Compare CyberArk Endpoint Privilege Manager vs. CyberArk PAS

Cancel
You must select at least 2 products to compare!
Most Helpful Review
Anonymous User
Find out what your peers are saying about CrowdStrike, Microsoft, Broadcom and others in Endpoint Protection (EPP) for Business. Updated: November 2020.
447,718 professionals have used our research since 2012.
Quotes From Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Pros
"Its most valuable features are its scalability and advanced threat protection for customers.""I am told that we get over 100 million emails a month. This filters them down and allows only somewhere about three million emails, which is a great help.""For the initial first level of support, we provide it from our side. If there's escalation required, we use Cisco tech for the AMP. And again, they are perfect. I mean, one of the best, compared to any other vendors.""The most valuable features of this solution are the IPS and the integration with ISE.""The simplicity of use is its most valuable feature. You can very clearly see things.""The stability of the solution is perfect. I believe it's the most stable solution on the market right now.""I am really satisfied with the technical support.""It is a very stable program."

More Cisco AMP for Endpoints Pros »

"This is the number one product for privilege account security.""Monitoring and recording are valuable features, particularly the recording.""It has drastically reduced the attack surface for local administrative rights and the chance of escalation of privilege. We've removed, at this point, close to 98 percent of the local administrative accounts on workstations. If there were an incident, it would stop at that point and we'd be able to know.""The most valuable feature is that it does lifecycle management and that it will change to whatever the end target is."

More CyberArk Endpoint Privilege Manager Pros »

"This solution is quite stable.""We are maintaining compliance in PCI, SOX and HIPPA, which is a big thing. Auditors really like it, and it has made us stay compliant.""We are able to know who is accessing what and when; having accountability.""There are no issues with scalability. Our clients are very happy to use the product.""For a while, there were individual IDs having privileged access. We wanted to restrict that. We implemented the solution so that it can be more of internal control. We can have session recordings happening and reduce our attacks.""The Password Upload Utility tool makes it easier when setting up a Safe that contains multiple accounts and has cut down the amount of time that it takes to complete the task.""When we started with RPA, there was a requirement that every credential and the bots themselves be protected through the PAM system. From the get-go, we've had CyberArk in the middle... We've got a pretty robust RPA implementation with our PAM platform. Users, bots, the credentials — everything is managed via our PAM solution.""Right off the bat, the most valuable feature is the DNA scan. It gives us the ability to scan our environment and find the accounts that we're going to need to take under control."

More CyberArk PAS Pros »

Cons
"We would like to have an API integration with a SIEM solution, because as far as I know, it currently hasn't yet been released.""I would like them to add whatever makes filtering more advanced in scanning and blocking for malware in emails.""The solution needs more in-depth analytics.""In the next version of this solution, I would like to see the addition of local authentication.""The initial setup is a bit complex because you need to execute existing antiviruses or security software that you have on your device.""In the next release, I would for it to have back up abilities. I would like the ability to go back to a point in time to when my PC was uninfected and to the moment of when the infection happened.""The reporting and analytics areas of the solution need to be improved.""I would like more seamless integration."

More Cisco AMP for Endpoints Cons »

"For an experienced system implementer it will take approximately one day. However, for somebody who is inexperienced it may take up to five days.""I'd like to see the product include out of the box connectors.""We have had some major issues with the tool, but we have worked with the R&D teams and we have worked with support. There is room for improvement, especially on response times. But they're working on it and they're doing the best they can.""It's an old product and has many areas that can be improved."

More CyberArk Endpoint Privilege Manager Cons »

"I think having a distributed architecture would certainly help this solution.""Make it easier to deploy.""The initial setup of CyberArk is a challenge if you do not have prior experience with it.""Integration with the ticketing system should allow any number of fields to be used for validation before allowing a user to be evaluated and able to access a server.""Currently, in Secure Connect, an end user is required to enter account information manually, and cannot save any of this information for future use.""The one place where we found that this product really needs to improve is the cloud. Simple integrations don't exist, even today. We don't have anything specific on CyberArk for managing, SaaS products, SaaS vendors, SaaS credentials. I understand it's a vendor-based thing and that they have to coordinate with the other vendors to be able to do that, and there are integrations coming. But these are the major places where CyberArk definitely needs to invest some more time.""It's a big program. To scale excessively, locally, on an on-prem application, takes a lot of servers.""CyberArk has to continue to evolve with that threat landscape to make sure that they're still protecting those credentials that are owned by those that have privileged accounts in the firms."

More CyberArk PAS Cons »

Pricing and Cost Advice
"The costs of 50 licenses of AMP for three years is around $9,360.""The price is very good.""The visibility that we have into the endpoint and the forensics that we're able to collect give us value for the price. This is not an overly expensive solution, considering all the things that are provided. You get great performance and value for the cost.""Whenever you are doing the licensing process, I would highly advise to look at what other Cisco solutions you have in your organization, then evaluate if an Enterprise Agreement is the best way to go. In our case, it was the best way to go. Since we had so many other Cisco products, we were able to tie those in. We were actually able to get several Cisco security solutions for less than if we had bought three or four Cisco security solutions independently or ad hoc.""In our case, it is a straightforward annual payment through our Enterprise Agreement.""Our company was very happy with the price of Cisco AMP. It was about a third of what we were paying for System Center Endpoint Protection.""There are a couple of different consumption models: Pay up front, or if you have an enterprise agreement, you can do a monthly thing. Check your licensing possibilities and see what's best for your organization.""The Enterprise Agreement is like an all-you-can-eat buffet of Cisco products. In that vein, it was very affordable."

More Cisco AMP for Endpoints Pricing and Cost Advice »

"licensing for this solution is based on the number of APV (privileged users), and the number of sessions that you want to record.""I think that it was in the range of $200,000 that had to get approved."

More CyberArk Endpoint Privilege Manager Pricing and Cost Advice »

"In comparison to other products on the market, CyberArk is a more costly product."

More CyberArk PAS Pricing and Cost Advice »

report
Use our free recommendation engine to learn which Endpoint Protection (EPP) for Business solutions are best for your needs.
447,718 professionals have used our research since 2012.
Questions from the Community
Top Answer: The solution's integration capabilities are excellent. It's one of the best features.
Top Answer: Nice to have URL management, password protection of the app, more details of the machine & user running the app.
Top Answer: The primary use case is for endpoint protection. For the larger deployments, we use it for our policy enforcement as… more »
Top Answer: It has drastically reduced the attack surface for local administrative rights and the chance of escalation of privilege… more »
Top Answer: If we look at the Privilege Management Inbox, we get a lot of information on what's happening right then and now. But if… more »
Top Answer: If you're going to implement Endpoint Privilege Manager, don't just give everybody EPM and think you're done with it… more »
Top Answer: Right off the bat, the most valuable feature is the DNA scan. It gives us the ability to scan our environment and find… more »
Top Answer: Privileged Access Management is a business transformation program. It forces business to look at their overall operating… more »
Top Answer: We're pretty excited about Alero, the third-party access management. As a small company we lean on vendors quite a bit… more »
Popular Comparisons
Also Known As
ViewfinityCyberArk Privileged Access Security, CyberArk Privileged Account Security, SSH Key Manager, Privileged Session Manager, Privileged Threat Analytics, Application Identity Manager, On-Demand Privileges Manager, Endpoint Privilege Manager
Learn
Cisco
CyberArk
CyberArk
Overview

Advanced Malware Protection (AMP) is subscription-based, managed through a web-based management console, and deployed on a variety of platforms that protects endpoints, network, email and web Traffic. AMP key features include the following: Global threat intelligence to proactively defend against known and emerging threats, Advanced sandboxing that performs automated static and dynamic analysis of files against more than 700 behavioral indicators, Point-in-time malware detection and blocking in real time and Continuous analysis and retrospective security regardless of the file's disposition and Continuous analysis and retrospective security.

CyberArk Endpoint Privilege Manager enables organizations to enforce least privilege policies for business and administrative users, as well as control applications to reduce the attack surface without halting productivity. The solution helps organizations revoke everyday local administrator privileges from business users while seamlessly elevating privileges when required by trusted applications. CyberArk Endpoint Privilege Manager also enables security teams to enforce granular least privilege policies for IT administrators, helping organizations effectively segregate duties on Windows servers. Complementing these privilege controls, the solution also delivers application controls, which are designed to manage and control which applications are permitted to run on endpoints and servers and prevent malicious applications from penetrating the environment.

CyberArk is the trusted expert in privileged account security. Designed from the ground up with a focus on security, CyberArk has developed a powerful, modular technology platform that provides the industry's most comprehensive Privileged Account Security Solution.

Offer
Learn more about Cisco AMP for Endpoints
Learn more about CyberArk Endpoint Privilege Manager
Learn more about CyberArk PAS
Sample Customers
Heritage Bank, Mobile County Schools, NHL University, Thunder Bay Regional, Yokogawa Electric, Sam Houston State University, First Financial BankClearstream, McKesson, Boston Childrens HospitalRockwell Automation
Top Industries
REVIEWERS
Healthcare Company20%
Government13%
University7%
Comms Service Provider7%
VISITORS READING REVIEWS
Comms Service Provider30%
Computer Software Company24%
Government5%
Manufacturing Company3%
VISITORS READING REVIEWS
Computer Software Company36%
Comms Service Provider12%
Insurance Company10%
Media Company5%
REVIEWERS
Financial Services Firm25%
Insurance Company15%
Energy/Utilities Company10%
Comms Service Provider8%
VISITORS READING REVIEWS
Computer Software Company33%
Comms Service Provider19%
Financial Services Firm7%
Government5%
Company Size
REVIEWERS
Small Business36%
Midsize Enterprise16%
Large Enterprise48%
VISITORS READING REVIEWS
Small Business21%
Midsize Enterprise21%
Large Enterprise57%
REVIEWERS
Small Business44%
Midsize Enterprise11%
Large Enterprise44%
REVIEWERS
Small Business18%
Midsize Enterprise10%
Large Enterprise72%
VISITORS READING REVIEWS
Small Business16%
Midsize Enterprise9%
Large Enterprise76%
Find out what your peers are saying about CrowdStrike, Microsoft, Broadcom and others in Endpoint Protection (EPP) for Business. Updated: November 2020.
447,718 professionals have used our research since 2012.
CyberArk Endpoint Privilege Manager is ranked 27th in Endpoint Protection (EPP) for Business with 4 reviews while CyberArk PAS is ranked 1st in Privileged Access Management with 22 reviews. CyberArk Endpoint Privilege Manager is rated 8.2, while CyberArk PAS is rated 9.0. The top reviewer of CyberArk Endpoint Privilege Manager writes "Enables us to see how users use their access and lock down things that aren't appropriate". On the other hand, the top reviewer of CyberArk PAS writes "Provides simplicity and ease of implementation for the right level of security controls". CyberArk Endpoint Privilege Manager is most compared with BeyondTrust Endpoint Privilege Management, Carbon Black CB Defense, CrowdStrike Falcon and BigFix, whereas CyberArk PAS is most compared with BeyondTrust Endpoint Privilege Management, Thycotic Secret Server, Microsoft Azure Active Directory Premium, Cisco ISE (Identity Services Engine) and SailPoint IdentityIQ.

See our list of .

We monitor all Endpoint Protection (EPP) for Business reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.