Compare FireEye Endpoint Security vs. RSA NetWitness Endpoint

Cancel
You must select at least 2 products to compare!
Most Helpful Review
Korede Olatunji
Strong IDS solution, easy deployment, coverage across multiple platforms with at-a-glance dashboard and many more...
It has been effective as the primary AV tool. The visibility, dashboard and the navigations gives pretty decent insights into threats, IOCs and... Read more »
Hubert Luberek
A simple to use, yet effective solution for protecting us against malware and other threats
This solution has helped to protect our organization against security threats.
Use RSA NetWitness Endpoint? Share your opinion.
Free Report: FireEye Endpoint Security vs. RSA NetWitness Endpoint
Find out what your peers are saying about FireEye Endpoint Security vs. RSA NetWitness Endpoint and other solutions. Updated: January 2021.
Download now
455,962 professionals have used our research since 2012.
Quotes From Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Pros
"Its most valuable features are its scalability and advanced threat protection for customers.""I am told that we get over 100 million emails a month. This filters them down and allows only somewhere about three million emails, which is a great help.""For the initial first level of support, we provide it from our side. If there's escalation required, we use Cisco tech for the AMP. And again, they are perfect. I mean, one of the best, compared to any other vendors.""The most valuable features of this solution are the IPS and the integration with ISE.""The simplicity of use is its most valuable feature. You can very clearly see things.""The stability of the solution is perfect. I believe it's the most stable solution on the market right now.""I am really satisfied with the technical support.""It is a very stable program."

More Cisco AMP for Endpoints Pros »

"It is very valuable in finding out unknown malware.""The most valuable feature of this solution is its simplicity.""The most valuable network security feature is the network sandbox solution. This sandbox feature works on traffic flow.""The investigation and forensic analysis have been most helpful.""The most valuable feature is the integration between environments.""The exploit guard and malware protection features are very useful. The logon tracker feature is also very useful. They have also given new modules such as logout backup, process backup. We ordered these modules from the FireEye market place, and we have installed these modules. We are currently exploring these features."

More FireEye Endpoint Security Pros »

"We've contacted technical support several times. They've been very good. They have been able to help us resolve our issues.""This solution allows us to locate the malware in real-time."

More RSA NetWitness Endpoint Pros »

Cons
"We would like to have an API integration with a SIEM solution, because as far as I know, it currently hasn't yet been released.""I would like them to add whatever makes filtering more advanced in scanning and blocking for malware in emails.""The solution needs more in-depth analytics.""In the next version of this solution, I would like to see the addition of local authentication.""The initial setup is a bit complex because you need to execute existing antiviruses or security software that you have on your device.""In the next release, I would for it to have back up abilities. I would like the ability to go back to a point in time to when my PC was uninfected and to the moment of when the infection happened.""The reporting and analytics areas of the solution need to be improved.""I would like more seamless integration."

More Cisco AMP for Endpoints Cons »

"I hope the solution can be used in cloud systems going forward.""The integration and display of the dashboards have to be done better.""They could also increase or improve the scalability because to my knowledge the biggest bandwidth can only support up to 10 gigs of input.""If you have another endpoint product running on the same machine, you have to fine tune functions from FireEye to avoid performance and user experience issues.""I would like to see simple processing and reporting online.""The Linux support is very poor. I use base detection. Currently, they are providing malware protection and logon track features in Windows and Mac. These features aren't available in Linux. It will be helpful to extend these capabilities to Linux. We would also like assets grouping and device lock protection features, which are included in their roadmap."

More FireEye Endpoint Security Cons »

"The contamination feature could be improved.""I would like to see Security Orchestration and Response Automation (SOAR) integration."

More RSA NetWitness Endpoint Cons »

Pricing and Cost Advice
"The costs of 50 licenses of AMP for three years is around $9,360.""The price is very good.""The visibility that we have into the endpoint and the forensics that we're able to collect give us value for the price. This is not an overly expensive solution, considering all the things that are provided. You get great performance and value for the cost.""Whenever you are doing the licensing process, I would highly advise to look at what other Cisco solutions you have in your organization, then evaluate if an Enterprise Agreement is the best way to go. In our case, it was the best way to go. Since we had so many other Cisco products, we were able to tie those in. We were actually able to get several Cisco security solutions for less than if we had bought three or four Cisco security solutions independently or ad hoc.""In our case, it is a straightforward annual payment through our Enterprise Agreement.""Our company was very happy with the price of Cisco AMP. It was about a third of what we were paying for System Center Endpoint Protection.""There are a couple of different consumption models: Pay up front, or if you have an enterprise agreement, you can do a monthly thing. Check your licensing possibilities and see what's best for your organization.""The Enterprise Agreement is like an all-you-can-eat buffet of Cisco products. In that vein, it was very affordable."

More Cisco AMP for Endpoints Pricing and Cost Advice »

"The current pricing is much better than before because they now offer product-related promotions along with some changes in product licensing. The new pricing model is better than before.""It is a yearly subscription-based product, which includes the license and hardware. There is also a subscription for technical support up to five years."

More FireEye Endpoint Security Pricing and Cost Advice »

"The cost depends on the number of endpoints that you want to monitor, but it is not expensive."

More RSA NetWitness Endpoint Pricing and Cost Advice »

report
See Which Vendors Are Best For You
Use our free recommendation engine to learn which Endpoint Detection and Response (EDR) solutions are best for your needs.
See Recommendations
455,962 professionals have used our research since 2012.
Questions from the Community
What do you like most about Cisco AMP for Endpoints?
Top Answer: The solution's integration capabilities are excellent. It's one of the best features.
Read all 9 answers
What needs improvement with Cisco AMP for Endpoints?
Top Answer: Nice to have URL management, password protection of the app, more details of the machine & user running the app.
Read all 10 answers
What is your primary use case for Cisco AMP for Endpoints?
Top Answer: The primary use case is for endpoint protection. For the larger deployments, we use it for our policy enforcement as… more »
Read all 7 answers
Ask a question

Earn 20 points

Ask a question

Earn 20 points

Popular Comparisons
+ Add more products to compare
+ Add more products to compare
Darktrace vs. RSA NetWitness Endpoint
Compared 10% of the time.
+ Add more products to compare
Also Known As
RSA ECAT
Learn
Cisco
FireEye
RSA
Overview

Advanced Malware Protection (AMP) is subscription-based, managed through a web-based management console, and deployed on a variety of platforms that protects endpoints, network, email and web Traffic. AMP key features include the following: Global threat intelligence to proactively defend against known and emerging threats, Advanced sandboxing that performs automated static and dynamic analysis of files against more than 700 behavioral indicators, Point-in-time malware detection and blocking in real time and Continuous analysis and retrospective security regardless of the file's disposition and Continuous analysis and retrospective security.

FireEye Endpoint Security is an integrated endpoint solution that detects, prevents and responds effectively to known malware and threats traditional anti-virus endpoint security products miss. It expands endpoint visibility and provides contextual frontline intelligence to help analysts automate protection, quickly determine the exact scope and level of any attack activity and adapt defenses as needed.

RSA NetWitness Endpoint is an endpoint detection and response solution that employs a combination of live memory analysis, continuous behavioral monitoring, and advanced machine learning to detect known, new, unknown, and non-malware threats that other solutions miss entirely. RSA NetWitness Endpoint helps focus investigations amid thousands of alerts and offers 3X the impact for security teams by considerably reducing attacker dwelltime and accelerating threat response.
Offer
Learn more about Cisco AMP for Endpoints
Learn More
Learn more about FireEye Endpoint Security
Learn More
Learn more about RSA NetWitness Endpoint
Learn More
Sample Customers
Heritage Bank, Mobile County Schools, NHL University, Thunder Bay Regional, Yokogawa Electric, Sam Houston State University, First Financial BankTech Resources Limited, Globe Telecom, Rizal Commercial Banking CorporationADP, Ameritas, Partners Healthcare
Top Industries
REVIEWERS
Healthcare Company20%
Government13%
Manufacturing Company7%
Financial Services Firm7%
VISITORS READING REVIEWS
Comms Service Provider29%
Computer Software Company23%
Government6%
Financial Services Firm4%
VISITORS READING REVIEWS
Computer Software Company25%
Comms Service Provider22%
Government11%
Financial Services Firm4%
VISITORS READING REVIEWS
Computer Software Company32%
Comms Service Provider19%
Financial Services Firm6%
Media Company5%
Company Size
REVIEWERS
Small Business36%
Midsize Enterprise16%
Large Enterprise48%
VISITORS READING REVIEWS
Small Business18%
Midsize Enterprise21%
Large Enterprise62%
No Data Available
REVIEWERS
Small Business57%
Midsize Enterprise14%
Large Enterprise29%
Free Report: FireEye Endpoint Security vs. RSA NetWitness Endpoint
Find out what your peers are saying about FireEye Endpoint Security vs. RSA NetWitness Endpoint and other solutions. Updated: January 2021.
Download now
455,962 professionals have used our research since 2012.

FireEye Endpoint Security is ranked 13th in Endpoint Detection and Response (EDR) with 5 reviews while RSA NetWitness Endpoint is ranked 21st in Endpoint Detection and Response (EDR) with 2 reviews. FireEye Endpoint Security is rated 7.0, while RSA NetWitness Endpoint is rated 7.0. The top reviewer of FireEye Endpoint Security writes "A simple to use, yet effective solution for protecting us against malware and other threats". On the other hand, the top reviewer of RSA NetWitness Endpoint writes "Good performance and reporting, and can discover unknown malware using signatureless detection methods". FireEye Endpoint Security is most compared with CrowdStrike Falcon, Darktrace, Carbon Black CB Defense, Microsoft Defender for Endpoint and Code42 Next-Gen DLP, whereas RSA NetWitness Endpoint is most compared with Carbon Black CB Defense, CrowdStrike Falcon, Symantec End-user Endpoint Security, Darktrace and Cybereason Endpoint Detection & Response. See our FireEye Endpoint Security vs. RSA NetWitness Endpoint report.

See our list of best Endpoint Detection and Response (EDR) vendors.

We monitor all Endpoint Detection and Response (EDR) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.