example, if I'm the admin of Check Point who manages the entire network, I would like to have access on my home device or maybe a mobile app to get reports, etc."
"The solution could be improved in the future with a way to provide online training to customers for free, as other providers do."
"Some of the less tech-savvy users sometimes find it difficult in adjusting and learning how to use the platform."
Pricing and Cost Advice
"The costs of 50 licenses of AMP for three years is around $9,360."
"The price is very good."
"The visibility that we have into the endpoint and the forensics that we're able to collect give us value for the price. This is not an overly expensive solution, considering all the things that are provided. You get great performance and value for the cost."
"Whenever you are doing the licensing process, I would highly advise to look at what other Cisco solutions you have in your organization, then evaluate if an Enterprise Agreement is the best way to go. In our case, it was the best way to go. Since we had so many other Cisco products, we were able to tie those in. We were actually able to get several Cisco security solutions for less than if we had bought three or four Cisco security solutions independently or ad hoc."
"In our case, it is a straightforward annual payment through our Enterprise Agreement."
"Our company was very happy with the price of Cisco AMP. It was about a third of what we were paying for System Center Endpoint Protection."
"There are a couple of different consumption models: Pay up front, or if you have an enterprise agreement, you can do a monthly thing. Check your licensing possibilities and see what's best for your organization."
"The Enterprise Agreement is like an all-you-can-eat buffet of Cisco products. In that vein, it was very affordable."
"The product is less costly when compared to other solutions, and this is a good solid solution for what we have paid."
"Compliance, inventory, and licensing are really pricey. They should lower the price. It discourages users from getting onboard."
"In terms of licensing, have a buffer zone around your projects in terms of the amount of endpoints that you want to have. You can always have more, but it is best to leave room for a little increase or growth."
"The solution is too pricey."
"One of the key factors that made us go with this solution was the pricing. On the licensing part, there was an initial complementary set of licenses offered in the initial onboarding package, either 15 or 20. Then, we had some complementary licenses in the initial purchase of the package. That was pretty useful."
Questions from the Community
Top Answer: The solution's integration capabilities are excellent. It's one of the best features.
Top Answer: Nice to have URL management, password protection of the app, more details of the machine & user running the app.
Top Answer: The primary use case is for endpoint protection. For the larger deployments, we use it for our policy enforcement as… more »
Top Answer: I am not sure about roadmap for BigFix after it was sold by IBM to HCL. I have used it a bit only for small time for OS… more »
Ask a question
Earn 20 points
Compared 14% of the time.
Compared 11% of the time.
Compared 9% of the time.
Compared 8% of the time.
Compared 7% of the time.
Compared 36% of the time.
Compared 19% of the time.
Compared 6% of the time.
Compared 5% of the time.
Compared 3% of the time.
Compared 100% of the time.
Also Known As
|Tivoli Endpoint Manager|
Advanced Malware Protection (AMP) is subscription-based, managed through a web-based management console, and deployed on a variety of platforms that protects endpoints, network, email and web Traffic. AMP key features include the following: Global threat intelligence to proactively defend against known and emerging threats, Advanced sandboxing that performs automated static and dynamic analysis of files against more than 700 behavioral indicators, Point-in-time malware detection and blocking in real time and Continuous analysis and retrospective security regardless of the file's disposition and Continuous analysis and retrospective security.
HCL BigFix provides complete visibility and control into all endpoints through a single, collaborative endpoint management platform that enables IT/Security Operations to fully automate discovery, management and remediation of endpoints, whether they are on-prem or in the cloud, regardless of location or connectivity. BigFix bridges the gap between IT and Security Operations, drastically reducing remediation times and costs. With BigFix, enterprises can protect endpoints running Windows, UNIX, Linux, and macOS by achieving greater than 98% first-pass patch success rates and enabling continuous endpoint compliance. Unlike complex tools that cover a subset of endpoints and take days or weeks to remediate, BigFix can find and fix endpoints fast.
SandBlast Agent is a complete endpoint security solution offering a fleet of advanced endpoint threat prevention capabilities so you can safely navigate today's menacing threat landscape. It provides a comprehensive system to proactively prevent, detect, and remediate evasive malware attacks.
Learn more about Cisco AMP for Endpoints
Learn more about BigFix
Learn more about Check Point SandBlast Agent
|Heritage Bank, Mobile County Schools, NHL University, Thunder Bay Regional, Yokogawa Electric, Sam Houston State University, First Financial Bank||US Foods, Penn State, St Vincent's Health US Foods, Sabadell Bank, SunTrust, Australia Sydney, Stemac, Capgemini, WNS Global Services, Jebsen & Jessen, CenterBeam, Strauss, Christian Hospital Centre, Brit Insurance, Career Education Corporation||IMC, Alrov, Medical Advocacy and Outreach, Starkey Hearing Technologies, Community Newspaper Group|
Comms Service Provider7%
Computer Software Company26%
Comms Service Provider25%
Financial Services Firm6%
Computer Software Company42%
Comms Service Provider11%
Comms Service Provider29%
Financial Services Firm29%
See our list of best Endpoint Protection (EPP) for Business vendors.