Compare Cybereason Endpoint Detection & Response vs. RSA NetWitness Endpoint

Cancel
You must select at least 2 products to compare!
Most Helpful Review
Use RSA NetWitness Endpoint? Share your opinion.
Find out what your peers are saying about Cybereason Endpoint Detection & Response vs. RSA NetWitness Endpoint and other solutions. Updated: September 2020.
442,194 professionals have used our research since 2012.
Quotes From Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Pros
"Its most valuable features are its scalability and advanced threat protection for customers.""I am told that we get over 100 million emails a month. This filters them down and allows only somewhere about three million emails, which is a great help.""For the initial first level of support, we provide it from our side. If there's escalation required, we use Cisco tech for the AMP. And again, they are perfect. I mean, one of the best, compared to any other vendors.""The most valuable features of this solution are the IPS and the integration with ISE.""The simplicity of use is its most valuable feature. You can very clearly see things.""The stability of the solution is perfect. I believe it's the most stable solution on the market right now.""I am really satisfied with the technical support.""It is a very stable program."

More Cisco AMP for Endpoints Pros »

"For me, the technical support is good.""The solution is efficient."

More Cybereason Endpoint Detection & Response Pros »

"It is stable. We have been using it for some time, without any issues.""We've contacted technical support several times. They've been very good. They have been able to help us resolve our issues.""This solution allows us to locate the malware in real-time."

More RSA NetWitness Endpoint Pros »

Cons
"We would like to have an API integration with a SIEM solution, because as far as I know, it currently hasn't yet been released.""I would like them to add whatever makes filtering more advanced in scanning and blocking for malware in emails.""The solution needs more in-depth analytics.""In the next version of this solution, I would like to see the addition of local authentication.""The initial setup is a bit complex because you need to execute existing antiviruses or security software that you have on your device.""In the next release, I would for it to have back up abilities. I would like the ability to go back to a point in time to when my PC was uninfected and to the moment of when the infection happened.""The reporting and analytics areas of the solution need to be improved.""I would like more seamless integration."

More Cisco AMP for Endpoints Cons »

"The integration with Microsoft solutions and Microsoft capabilities needs to be improved.""Reporting could be a bit more granular so that we had the ability to check regions and countries. I just noticed that, for instance, if I look at our servers, it's either "contained" or it's "not contained". I don't have the option, for instance, to look at countries. It only allows me to look at users as one big group."

More Cybereason Endpoint Detection & Response Cons »

"This solution needs an upgrade in reporting. I have heard from RSA that they are working on this, but as of yet it is not available.""The contamination feature could be improved.""I would like to see Security Orchestration and Response Automation (SOAR) integration."

More RSA NetWitness Endpoint Cons »

Pricing and Cost Advice
"The costs of 50 licenses of AMP for three years is around $9,360.""The price is very good.""The visibility that we have into the endpoint and the forensics that we're able to collect give us value for the price. This is not an overly expensive solution, considering all the things that are provided. You get great performance and value for the cost.""Whenever you are doing the licensing process, I would highly advise to look at what other Cisco solutions you have in your organization, then evaluate if an Enterprise Agreement is the best way to go. In our case, it was the best way to go. Since we had so many other Cisco products, we were able to tie those in. We were actually able to get several Cisco security solutions for less than if we had bought three or four Cisco security solutions independently or ad hoc.""In our case, it is a straightforward annual payment through our Enterprise Agreement.""Our company was very happy with the price of Cisco AMP. It was about a third of what we were paying for System Center Endpoint Protection.""There are a couple of different consumption models: Pay up front, or if you have an enterprise agreement, you can do a monthly thing. Check your licensing possibilities and see what's best for your organization.""The Enterprise Agreement is like an all-you-can-eat buffet of Cisco products. In that vein, it was very affordable."

More Cisco AMP for Endpoints Pricing and Cost Advice »

"In terms of pricing, it's a good solution."

More Cybereason Endpoint Detection & Response Pricing and Cost Advice »

"I do not have any opinion on the pricing or licensing of the product.""The cost depends on the number of endpoints that you want to monitor, but it is not expensive."

More RSA NetWitness Endpoint Pricing and Cost Advice »

report
Use our free recommendation engine to learn which Endpoint Protection (EPP) for Business solutions are best for your needs.
442,194 professionals have used our research since 2012.
Questions from the Community
Top Answer: The solution's integration capabilities are excellent. It's one of the best features.
Top Answer: Nice to have URL management, password protection of the app, more details of the machine & user running the app.
Top Answer: The primary use case is for endpoint protection. For the larger deployments, we use it for our policy enforcement as… more »
Top Answer: For me, the technical support is good.
Top Answer: The integration with Microsoft solutions and Microsoft capabilities needs to be improved. Also, the agility to be ready… more »
Top Answer: We've contacted technical support several times. They've been very good. They have been able to help us resolve our… more »
Top Answer: The contamination feature could be improved.
Top Answer: We use the solution for the contamination. We detect the incidents and then proceed for the contamination and error… more »
Popular Comparisons
Compared 11% of the time.
Also Known As
Cybereason EDR, Cybereason Deep Detect & RespondRSA ECAT
Learn
Cisco
Cybereason
RSA
Overview

Advanced Malware Protection (AMP) is subscription-based, managed through a web-based management console, and deployed on a variety of platforms that protects endpoints, network, email and web Traffic. AMP key features include the following: Global threat intelligence to proactively defend against known and emerging threats, Advanced sandboxing that performs automated static and dynamic analysis of files against more than 700 behavioral indicators, Point-in-time malware detection and blocking in real time and Continuous analysis and retrospective security regardless of the file's disposition and Continuous analysis and retrospective security.

Cybereason's Endpoint Detection and Response platform detects in real-time both signature and non-signature-based attacks and accelerates incident investigation and response. Cybereason connects together individual pieces of evidence to form a complete picture of a malicious operation.RSA NetWitness Endpoint is an endpoint detection and response solution that employs a combination of live memory analysis, continuous behavioral monitoring, and advanced machine learning to detect known, new, unknown, and non-malware threats that other solutions miss entirely. RSA NetWitness Endpoint helps focus investigations amid thousands of alerts and offers 3X the impact for security teams by considerably reducing attacker dwelltime and accelerating threat response.
Offer
Learn more about Cisco AMP for Endpoints
Learn more about Cybereason Endpoint Detection & Response
Learn more about RSA NetWitness Endpoint
Sample Customers
Heritage Bank, Mobile County Schools, NHL University, Thunder Bay Regional, Yokogawa Electric, Sam Houston State University, First Financial BankLockheed Martin, Spark Capital, DocuSign, Softbank CapitalADP, Ameritas, Partners Healthcare
Top Industries
REVIEWERS
Healthcare Company20%
Government13%
Financial Services Firm7%
Non Profit7%
VISITORS READING REVIEWS
Computer Software Company27%
Comms Service Provider26%
Government6%
Retailer3%
VISITORS READING REVIEWS
Computer Software Company34%
Comms Service Provider18%
Insurance Company7%
Media Company5%
VISITORS READING REVIEWS
Computer Software Company34%
Comms Service Provider20%
Financial Services Firm8%
Media Company6%
Company Size
REVIEWERS
Small Business36%
Midsize Enterprise16%
Large Enterprise48%
VISITORS READING REVIEWS
Small Business21%
Midsize Enterprise25%
Large Enterprise53%
No Data Available
REVIEWERS
Small Business57%
Midsize Enterprise14%
Large Enterprise29%
Find out what your peers are saying about Cybereason Endpoint Detection & Response vs. RSA NetWitness Endpoint and other solutions. Updated: September 2020.
442,194 professionals have used our research since 2012.
Cybereason Endpoint Detection & Response is ranked 23rd in Endpoint Protection (EPP) for Business with 3 reviews while RSA NetWitness Endpoint is ranked 33rd in Endpoint Protection (EPP) for Business with 3 reviews. Cybereason Endpoint Detection & Response is rated 8.0, while RSA NetWitness Endpoint is rated 7.6. The top reviewer of Cybereason Endpoint Detection & Response writes "Efficient with an easy to use interface and excellent technical support". On the other hand, the top reviewer of RSA NetWitness Endpoint writes "Good performance and reporting, and can discover unknown malware using signatureless detection methods". Cybereason Endpoint Detection & Response is most compared with CrowdStrike Falcon, SentinelOne, CylancePROTECT, Symantec End-user Endpoint Security and Microsoft Windows Defender, whereas RSA NetWitness Endpoint is most compared with Carbon Black CB Defense, CrowdStrike Falcon, Darktrace and Symantec End-user Endpoint Security. See our Cybereason Endpoint Detection & Response vs. RSA NetWitness Endpoint report.
We monitor all Endpoint Protection (EPP) for Business reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.