Cisco Secure Endpoint Reviews

We use this solution for the malware features, to protect our network and our endpoint users. We deployed this solution for security.

The most valuable feature is signature-based malware detection. They are updating the signatures for malware from time to time.

With every protection malware, there are issues, because it takes time to detect the malware, but Cisco is very fast in detection compared to other products.

The security is awesome and they have very good features.

The GUI needs improvement, it's not good.

There are false positives in emails. At times, the emails are blocked and detected as malware when they are not.

They should work on some of the signatures because of the emails that have been blocked and detected as malware that can never be opened.

I have been using Cisco AMP for Endpoints within the last year.

Cisco AMP for Endpoints is very reliable.

I am not familiar with scalability. I have never tried to scale it.

We have more than 400 users in our organization.

We have plans to increase our usage.

Cisco has the best technical support and marketing.

The initial setup was very complex.

It will take a month to complete the deployment if you want to complete the parameters.

Licensing fees are on a yearly basis and I am happy with the pricing.

If you are looking for deep security and malware for your endpoint users and network then I would recommend Cisco AMP.

I would rate Cisco AMP for Endpoints a ten out of ten.

We mainly use this program for our business operations.

The feature I find most valuable is the sandboxing.

I think there should be better support and I would also like to see an easier implementation of the solution. The support should be cheaper and more available during the implementation stage. It would be great if they could have support teams that involve an AMP team because there's a specific team for AMP.

I have been using Cisco AMP for Endpoints for around three years now.

Cisco AMP for Endpoints has been very stable so far. 

I believe the solution is scalable. We have around 200 end users working on this program, and then we have a team of 15 that is responsible for technical and maintenance issues.

I will rate the technical support a six out of ten because their response time was very slow. Not as fast as they used to be.

We also use Micro, so we use two programs simultaneously. 

I did the initial setup myself and it was really easy and straightforward.

I will recommend this solution to others. I would, however, like to see better features and implementation to cover some points. It would be nice if they could add more protocols to support encrypted files, and be able to inspect an encrypted file, or at least be able to support that. Better and faster technical support is also necessary. 

On a scale from one to 10, I rate this solution a seven.

We're in the banking sector. We use AMP to protect security endpoints.

The ease of implementation is a very valuable aspect of the solution. It's also very user-friendly.

The reporting and analytics areas of the solution need to be improved.

The stability of the solution is perfect. I believe it's the most stable solution on the market right now.

The solution is highly scalable. It's the best part of the solution because we have done the sizing. We have focused on the sizing, which was highly scalable. And it's very clean, clear and very transparent in this area.

We're very satisfied with technical support. It's one of the best.

The initial setup was straightforward. We're well-versed in the solution, so for us, it was easy.

We handle the implementation ourselves.

We use the hybrid deployment model.

I would advise other potential users that if they are looking for a long term security solution, this particular solution is going to add value to their cybersecurity strategy. Cisco AMP is one of the solutions that adds value to your cybersecurity roadmap. It should not be considered as a solution, but rather as a strategy.

I would rate the solution nine out of ten.

We use this solution as part of our organization security.

This solution has allowed us to segment the organization to provide better security.

The most valuable features of this solution are the IPS and the integration with ISE.

In the next version of this solution, I would like to see the addition of local authentication.

Technical support for this solution is good. 

We did the integration ourselves.

We have seen ROI with this solution.

The licensing fees for this solution are paid on a yearly basis.

We chose this product based on research and for its integration with other Cisco security products.

This is a good product but there are always going to be some issues.

I would rate this solution an eight out of ten.

The most important thing is that they're cloud-based. And Cisco has introduced Cisco Umbrella, which includes AMP, Open DNS, and they integrated certain solutions, and AMP is part of their portfolio. That's why it's adding value. 

When we're talking about anti-malware protection, AMP is a very good solution, but again, the CSO level reports are not generated. There is a dashboard, there is a report, but again, those reports have to be taken to the CSO, because when it comes to security, we always want to have high-level reports. So if we had a system that generated reports from the AMP itself, that would be great for us.

Also, the solution needs more in-depth analytics. Right now they have implemented AMP, so, monitoring is happening, but you need to see what exactly is happening, the updates and then the mode of attacks that have happened and have been prevented. An in-depth report could be generated, and it should be on a CSO level. That's the value should be added to AMP solution.

The solution's stability is perfect. It's the best. All the customers we have sold it to have been super happy. We mostly work with SMEs, small and medium-sized enterprises.

It is scalable. Since it is part of the umbrella family, it is highly scalable, and highly integrated as well.

For the initial first level of support, we provide it from our side. If there's escalation required, we use Cisco tech for the AMP. And again, they are perfect. I mean, one of the best, compared to any other vendors.

The initial setup was straightforward and user-friendly.

If you talk about the commercial aspect, this solution is not the Gartner one. We have a challenge because there are other solutions which are Gartner solutions, where we have competition. So we have to justify, explain, show the value propositions and then we sell are able to sell.

I would say that if you have a vision or plan for security, and want to have an integrated solution, AMP can be a very integral part of this digitization roadmap. AMP should be considered if you have digitization or a digitalization plan, which most if not all organizations are going for. So I think AMP is good for that, from the security standpoint.

I would give this solution an 8 out of 10. It has all the solutions. 

The primary use case is email filtering.

We are using the latest version.

I am told that we get over 100 million emails a month. This filters them down and allows only somewhere about three million emails, which is a great help.

We are a Cisco shop, so it just integrates with everything else that we are doing.

I would like them to add whatever makes filtering more advanced in scanning and blocking for malware in emails. It would just improve the product further. I think they are working on this, the continuous improvement aspect. 

One to three years.

The stability seems to work well.

The scalability is fine.

The technical support is sufficient. Every time that we have had an issue, we call the tech support, and they are very responsive.

We wanted to get a homogeneous environment where everything works together and is integrated well together. This was a big advantage and big driver for us.

The initial setup was straightforward.

We used Dimension Data for the deployment. The experience was positive.

This solution has helped increase staff productivity, e.g., if you get 1000 emails a day and 95 percent of those are garbage, then the savings that you receive from going through those emails is immense.

We have seen a measurable decrease in the mean time to detect or respond to threats by 90 percent, blocking a vast majority of threats. 

Seriously consider it. It blocks a lot of emails. Look at the market, do your evaluation, and pick the right solution for you.

We are fairly mature in our security program maturity, but there is always room for improvement.

We are trying to provide managed security services. This solution would be part of those managed security services.

We are on proof of concept phase and will see how it works.

I hope it will help decrease mean time to detect and respond, because it provides scalability, and we could make an efficient, effective service providing it for customers.

• Scalability
• Ability to integrate with SIEM.
• Advanced threat protection for customers.

We would like to have an API integration with a SIEM solution, because as far as I know, it currently hasn't yet been released. We are looking forward to it because it's important for us to integrate the product with a SIEM solution in order to provide our customers a good, robust solution.

It needs major improvement with its ease of integration.

So far, so good.

The scalability is good.

We have not had any technical cases.

We are providing our customers multiple solutions depending on their needs. So, it's more like what our customer needs. We could go with Cisco or maybe we could with another vendor (we will see). Right now, we are quite satisfied with Cisco.

For what we have already set up, the process has been straightforward.

We are estimating 5 to 10 percent staff productivity increases.

Our partner in Norway does the price negotiation.

We are looking for cost-effective, efficient solutions for our customers, and Cisco happens to be one of the vendors who fits into that scope.

Microsoft is another vendor who offers a similar licensing model for this type of solution. There is also McAfee and Trend Micro. It depends on the customer's requirements.

We have some mature security services, like anti-malware. We are looking to broaden our service portfolio and are on the first steps to climb further. 

You should always assess your customers' needs. Once you get that information, you just look for respective vendors. 

Endpoint security prevents malware and exploit kits coming into your mobile devices, and when you are outside the corporate network and not protected by the firewall.

Provides enhanced security, lowering IT risks, and IT operational costs by integrating with Cisco NGFW, network security and email security.

Real-time threat prevention using sandboxing, file trajectory, and retrospective security. On the prevention side, AMP has nine engines.

New feature AMP Visibility (beta) is an IR orchestration tool, where the local AMP for Endpoint Intelligence, Talos Intelligence, Threat Grid, AMP global intelligence, Umbrella Investigate, and VirusTotal are correlated. This gives a visual IR tool where you can search by file (SHA256), IP, or domain.

AMP for Endpoints is not a point solution. The AMP architecture also support ISR routers, IPSs, and NGFWs, Email and web security from Cisco is making common cloud threat architecture for all customers checkpoints.

It does not include:

• Encryption
• Decryption of local file shares
• Disks and URL filtering are done by separate product (Umbrella/OpenDNS).

Pricing can be more expensive than similar software that does less functionality, but not recognized by customers.