BigFix vs Cybereason Endpoint Detection & Response comparison

HCLSoftware and Cybereason are both solutions in the Endpoint Protection Platform (EPP) category. HCLSoftware is ranked #26 with an average rating of 9.0, while Cybereason is ranked #37 with an average rating of 7.6. HCLSoftware holds a 1.2% mindshare in EPP, compared to Cybereason’s 0.8% mindshare. Additionally, 97% of HCLSoftware users are willing to recommend the solution, compared to 85% of Cybereason users who would recommend it.

BigFix

Read 97 BigFix reviews

8,404 Views
2,353 Comparison Views

97% willing to recommend

Cybereason Endpoint Detecti...

Read 22 Cybereason Endpoint Detection & Response reviews

4,196 Views
2,769 Comparison Views

85% willing to recommend

BigFix

Cybereason Endpoint Detecti...

Comparison Buyer's Guide

Download the report

Executive SummaryUpdated on Sep 9, 2024

BigFix and Cybereason Endpoint Detection & Response are prominent endpoint security solutions. BigFix stands out for its extensive management features, whereas Cybereason excels in advanced threat detection capabilities.

Features: BigFix excels in asset management, patch management, and vulnerability assessment. Cybereason stands out with superior threat hunting, behavior analytics, and automated endpoint detection.

Room for Improvement: BigFix users suggest improvements in scalability and integration with other security tools. Cybereason users recommend enhancing simplicity of use and reducing false positives.

Ease of Deployment and Customer Service: BigFix is praised for its flexible deployment options but criticized for a steep learning curve. Customer service receives mixed reviews, with noted responsiveness. Cybereason is appreciated for its straightforward deployment and effective customer support.

Pricing and ROI: BigFix users find the setup cost reasonable but expect higher ROI due to extensive management capabilities. Cybereason users feel the product is priced higher but justify the cost with valuable advanced detection features.

To learn more, read our detailed BigFix vs. Cybereason Endpoint Detection & Response Report (Updated: July 2025).

Buyer's Guide

BigFix vs. Cybereason Endpoint Detection & Response

July 2025

Download the complete report

Helped 865,140 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Categories and Ranking

BigFix

Ranking in Endpoint Protection Platform (EPP)

26th

Average Rating

8.6

Reviews Sentiment

7.3

Number of Reviews

Ranking in other categories

Configuration Management (6th), Patch Management (3rd), Unified Endpoint Management (UEM) (4th)

Cybereason Endpoint Detecti...

Ranking in Endpoint Protection Platform (EPP)

37th

Average Rating

7.8

Reviews Sentiment

5.6

Number of Reviews

Ranking in other categories

Endpoint Detection and Response (EDR) (28th)

Mindshare comparison

As of August 2025, in the Endpoint Protection Platform (EPP) category, the mindshare of BigFix is 1.2%, up from 0.8% compared to the previous year. The mindshare of Cybereason Endpoint Detection & Response is 0.8%, down from 1.1% compared to the previous year. It is calculated based on PeerSpot user engagement data.

Endpoint Protection Platform (EPP)

Featured Reviews

Bella Yakoby

CEO at Novilis

Offers third-party patching feature, good scalability, and enhance endpoint management capabilities

From the perspective of the team that's handling the environment, it's not so user-friendly compared to other solutions, the competitors. We hire new teams from time to time, and they are complaining, look, although BigFix is very robust and cross-platform, it's not so fun to work with. The user interface for the technical teams is not so advanced. It's not so intuitive compared to SCCM, compared to ManageEngine. And this is the fact that they have, with the teams, because they have the rejection. The look and feel of the system are old-fashioned. For new employees, it's less easy to find someone I don't need to educate on how to work with BigFix. Although it's easy, it's not as intuitive as the other solutions, and the functionality of the other solutions is less advanced. Let's summarize: The user interface has to be changed from the perspective of the teams that are managing the product. It's old school.

Read full review

Ivan Burke

Head of Research Development and Innovation at CSIR

Offers useful threat hunting and response capabilities but struggles to justify cost for smaller deployments

I mostly work with incident response, so I work with a bunch of them interchangeably, but mostly with the EDR components; I also get involved with some of the XDR components, especially for the cloud. Regarding analysis features, such as deep behavioral detection, I do use it sometimes; I usually don't use the automated version of it, as I prefer threat hunting directly, depending on if the season is available. I know some of them have pretty good analytics engines, but I tend to do the threat hunting on my own. I manage incident response for a bunch of companies, so some of them have Cybereason Endpoint Detection & Response integrated into Sentinel, some into Fortinet, and others into various tools. When considering cost-effectiveness, their pricing structure works such that if you're a large organization with more than a thousand endpoints to deploy to, then Cybereason Endpoint Detection & Response is worthwhile. But for anything less than 300, it's too expensive; obviously, the more you buy, the better the price, making it cheaper for you. Cybereason Endpoint Detection & Response best fits enterprise-level businesses such as huge corporations; however, we are in the process of removing it from many of our endpoint clients because it's not really showing enough value for them at the moment. We're trying to see how we can improve it with some of our clients, but at the moment, it's struggling compared to other EDR solutions that we have deployed. On a scale of one to ten, I rate Cybereason Endpoint Detection & Response a six.

Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Pros

"The solution has many useful features. Its main advantage is simplicity - you can do everything from one console, regardless of the task. It supports many operating systems and is scalable to up to 250,000 clients."

"It allows for visibility into the OT, the industrial environments, that didn't exist before which is a big piece and has benefited my organization. Second, the speed at which people can patch is night and day versus SCCM scan or another similar solution."

"My company provides support services to a lot of customers and companies. We have reduced a huge amount of man-effort. Along with the man-effort, we have reduced the timeline to fix the compliance and security gaps. We have an unbroken record. The documentation clearly says that we have done the patching of newly released patches, including Microsoft and third-party patches, in up to 80% of the computers, within 72 hours of the release of the production. That was a very massive benefit that we have seen. When I talk about the 80% endpoints, it is 100 or 200. I am talking about 25,000 endpoints."

"It is user-friendly."

"It is a one-stop tool that allows you to do everything. It supports reporting, vulnerability management, patch management, and configuration. All things can be done in one tool."

"The most valuable features are patch management, software installation, and asset management."

"It's easy to use, not complicated."

"The patch management and the BigFix Inventory have been the most valuable features."

More BigFix pros

"The most valuable feature is the capability of the command used by the machine so that we see the kind of performance that is running."

"We didn't have the visibility that we now have. It has increased our visibility by a lot. So, we put a lot more time into really looking at our environment and what is happening throughout our different networks. It has increased our visibility by around fivefold."

"What I find most valuable is the clarity of the platform. It is very straightforward."

"For me, the technical support is good."

"They do a very good job of providing multi-stage visualizations of malicious operations that immediately show all attack details across all devices and users. Since it is MalOp-centric model, you can see if there has been a similar operation across multiple machines. If it is the same thing appearing on multiple machines, you see all the machines and users affected in one screen."

"The initial setup is not overly complicated."

"What I like most about Cybereason Endpoint Detection & Response is the support because the support is good. The solution is also easy to use, and it has a dashboard. Everything is good, and there's no problem with it."

"Cybereason's threat hunting and investigation are the most valuable features. Threat hunting is a user-friendly feature that keeps you safe. Investigation offers an added value that I haven't seen with other EDR services. It allows you to find specific policy problems within your environment."

More Cybereason Endpoint Detection & Response pros

Cons

"The main shortcoming of BigFix was integration with vulnerability management. If you had a vulnerability in your software and BigFix on the endpoint, you needed integration with Qualys, Tenable, or another vulnerability management solution to fix that. It was like, "Okay, we can identify issues, and get that information back from the endpoint, but what are we doing about it?""

"I remember doing restarts a few times. So, making sure that it is rock solid from an executable perspective is important."

"The product lacks AI, ML, and IIT."

"I would like to see more custom content."

"They don't have a proper mobile device management capability. They're working on it, however, that's the one thing that needs improvement so that you can have full unified endpoint management."

"They need better integration."

"I'd like to see better integration, with the different applications within BigFix. Instead of sometimes feeling like four or five different applications, they need to be integrated a little better within themselves."

"It could use better integration with Hypervisor products like VMware."

More BigFix cons

"I feel it is a shame that I cannot create groups of groups with inheritance."

"Ad hoc higher-level reporting to senior management can be improved or can be implemented. That's definitely an area of improvement that they need to focus on."

"They need to improve their technical support services."

"Cybereason does not have sandbox functionality."

"Compared to our previous endpoint, we have a lot more false positives and a lot more duplication of alerts. So we're chasing more alerts."

"Reporting could be a bit more granular so that we had the ability to check regions and countries. I just noticed that, for instance, if I look at our servers, it's either "contained" or it's "not contained". I don't have the option, for instance, to look at countries. It only allows me to look at users as one big group."

"I feel that the product lacks reporting features and needs improvement."

"There can be problems with the EDI."

More Cybereason Endpoint Detection & Response cons

Pricing and Cost Advice

"There's not much big cost. We only have to pay the agents' cost for the server, and for the systems."

"It might be about $23 a client."

"So, the pricing is slightly more expensive than the others. I have to keep buying licenses every time I add a new device."

"You get what we call the Platform Edition, which you get for free. The patch service is maybe $0.50 per workstation per month. Then there's the basic server cost, which is about $1.50 per server per month. You also get into Lifecycle which does power management, OSD remote control, and those types of things, and that might be about 10 times the price - which works out to about $13 per server and, maybe $5 per workstation per month."

"The tool's price continues to go up. The cost per endpoint can vary, ranging from approximately 30 to 80 dollars per year. Compared to other products, pricing is in the middle. You need to buy an additional database license, but most users already have it."

"On a scale from one to ten, where one is expensive and ten is cheap, I rate the solution's pricing one out of ten."

"It is too costly. It is one of the best tools, but because of pricing, not all clients support it. Its licensing is on a yearly basis."

"The license is subscription-based."

More BigFix pricing and cost advice

"I had to go through a third-party to purchase it, which I wasn't really pleased about."

"Though it is not the cheapest solution but it fits our budget. We pay an annual licensing fee."

"In terms of cost, this is a good choice for our needs."

"This product is somewhat expensive and should be cheaper."

"In terms of pricing, it's a good solution."

"The pricing is manageable."

"On a scale of one to ten, where one is cheap and ten is expensive, I rate the pricing an eight."

"We considered a few other solutions. Some were ridiculously overpriced, while others didn't have solutions for Mac endpoints. That was a deal-breaker because most of our organization is on Mac. It came down to two vendors: Cybereason and another. They had similar pitches and almost identical approaches, but in the end, Cybereason gave us the best value for our money."

More Cybereason Endpoint Detection & Response pricing and cost advice

See which vendors are best for you

Use our free recommendation engine to learn which Endpoint Protection Platform (EPP) solutions are best for your needs.

See recommendations

865,140 professionals have used our research since 2012.

Top Industries

By visitors reading reviews

Financial Services Firm

15%

Government

10%

Manufacturing Company

Computer Software Company

15%

Financial Services Firm

11%

Manufacturing Company

Government

Company Size

By reviewers

Large Enterprise

Midsize Enterprise

Small Business

Questions from the Community

What do you like most about BigFix?

The most valuable features of the solution are Windows patching and the hardware and software inventory.

See all answers

What is your experience regarding pricing and costs for BigFix?

The pricing is competitive, but not the most competitive.

See all answers

What needs improvement with BigFix?

While performing integration, we face many issues with IBM solution. We need detailed information about those issues that can help users to mitigate them. The problem was related to the hardware co...

See all answers

What is your experience regarding pricing and costs for Cybereason Endpoint Detection & Response?

Comparison with other products showed it be cheaper than some larger competitors. Set up cost for us were cheaper as we already had users experienced with the product in other business units. Initi...

See all answers

What is your primary use case for Cybereason Endpoint Detection & Response?

We use it to improve detection in the whole industrial sector. We are a big energy company. Across multiple endpoints, we deploy the EDR to secure all, improve detection, and also attempt to automa...

See all answers

What do you like most about Cybereason Endpoint Detection & Response?

The interface is user-friendly.

See all answers

Comparisons

Microsoft Intune vs BigFix

Compared 11% of the time

Tanium vs BigFix

Compared 8% of the time

Microsoft Configuration Manager vs BigFix

Compared 7% of the time

Red Hat Ansible Automation Platform vs BigFix

Compared 6% of the time

Red Hat Satellite vs BigFix

Compared 4% of the time

More BigFix Competitors

Darktrace vs Cybereason Endpoint Detection & Response

Compared 27% of the time

CrowdStrike Falcon vs Cybereason Endpoint Detection & Response

Compared 11% of the time

SentinelOne Singularity Complete vs Cybereason Endpoint Detection & Response

Compared 10% of the time

Microsoft Defender for Endpoint vs Cybereason Endpoint Detection & Response

Compared 9% of the time

ESET Inspect vs Cybereason Endpoint Detection & Response

Compared 7% of the time

More Cybereason Endpoint Detection & Response Competitors

Product Reports

Buyer's Guide

BigFix

August 2025

Download BigFix product report

Buyer's Guide

Cybereason Endpoint Detection & Response

August 2025

Cybereason Endpoint Detection & Response report

Download Cybereason Endpoint Detection & Response product report

Also Known As

Tivoli Endpoint Manager

Cybereason EDR, Cybereason Deep Detect & Respond

Overview

HCL BigFix is a powerful patch management tool that enables organizations to simply control their patch management operations. It is designed so that IT security and operations teams can collaborate in the most effective way possible. Users that employ BigFix can find and fix issues with their endpoints faster than those that employ its competitors. It comes with thousands of security checks that can be deployed quickly and easily. These enable users to safeguard themselves from a wide variety of digital threats.

HCL BigFix Benefits

Some of the ways that organizations can benefit by choosing to deploy HCL BigFix include:

Total visibility and simplified control. BigFix provides users with total system visibility while simultaneously enabling administrators to easily manage their networks. It enables organizations to run all of their patch management operations from a single user interface. This UI contains all of BigFix’s system controls. It also contains all of an organization’s network data. Users will never have to search for the features or information that they need as everything is centrally located.

Maximum benefit for reduced overhead. BigFix enables businesses to integrate with more than 100 different operating systems. Users can utilize the operating system of their choice without multiplying their overhead costs. They can keep costs down while still achieving their goals.

Flexibility. BigFix is highly flexible. Users can integrate it with the top vulnerability management solutions on the market. This enables users to maximize their protective coverage and minimize the amount of time that they have to spend resolving issues.

BigFix Features

BigFix Insights. The BigFix insights feature gives users access to a powerful deep analysis tool. This tool enables organizations to gather data from all of their endpoints and compile them into reports that can aid administrators in their work. It can centralize an organization’s data and also enable it to import data from other sources so that it can make more informed decisions.

Task automation. BigFix has the ability to automate rudimentary tasks so that users can focus on tasks that require a greater level of attention. This can include tasks such as event remediation and data collection. This feature enables users to focus their attention on other more critical tasks.

Data loss prevention tool. This tool enables users to prevent critical data from being leaked or leaking accidentally. It creates policies that limit or prevent sensitive data from being transmitted. It also enforces the privacy protocols that are already in place. Organizations can leverage this tool to bolster the security protecting their data from malicious actors.

Web reputation tool. This tool proactively protects networks from malicious websites. It scans for potentially dangerous websites and opens a blocking page when one is detected. Users are also given the ability to set proxy server credentials for the system to recognize and authenticate. Users can use this to ensure that suspicious websites are unable to infect their networks.

Centralized UI. BigFix comes with a built-in UI that centralizes all of the solution’s features so that they can be accessed from a single location. It enables administrators to target specific portions of the network when issues arise without requiring them to take actions that will affect the entire network.

Reviews from Real Users

HCL BigFix is a highly effective solution that stands out when compared to most of its competitors. Two major advantages it offers are its auto-patching capability and its user-friendly tools.

Santhosh K., the chief executive officer of Catnip Infotech Private Limited, writes, “The second valuable feature is, BigFix also has an auto patch updating feature, where the latest patches, and what is required for my system are automatically downloaded and kept ready for me. The solution applies the patch and notifies me after applying the patch. BigFix also gives me a ping saying that I should reset my system within a certain period of time, while the patch is being applied. Let's say, the patch is being applied and if there's an issue, the solution can revoke the applied patch, and revert back to the old state.”

Benedikt S., an application administrator, says, “It's very straightforward. The usability is very close to everyday technical tools that you use as a systems administrator. So it's quite user-friendly.”

HCLSoftware

Cybereason's Endpoint Detection and Response platform detects in real-time both signature and non-signature-based attacks and accelerates incident investigation and response. Cybereason connects together individual pieces of evidence to form a complete picture of a malicious operation.

Cybereason

Sample Customers

US Foods, Penn State, St Vincent's Health US Foods, Sabadell Bank, SunTrust, Australia Sydney, Stemac, Capgemini, WNS Global Services, Jebsen & Jessen, CenterBeam, Strauss, Christian Hospital Centre, Brit Insurance, Career Education Corporation

Lockheed Martin, Spark Capital, DocuSign, Softbank Capital

Buyer's Guide

BigFix vs. Cybereason Endpoint Detection & Response

July 2025

Free Report: BigFix vs. Cybereason Endpoint Detection & Response

Find out what your peers are saying about BigFix vs. Cybereason Endpoint Detection & Response and other solutions. Updated: July 2025.

DOWNLOAD NOW

865,140 professionals have used our research since 2012.

See our BigFix vs. Cybereason Endpoint Detection & Response report.

See our list of best Endpoint Protection Platform (EPP) vendors.

We monitor all Endpoint Protection Platform (EPP) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.