Compare Bromium vs. RSA NetWitness Endpoint

Cancel
You must select at least 2 products to compare!
Cisco AMP for Endpoints Logo
15,269 views|10,916 comparisons
Bromium Logo
2,557 views|1,370 comparisons
RSA NetWitness Endpoint Logo
1,862 views|1,228 comparisons
Most Helpful Review
Use RSA NetWitness Endpoint? Share your opinion.
Find out what your peers are saying about Bromium vs. RSA NetWitness Endpoint and other solutions. Updated: September 2020.
442,194 professionals have used our research since 2012.
Quotes From Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Pros
"Its most valuable features are its scalability and advanced threat protection for customers.""I am told that we get over 100 million emails a month. This filters them down and allows only somewhere about three million emails, which is a great help.""For the initial first level of support, we provide it from our side. If there's escalation required, we use Cisco tech for the AMP. And again, they are perfect. I mean, one of the best, compared to any other vendors.""The most valuable features of this solution are the IPS and the integration with ISE.""The simplicity of use is its most valuable feature. You can very clearly see things.""The stability of the solution is perfect. I believe it's the most stable solution on the market right now.""I am really satisfied with the technical support.""It is a very stable program."

More Cisco AMP for Endpoints Pros »

"Our overall security posture has absolutely improved as a result of adding Bromium to our security stack. We continue to have less user impact through a significantly reduced amount of malware infections. It's become a non-event.""The most valuable feature is the process isolation because it simply stops malware from infecting the machines.""Now, instead of us having to go through that analysis, they actually give us a monthly report that shows us: "Here's what you got hit with, here's what would have happened, here are the forensics behind the attack," and, obviously, Bromium stopped it.""The feature that stands out the most is that when someone clicks on a link in an email... [if] that link is malicious and it has some malware or keylogger attached to it, when it opens up in that Bromium virtualized browser, there's no chance of it actually being on the machine and running, because as soon as they click that "X" in the upper right-hand side of the browser, everything just vanishes. That is an added plus."

More Bromium Pros »

"It is stable. We have been using it for some time, without any issues.""We've contacted technical support several times. They've been very good. They have been able to help us resolve our issues.""This solution allows us to locate the malware in real-time."

More RSA NetWitness Endpoint Pros »

Cons
"We would like to have an API integration with a SIEM solution, because as far as I know, it currently hasn't yet been released.""I would like them to add whatever makes filtering more advanced in scanning and blocking for malware in emails.""The solution needs more in-depth analytics.""In the next version of this solution, I would like to see the addition of local authentication.""The initial setup is a bit complex because you need to execute existing antiviruses or security software that you have on your device.""In the next release, I would for it to have back up abilities. I would like the ability to go back to a point in time to when my PC was uninfected and to the moment of when the infection happened.""The reporting and analytics areas of the solution need to be improved.""I would like more seamless integration."

More Cisco AMP for Endpoints Cons »

"Reporting is one of the shortcomings of the product. We do mine the data that's in there from a forensics perspective... It becomes very difficult because you have to spend a lot of time digging through the volumes of data. Reporting is absolutely the biggest shortcoming.""They have always struggled with usability. The protection that it offers you is tremendous, but there's definitely an impact with use of resources on the computer. It's gotten a lot better now with Win 10. But sometimes, when you open up a website, it's going to take longer than it would without Bromium, and it's the same with documents.""Initially, when we came in contact with Bromium a few years ago, it had a nice threat analyst, or a LAVA Pop, which is what they used to call it. Once it detected malware, it would show us the malware's path... I don't see that on the computers now. We only get to see that in the console. I would like to still see that on the individual machines because when we go out to look at a machine, we don't necessarily have access to the console."

More Bromium Cons »

"This solution needs an upgrade in reporting. I have heard from RSA that they are working on this, but as of yet it is not available.""The contamination feature could be improved.""I would like to see Security Orchestration and Response Automation (SOAR) integration."

More RSA NetWitness Endpoint Cons »

Pricing and Cost Advice
"The costs of 50 licenses of AMP for three years is around $9,360.""The price is very good.""The visibility that we have into the endpoint and the forensics that we're able to collect give us value for the price. This is not an overly expensive solution, considering all the things that are provided. You get great performance and value for the cost.""Whenever you are doing the licensing process, I would highly advise to look at what other Cisco solutions you have in your organization, then evaluate if an Enterprise Agreement is the best way to go. In our case, it was the best way to go. Since we had so many other Cisco products, we were able to tie those in. We were actually able to get several Cisco security solutions for less than if we had bought three or four Cisco security solutions independently or ad hoc.""In our case, it is a straightforward annual payment through our Enterprise Agreement.""Our company was very happy with the price of Cisco AMP. It was about a third of what we were paying for System Center Endpoint Protection.""There are a couple of different consumption models: Pay up front, or if you have an enterprise agreement, you can do a monthly thing. Check your licensing possibilities and see what's best for your organization.""The Enterprise Agreement is like an all-you-can-eat buffet of Cisco products. In that vein, it was very affordable."

More Cisco AMP for Endpoints Pricing and Cost Advice »

"Pricing is reasonable.""The pricing is very fair compared to the competition. The licensing is straightforward."

More Bromium Pricing and Cost Advice »

"I do not have any opinion on the pricing or licensing of the product.""The cost depends on the number of endpoints that you want to monitor, but it is not expensive."

More RSA NetWitness Endpoint Pricing and Cost Advice »

report
Use our free recommendation engine to learn which Endpoint Protection (EPP) for Business solutions are best for your needs.
442,194 professionals have used our research since 2012.
Questions from the Community
Top Answer: The solution's integration capabilities are excellent. It's one of the best features.
Top Answer: Nice to have URL management, password protection of the app, more details of the machine & user running the app.
Top Answer: The primary use case is for endpoint protection. For the larger deployments, we use it for our policy enforcement as… more »
Ask a question

Earn 20 points

Top Answer: We've contacted technical support several times. They've been very good. They have been able to help us resolve our… more »
Top Answer: The contamination feature could be improved.
Top Answer: We use the solution for the contamination. We detect the incidents and then proceed for the contamination and error… more »
Popular Comparisons
Compared 11% of the time.
Compared 9% of the time.
Compared 11% of the time.
Also Known As
Bromium vSentryRSA ECAT
Learn
Cisco
HP
RSA
Overview

Advanced Malware Protection (AMP) is subscription-based, managed through a web-based management console, and deployed on a variety of platforms that protects endpoints, network, email and web Traffic. AMP key features include the following: Global threat intelligence to proactively defend against known and emerging threats, Advanced sandboxing that performs automated static and dynamic analysis of files against more than 700 behavioral indicators, Point-in-time malware detection and blocking in real time and Continuous analysis and retrospective security regardless of the file's disposition and Continuous analysis and retrospective security.

Bromium vSentry offers a better way to defeat cyber attacks that target the endpoint, where more than 70% of breaches originate. vSentry transforms endpoint security with powerful new hardware-isolation technology that protects your business from malware, reduces costs, while empowering your user.

RSA NetWitness Endpoint is an endpoint detection and response solution that employs a combination of live memory analysis, continuous behavioral monitoring, and advanced machine learning to detect known, new, unknown, and non-malware threats that other solutions miss entirely. RSA NetWitness Endpoint helps focus investigations amid thousands of alerts and offers 3X the impact for security teams by considerably reducing attacker dwelltime and accelerating threat response.
Offer
Learn more about Cisco AMP for Endpoints
Learn more about Bromium
Learn more about RSA NetWitness Endpoint
Sample Customers
Heritage Bank, Mobile County Schools, NHL University, Thunder Bay Regional, Yokogawa Electric, Sam Houston State University, First Financial BankValsparADP, Ameritas, Partners Healthcare
Top Industries
REVIEWERS
Healthcare Company20%
Government13%
Financial Services Firm7%
Non Profit7%
VISITORS READING REVIEWS
Computer Software Company27%
Comms Service Provider26%
Government6%
Retailer3%
VISITORS READING REVIEWS
Computer Software Company43%
Government9%
Comms Service Provider7%
Construction Company7%
VISITORS READING REVIEWS
Computer Software Company34%
Comms Service Provider20%
Financial Services Firm8%
Media Company6%
Company Size
REVIEWERS
Small Business36%
Midsize Enterprise16%
Large Enterprise48%
VISITORS READING REVIEWS
Small Business21%
Midsize Enterprise25%
Large Enterprise53%
No Data Available
REVIEWERS
Small Business57%
Midsize Enterprise14%
Large Enterprise29%
Find out what your peers are saying about Bromium vs. RSA NetWitness Endpoint and other solutions. Updated: September 2020.
442,194 professionals have used our research since 2012.
Bromium is ranked 22nd in Endpoint Protection (EPP) for Business with 3 reviews while RSA NetWitness Endpoint is ranked 33rd in Endpoint Protection (EPP) for Business with 3 reviews. Bromium is rated 8.4, while RSA NetWitness Endpoint is rated 7.6. The top reviewer of Bromium writes "Enabled us to remove AV defenses from the endpoints protected with this solution". On the other hand, the top reviewer of RSA NetWitness Endpoint writes "Good performance and reporting, and can discover unknown malware using signatureless detection methods". Bromium is most compared with Microsoft Windows Defender, Symantec End-user Endpoint Security, Menlo Web Security and Carbon Black CB Defense, whereas RSA NetWitness Endpoint is most compared with Carbon Black CB Defense, CrowdStrike Falcon, Darktrace and Symantec End-user Endpoint Security. See our Bromium vs. RSA NetWitness Endpoint report.

See our list of best Endpoint Protection (EPP) for Business vendors.

We monitor all Endpoint Protection (EPP) for Business reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.