Most Helpful Review
Find out what your peers are saying about Cybereason Endpoint Detection & Response vs. FireEye Endpoint Security and other solutions. Updated: November 2020.
447,439 professionals have used our research since 2012.
We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
"Its most valuable features are its scalability and advanced threat protection for customers."
"I am told that we get over 100 million emails a month. This filters them down and allows only somewhere about three million emails, which is a great help."
"For the initial first level of support, we provide it from our side. If there's escalation required, we use Cisco tech for the AMP. And again, they are perfect. I mean, one of the best, compared to any other vendors."
"The most valuable features of this solution are the IPS and the integration with ISE."
"The simplicity of use is its most valuable feature. You can very clearly see things."
"The stability of the solution is perfect. I believe it's the most stable solution on the market right now."
"I am really satisfied with the technical support."
"It is a very stable program."
"For me, the technical support is good."
"The solution is efficient."
"It is very valuable in finding out unknown malware."
"The most valuable feature of this solution is its simplicity."
"The most valuable network security feature is the network sandbox solution. This sandbox feature works on traffic flow."
"The investigation and forensic analysis have been most helpful."
"The most valuable feature is the integration between environments."
"The exploit guard and malware protection features are very useful. The logon tracker feature is also very useful. They have also given new modules such as logout backup, process backup. We ordered these modules from the FireEye market place, and we have installed these modules. We are currently exploring these features."
"We would like to have an API integration with a SIEM solution, because as far as I know, it currently hasn't yet been released."
"I would like them to add whatever makes filtering more advanced in scanning and blocking for malware in emails."
"The solution needs more in-depth analytics."
"In the next version of this solution, I would like to see the addition of local authentication."
"The initial setup is a bit complex because you need to execute existing antiviruses or security software that you have on your device."
"In the next release, I would for it to have back up abilities. I would like the ability to go back to a point in time to when my PC was uninfected and to the moment of when the infection happened."
"The reporting and analytics areas of the solution need to be improved."
"I would like more seamless integration."
"The integration with Microsoft solutions and Microsoft capabilities needs to be improved."
"Reporting could be a bit more granular so that we had the ability to check regions and countries. I just noticed that, for instance, if I look at our servers, it's either "contained" or it's "not contained". I don't have the option, for instance, to look at countries. It only allows me to look at users as one big group."
"I hope the solution can be used in cloud systems going forward."
"The integration and display of the dashboards have to be done better."
"They could also increase or improve the scalability because to my knowledge the biggest bandwidth can only support up to 10 gigs of input."
"If you have another endpoint product running on the same machine, you have to fine tune functions from FireEye to avoid performance and user experience issues."
"I would like to see simple processing and reporting online."
"The Linux support is very poor. I use base detection. Currently, they are providing malware protection and logon track features in Windows and Mac. These features aren't available in Linux. It will be helpful to extend these capabilities to Linux. We would also like assets grouping and device lock protection features, which are included in their roadmap."
Pricing and Cost Advice
"The costs of 50 licenses of AMP for three years is around $9,360."
"The price is very good."
"The visibility that we have into the endpoint and the forensics that we're able to collect give us value for the price. This is not an overly expensive solution, considering all the things that are provided. You get great performance and value for the cost."
"Whenever you are doing the licensing process, I would highly advise to look at what other Cisco solutions you have in your organization, then evaluate if an Enterprise Agreement is the best way to go. In our case, it was the best way to go. Since we had so many other Cisco products, we were able to tie those in. We were actually able to get several Cisco security solutions for less than if we had bought three or four Cisco security solutions independently or ad hoc."
"In our case, it is a straightforward annual payment through our Enterprise Agreement."
"Our company was very happy with the price of Cisco AMP. It was about a third of what we were paying for System Center Endpoint Protection."
"There are a couple of different consumption models: Pay up front, or if you have an enterprise agreement, you can do a monthly thing. Check your licensing possibilities and see what's best for your organization."
"The Enterprise Agreement is like an all-you-can-eat buffet of Cisco products. In that vein, it was very affordable."
"In terms of pricing, it's a good solution."
"The current pricing is much better than before because they now offer product-related promotions along with some changes in product licensing. The new pricing model is better than before."
"It is a yearly subscription-based product, which includes the license and hardware. There is also a subscription for technical support up to five years."
Questions from the Community
Top Answer: The solution's integration capabilities are excellent. It's one of the best features.
Top Answer: Nice to have URL management, password protection of the app, more details of the machine & user running the app.
Top Answer: The primary use case is for endpoint protection. For the larger deployments, we use it for our policy enforcement as… more »
Top Answer: For me, the technical support is good.
Top Answer: In terms of pricing, it's a good solution.
Top Answer: The integration with Microsoft solutions and Microsoft capabilities needs to be improved. Also, the agility to be ready… more »
Ask a question
Earn 20 points
Compared 14% of the time.
Compared 11% of the time.
Compared 9% of the time.
Compared 8% of the time.
Compared 7% of the time.
Compared 15% of the time.
Compared 8% of the time.
Compared 8% of the time.
Compared 7% of the time.
Compared 38% of the time.
Compared 21% of the time.
Compared 10% of the time.
Compared 6% of the time.
Compared 1% of the time.
Also Known As
|Cybereason EDR, Cybereason Deep Detect & Respond|
Advanced Malware Protection (AMP) is subscription-based, managed through a web-based management console, and deployed on a variety of platforms that protects endpoints, network, email and web Traffic. AMP key features include the following: Global threat intelligence to proactively defend against known and emerging threats, Advanced sandboxing that performs automated static and dynamic analysis of files against more than 700 behavioral indicators, Point-in-time malware detection and blocking in real time and Continuous analysis and retrospective security regardless of the file's disposition and Continuous analysis and retrospective security.
Cybereason's Endpoint Detection and Response platform detects in real-time both signature and non-signature-based attacks and accelerates incident investigation and response. Cybereason connects together individual pieces of evidence to form a complete picture of a malicious operation.
FireEye Endpoint Security is an integrated endpoint solution that detects, prevents and responds effectively to known malware and threats traditional anti-virus endpoint security products miss. It expands endpoint visibility and provides contextual frontline intelligence to help analysts automate protection, quickly determine the exact scope and level of any attack activity and adapt defenses as needed.
Learn more about Cisco AMP for Endpoints
Learn more about Cybereason Endpoint Detection & Response
Learn more about FireEye Endpoint Security
|Heritage Bank, Mobile County Schools, NHL University, Thunder Bay Regional, Yokogawa Electric, Sam Houston State University, First Financial Bank||Lockheed Martin, Spark Capital, DocuSign, Softbank Capital||Tech Resources Limited, Globe Telecom, Rizal Commercial Banking Corporation|
Financial Services Firm7%
Comms Service Provider29%
Computer Software Company24%
Computer Software Company33%
Comms Service Provider21%
Computer Software Company30%
Comms Service Provider20%
No Data Available
No Data Available
See our list of best Endpoint Detection and Response (EDR) vendors.