Most Helpful Review
Find out what your peers are saying about BigFix vs. CyberArk Endpoint Privilege Manager and other solutions. Updated: January 2020.
390,810 professionals have used our research since 2012.
We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
One of the biggest benefits BigFix has had for our organization is the ease and efficiency to perform many different tasks, across pillars and platforms, all from one pane of glass.
The older version of the tools that I use also included the connectivity aspect, and the fact that the tool now has it separate from the collection of usage data makes the deployment of these tools much easier.
The most valuable feature is patch management, a must have, even for Linux and iOS.
It's enabled us to have a highly successful endpoint patching program for the past decade. It's been enormously successful there. It's also become a core part of many of our business processes, from compliance monitoring of endpoints, encryption management, key escrow, and local administrator password escrow. It's built into our inventory. It's very much everywhere.
Servers are patched more consistently than they have been previously.
Being able to intelligently create reports, gather data, export CSVs and give that to the leadership of some of the client groups that my team supports has helped my organization.
We are able to use BigFix through API connections to automate and reduce resources and time. The product's been great for us. It's increased the security posture ten-fold and it's increased our visibility across our endpoints enormously.
BigFix has drastically reduced the maintenance window period to patch and reboot servers.
It has drastically reduced the attack surface for local administrative rights and the chance of escalation of privilege. We've removed, at this point, close to 98 percent of the local administrative accounts on workstations. If there were an incident, it would stop at that point and we'd be able to know.
Monitoring and recording are valuable features, particularly the recording.
This is the number one product for privilege account security.
I would like to see SDK for Web UI included in the next release.
I self-taught for this online, so the initial setup was a little difficult to pick up at first. I had to create a couple of testing environments and destroy them in order to learn how to use it. There was a lot of trial and error, a lot of reading of the manuals.
I would like to see the Self Service section made more user-friendly.
Around the scalability concern, I would like to see the ability to run teamed, clustered, or hierarchical root servers, in order to provide a more robust, high availability system. The single monolithic root server model does somewhat bother me.
I would like to see the integration of user security between the different products to be improved. There's separate security for compliance, separate security for web reports, and the console, and you have to manage those things separately.
The stability is generally pretty good. The one thing that we came across is the battle between load on endpoints and load on our servers and relays versus how quickly, effectively and reliably actions can be taken. I'd like to not have to take an action on a system while I'm working with someone and then have to say whether something will happen between five seconds or thirty minutes from that point.
I would like to see API connectivity, built-in API connectors to the standard toolsets, whether it's for your ServiceNow or your Qualys. More API connectivity to make it easier to integrate to other tools.
I would like to see a web UI SDK so we could take what is provided currently and be able to build our own customized web UI for particular customers that want to sell service.
We have had some major issues with the tool, but we have worked with the R&D teams and we have worked with support. There is room for improvement, especially on response times. But they're working on it and they're doing the best they can.
I'd like to see the product include out of the box connectors.
For an experienced system implementer it will take approximately one day. However, for somebody who is inexperienced it may take up to five days.
Pricing and Cost Advice
Compliance, inventory, and licensing are really pricey. They should lower the price. It discourages users from getting onboard.
The product is less costly when compared to other solutions, and this is a good solid solution for what we have paid.
licensing for this solution is based on the number of APV (privileged users), and the number of sessions that you want to record.
out of 58 in Endpoint Protection (EPP) for Business
Average Words per Review
out of 58 in Endpoint Protection (EPP) for Business
Average Words per Review
Compared 42% of the time.
Compared 16% of the time.
Compared 5% of the time.
Compared 20% of the time.
Compared 15% of the time.
Compared 13% of the time.
Also Known As
|Tivoli Endpoint Manager||Viewfinity|
IBM BigFix provides complete visibility and control into all endpoints through a single, unified platform. Enterprises can now bridge the bridge the gap between threat detection and response, drastically reducing remediation times and costs by consolidating best-in-class EDR, enterprise asset discovery, endpoint interrogation, rich threat intelligence, multi-platform patch management (90+ OS) and software distribution. Security and operations teams can see, understand and act on all endpoint threats while proactively reducing the attack surface. • SEE: Discover and audit every endpoint, on or off the corporate network—and rapidly detect evasive attacks using behavioral analytics that understand how attackers compromise your endpoints. • UNDERSTAND: Guided investigation enables security analysts to understand the full context and scope of an attack based on real-time endpoint information, not just historical data. • ACT: Respond with purpose. BigFix provides the capability to deliver targeted remediation—not only on patient zero but enterprise-wide—in minutes or hours.
CyberArk Endpoint Privilege Manager enables organizations to enforce least privilege policies for business and administrative users, as well as control applications to reduce the attack surface without halting productivity. The solution helps organizations revoke everyday local administrator privileges from business users while seamlessly elevating privileges when required by trusted applications. CyberArk Endpoint Privilege Manager also enables security teams to enforce granular least privilege policies for IT administrators, helping organizations effectively segregate duties on Windows servers. Complementing these privilege controls, the solution also delivers application controls, which are designed to manage and control which applications are permitted to run on endpoints and servers and prevent malicious applications from penetrating the environment.
Learn more about BigFix
Learn more about CyberArk Endpoint Privilege Manager
|US Foods, Penn State, St Vincent's Health US Foods, Sabadell Bank, SunTrust, Australia Sydney, Stemac, Capgemini, WNS Global Services, Jebsen & Jessen, CenterBeam, Strauss, Christian Hospital Centre, Brit Insurance, Career Education Corporation||Clearstream, McKesson, Boston Childrens Hospital|
Software R&D Company35%
Comms Service Provider7%
No Data Available
See also BigFix Reviews, CyberArk Endpoint Privilege Manager Reviews, and our list of Best Endpoint Protection (EPP) for Business Companies.