We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
"The visibility and insight this solution gives you into threats is pretty granular. It has constant monitoring. You can get onto the device trajectory to look at a threat, but you can also see what happened prior to the threat. You can see what happened after the threat. You can see what other applications were incorporated into the execution of the threat. For example, you have the event, but you see that the event was launched by Google Chrome, which was launched by something else. Then, after the event, something else was launched by whatever the threat was. Therefore, it gives you great detail, a timeline, and continuity of events leading up to whatever the incident is, and then, after. This helps you understand and nail down what the threat is and how to fix it."
"Another of my favorite features is called the Device Trajectory, where it shows everything that's going on, on a computer. It shows the point in time when a virus is downloaded, so you can see if the user was surfing the internet or had a program open. It shows every running process and file access on the computer and saves it like a snapshot when it detects something malicious. It also has a File Trajectory, so you can even see if that file has been found on any of your other computers that have AMP."
"Integration is a key selling factor for Cisco security products. We have a Cisco Enterprise Agreement with access to Cisco Email Security, Cisco Firepower, Cisco Stealthwatch, Cisco Talos, Cisco Threat Grid, Cisco Umbrella, and also third-party solutions. This is key to our security and maximizing operations. Because we do have the Email Security appliance and it is integrated with Threat Response, we have everything tied together. Additionally, we are using the Cisco SecureX platform, as we were a beta test for that new solution. With SecureX, we are able to pull all those applications into one pane for visibility and maintenance. This greatly maximizes our security operations."
"If somebody has been compromised, the question always is: How has it affected other devices in the network? Cisco AMP gives you a very neat view of that."
"The threat Grid with the ability to observe the sandboxing, analyze, and perform investigations of different malicious files has been great."
"The most valuable feature is signature-based malware detection."
"It is a very stable program."
"It is extensive in terms of providing visibility and insights into threats. It allows for research into a threat, and you can chart your progress on how you're resolving it."
"It's a very easy-to-use product."
"They offer the whole package. Remote monitoring and management (RMM) is included with it, which is pretty nice. They also have Windows patching and third-party patching. It was easy to use for protection. The containment engine was pretty nice for securing our environment."
"The most valuable feature is the management of end-user machines."
"It really protects and does its job. It totally blocked every attack attempt, and no attack attempt was successful."
"The most valuable feature is the central view. With this view, I can see all of the data."
"When comparing Kaspersky Endpoint Security to any other solution, Our customers like mostly the reliability, and the ability to defend against viruses, worms, and attacks. It is easy to use and very light on the end-user machine's resources."
"The feature that I have found most valuable is its deployment. It is easy to centrally deploy. You can deploy it on the Administration Console then deploy it to the different endpoint machines without specifically deploying it manually on each machine. Its deployment is really user friendly."
"I like the security that this solution provides."
"There is plenty of features that make the solution work very well."
"The solution provides protection for all our systems, file servers, endpoints and domain controllers."
"This product is easy to use."
"We have had no troubles installing, maintaining, or deploying the product for our clients."
"The connector updates are very easily done now, and that's improving. Previously, the connector had an issue, where almost every time it needed to be updated, it required a machine reboot. This was always a bit of an inconvenience and a bug. Because with a lot of software now, you don't need to do that and shouldn't need to be rebooting all the time."
"I would like to see integration with Cisco Analytics."
"The one challenge that I see is the use of multiple endpoint protection platforms. For instance, we have AMP, but we also have Microsoft Windows Defender, System Center Endpoint Protection, and Microsoft Malware Protection Engine deployed. So, we have a bunch of different things that do the same thing. What winds up happening is, e.g., if I get an alert for a potential incident or malware and want to pull the file, I'll go to fetch the file to analyze it. But, one of these other programs has already gotten it, so the file has already been quarantined by another endpoint protection system. AMP doesn't realize that and the file fetch fails, then you're left wondering what's going on."
"Maybe there is room for improvement in some of the automated remediation. We have other tools in place that AMP feeds into that allow for that to happen, so I look at it as one seamless solution. But if you're buying AMP all by itself, I don't know if it can remove malicious software after the fact or if it requires the other tools that we use to do some of that."
"I would recommend that the solution offer more availability in terms of the product portfolio and integration with third-party products."
"The GUI needs improvement, it's not good."
"We have had some problems with updates not playing nice with our environment. This is important, because if there is a new version, we need to test it thoroughly before it goes into production. We cannot just say, "There's a new version. It's not going to give us any problems." With the complexity of the solution using multiple engines for multiple tasks, it can sometimes cause performance issues on our endpoints. Therefore, we need to test it before we deploy. That takes one to three days before we can be certain that the new version plays nice with our environment."
"...the greatest value of all, would be to make the security into a single pane of glass. Whilst these products are largely integrated from a Talos perspective, they're not integrated from a portal perspective. For example, we have to look at an Umbrella portal and a separate AMP portal. We also have to look at a separate portal for the firewalls. If I could wave a magic wand and have one thing, I would put all the Cisco products into one, simple management portal."
"Their support is not very good because they are very late to reply."
"They need to just modernize the infrastructure with something that is next-generation. We have recently moved to SentinelOne. It had been doing good for us for a while, but we needed something modern with new technology."
"The licensing fees are high. The company should work to try to lower them for the customer."
"They need to enhance the performance of the agents. Currently, the performance is going low when the agent starts a full scan. The agent is consuming a lot of resources while scanning. When there are a lot of documents to check, it slows down the endpoint. This is the only thing that worries me about Comodo, but this issue is also there in other products. It is missing DLP, and I know that they are working on adding some data loss prevention capabilities. They have added some capabilities, but these capabilities are not yet mature. I hope they will enhance these capabilities because it is important to prevent the data from going out from inside. We are protected from the outside, but we also have to be protected from the inside out."
"When we connect to the solutions' website they block out our VPN connection. This causes us some difficulties."
"I would like the solution to be able to allow to have end to end security services from the final user to the server."
"The reporting portion of the solution is quite weak."
"It would be nice if it was less expensive."
"The performance level could be better."
"When it comes to handling the expiration of licenses, the solution should give a company more time to set up a renewal. It happens too abruptly right now."
"Currently, it doesn't have a cloud option. This is something that they should look into going forward."
"It should be more secure and detect new malware as it's released."
"Our company was very happy with the price of Cisco AMP. It was about a third of what we were paying for System Center Endpoint Protection."
"The visibility that we have into the endpoint and the forensics that we're able to collect give us value for the price. This is not an overly expensive solution, considering all the things that are provided. You get great performance and value for the cost."
"The pricing and licensing are reasonable. The cost of AMP for Endpoints is inline with all the other software that has a monthly endpoint cost. It might be a little bit higher than other antivirus type products, but we're only talking about a dollar a month per user. I don't see that cost as being an issue if it's going to give us the confidence and security that we're looking for. We have had a lot of success and happiness with what we're using, so there's no point in changing."
"There are a couple of different consumption models: Pay up front, or if you have an enterprise agreement, you can do a monthly thing. Check your licensing possibilities and see what's best for your organization."
"We can know if something bad is potentially happening instantaneously and prevent it from happening. We can go to a device and isolate it before it infects other devices. In our environment, that's millions of dollars saved in a matter of seconds."
"The Enterprise Agreement is like an all-you-can-eat buffet of Cisco products. In that vein, it was very affordable."
"There is also the Cisco annual subscription plus my management time in terms of what I do with the Cisco product. I spend a minimal amount of time on it though, just rolling out updates as they need them and monitoring the console a couple of times a day to ensure nothing is out of control. Cost-wise, we are quite happy with it."
"Licensing fees are on a yearly basis and I am happy with the pricing."
"The price of this product should be lower."
"It was about 35 or 40 bucks per year for the endpoint."
"The price of the solution is reasonable. It is less costly compared to competitors."
"Licensing costs are on a yearly basis."
"We have an annual license and there is a fee per device used. The price is fair compared to the latest EDR solution."
"Kaspersky is priced well."
"It's an affordable security solution."
"I find the solution to be inexpensive compared to other solution like Crowdstrike."
"We pay a yearly annual subscription for this product."
"The solution requires a license and there are different license packages depending on the number of users you need."
Advanced Malware Protection (AMP) is subscription-based, managed through a web-based management console, and deployed on a variety of platforms that protects endpoints, network, email and web Traffic. AMP key features include the following: Global threat intelligence to proactively defend against known and emerging threats, Advanced sandboxing that performs automated static and dynamic analysis of files against more than 700 behavioral indicators, Point-in-time malware detection and blocking in real time and Continuous analysis and retrospective security regardless of the file's disposition and Continuous analysis and retrospective security.
Comodo Advanced Endpoint Protection (AEP) delivers patent-pending auto-containment, where unknown executables and other files that request runtime privileges are automatically run in a virtual contain that does not have access to the host system's resources or user data.
Comodo Advanced Endpoint Protection is ranked 35th in Endpoint Protection for Business (EPP) with 4 reviews while Kaspersky Endpoint Security for Business is ranked 12th in Endpoint Protection for Business (EPP) with 55 reviews. Comodo Advanced Endpoint Protection is rated 7.2, while Kaspersky Endpoint Security for Business is rated 8.0. The top reviewer of Comodo Advanced Endpoint Protection writes "Flexible, easy-to-use, and scales well". On the other hand, the top reviewer of Kaspersky Endpoint Security for Business writes "A mature product offering good protection and very good features". Comodo Advanced Endpoint Protection is most compared with Sophos Intercept X, Symantec End-User Endpoint Security, CrowdStrike Falcon, SentinelOne and McAfee Endpoint Security, whereas Kaspersky Endpoint Security for Business is most compared with Symantec End-User Endpoint Security, Microsoft Defender for Endpoint, Sophos Intercept X, SentinelOne and Blackberry Protect. See our Comodo Advanced Endpoint Protection vs. Kaspersky Endpoint Security for Business report.
See our list of best Endpoint Protection for Business (EPP) vendors.
We monitor all Endpoint Protection for Business (EPP) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.