Try our new research platform with insights from 80,000+ expert users

BigFix vs Microsoft Defender for Endpoint vs Tanium comparison

HCLSoftware and Microsoft are both solutions in the Endpoint Protection Platform (EPP) category. HCLSoftware is ranked #22 with an average rating of 9.3, while Microsoft is ranked #1 with an average rating of 8.3. HCLSoftware holds a 1.1% mindshare in EPP, compared to Microsoft’s 10.8% mindshare. Additionally, 97% of HCLSoftware users are willing to recommend the solution, compared to 94% of Microsoft users who would recommend it.
BigFix
Read 97 BigFix reviews
  • 2,968 Views
  • 1,756 Comparison Views
97% willing to recommend
Microsoft Defender for Endp...
Read 197 Microsoft Defender for Endpoint reviews
  • 30,707 Views
  • 24,393 Comparison Views
94% willing to recommend
Tanium
Read 18 Tanium reviews
  • 6,025 Views
  • 4,230 Comparison Views
76% willing to recommend
 

Comparison Buyer's Guide

Download the report
Executive Summary
We performed a comparison between BigFix, Microsoft Defender for Endpoint, and Tanium based on real PeerSpot user reviews.

Find out what your peers are saying about Microsoft, CrowdStrike, SentinelOne and others in Endpoint Protection Platform (EPP).

DOWNLOAD THE COMPLETE REPORT
To learn more, read our detailed Endpoint Protection Platform (EPP) Report (Updated: May 2025).
Buyer's Guide
Endpoint Protection Platform (EPP)
May 2025
Download the complete report
Helped 851,471 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Mindshare comparison

As of May 2025, in the Endpoint Protection Platform (EPP) category, the mindshare of BigFix is 1.1%, up from 0.8% compared to the previous year. The mindshare of Microsoft Defender for Endpoint is 10.8%, down from 14.4% compared to the previous year. The mindshare of Tanium is 2.5%, up from 2.1% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Endpoint Protection Platform (EPP)
 

Featured Reviews

Bella Yakoby - PeerSpot reviewer
Offers third-party patching feature, good scalability, and enhance endpoint management capabilities
From the perspective of the team that's handling the environment, it's not so user-friendly compared to other solutions, the competitors. We hire new teams from time to time, and they are complaining, look, although BigFix is very robust and cross-platform, it's not so fun to work with. The user interface for the technical teams is not so advanced. It's not so intuitive compared to SCCM, compared to ManageEngine. And this is the fact that they have, with the teams, because they have the rejection. The look and feel of the system are old-fashioned. For new employees, it's less easy to find someone I don't need to educate on how to work with BigFix. Although it's easy, it's not as intuitive as the other solutions, and the functionality of the other solutions is less advanced. Let's summarize: The user interface has to be changed from the perspective of the teams that are managing the product. It's old school.
Read full review
AnuragSrivastava - PeerSpot reviewer
Provides detailed visibility into threats but the ability to add exceptions needs improvement
One major item for improvement is the ability to add exceptions. We can add some exceptions, but not at the level we need to. The second major area for improvement involves enhanced capabilities for different operating systems or platforms. That is, even though we have coverage for different operating systems or platforms such as Linux, we don't get all of the controls and enhanced capabilities that are available with Windows devices. Reporting could also be improved because, at present, we get limited results at times. For example, in an environment with more than 100,000 devices, you may just get 10,000 results when you run a report.
Read full review
Ed Jarecki - PeerSpot reviewer
A scalable solution that helps to understand how infrastructure works
We use the tool as an infrastructure operational management solution.  The solution is scalable and helps to understand how infrastructure works. It helps to improve the health of the organization.  Any movement into a SaaS solution has challenges since the processes and data flows are not well…
Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"It has improved my organization because we can automate a lot of tasks. We went from manually patching machines or doing our best and having very little visibility into it to us being able to set it and forget it and getting really good results on first-pass patching."
"It has improved reliability upon delivery of software and has also helped reduce software expenses. The extensibility of BigFix helps to create custom solutions where we may have considered purchasing something instead."
"We are able to use BigFix through API connections to automate and reduce resources and time. The product's been great for us. It's increased the security posture ten-fold and it's increased our visibility across our endpoints enormously."
"The most valuable feature for us is the ability to manage TWS, the relevance is really what sets it apart. Also, using it as a software deployment tool is the key for us."
"The most valuable features of the solution are Windows patching and the hardware and software inventory."
"Desktop patching is the most valuable feature, because with servers, we have complete control over them, and we can simply push patches to the servers."
"It has plugins development options, which are great."
"We've had no issues with stability."
More BigFix pros
"The solution can scale as needed."
"The best thing I like about it is its interaction with the other Defender products. It provides the ability to push telemetry up. It gives me endpoint visibility and allows me to take automated actions."
"It integrates very well with all Windows workstations or other Microsoft Endpoint products. It also works quite well. So far, I have not had any issue that hasn't been sorted out. It doesn't use too many resources, so you don't have to install different things."
"User-friendly, offering safety and security."
"This is a very go, proactive solution to threat protection using advanced analysis."
"The best part is that it is built into Windows, whether it is a server base or a desktop base, which gives more control over the operating system. Because Defender, the operating system, and the Office solution are by Microsoft, everything is working like hand-in-glove. Its administrative overhead is less because a desktop user has already got some experience of how to handle a Microsoft Defender notification or administer it."
"The solution is highly scalable."
"The primary advantage is that you don't need to install it. It's included in the Windows 10 delivery."
More Microsoft Defender for Endpoint pros
"Threat hunting is a very good feature on Tanium. We have just started using it and have not used it extensively."
"The most valuable features of this solution are the consolidation of all historical data on device endpoints, security drivers, firmware, and Software version gaps."
"When I push a quick update, it's done right away, and I can rescan immediately to confirm completion within minutes."
"I find the inventory and compliance features of Tanium to be the most impressive."
"I like the tool's incident response and security patching."
"For incident response tasks, all these tasks can get done in minutes with minimal disruption to the end-user."
"Tanium’s linear-chain architecture is valuable."
"The security features are very valuable."
More Tanium pros
 

Cons

"For improvements, it would be good if BigFix supported more databases. Currently, it only supports DB2 and Microsoft SQL. Adding support for other databases like Oracle would be beneficial."
"The reporting and dashboard parts have room for improvement."
"I would like to see a web UI SDK so we could take what is provided currently and be able to build our own customized web UI for particular customers that want to sell service."
"The solution could improve by adding support drivers for different systems and equipment. When you have a lot of different computers if they could fix how to install any updates, firmware, or drivers for different systems or servers it would be good."
"I would like to see improvements in the Web UI program and also a BigFix console for Mac OS."
"I would like to see the integration of user security between the different products to be improved. There's separate security for compliance, separate security for web reports, and the console, and you have to manage those things separately."
"I'd like to see better API integration with BigFix. We have some tremendous API capability inside of CyFIR and the ability to take textual search results, for example, and bring that back into the BigFix dashboard. This would be of extreme interest to us and our customers."
"One aspect that could be improved is the speed of the console. Sometimes it can be slow, which is something that needs to be addressed."
More BigFix cons
"Defender could be more secure and stable."
"Some of the integrations that Defender should include involve the use of the web app."
"Microsoft Defender for Endpoint should have more transparency. In the latest edition of Windows, Windows 11, it is a compulsory requirement to connect to a Microsoft account, which in turn has implications for Defender. This should be removed."
"There is a need for improvement in reducing false positives."
"There is a need for improvement in reducing false positives."
"Defender's cloud integration could be improved."
"The product development team makes frequent changes that affect the stability of the solution."
"In active mode, it's great that it gives you so much information, but it does record every keystroke so you have a lot of logs... that amount of data logging started to add up in the cost."
More Microsoft Defender for Endpoint cons
"The reporting could be improved."
"The solution needs to improve the reporting and tracking capabilities."
"Tanium's limitations should be improved because although it is a great tool, it is limited to only a few classes during a session."
"I would like to have more integrations and custom plugins to input. Integration is always a big deal in a lot of different environments."
"We had some issues with the solution's OS upgrade."
"The main issues are the network connection because different customers have issues with their networks. It's difficult implementing this type of solution because the network is the main feature in the architecture for these types of solutions. Tanium could improve by creating some network optimization."
"Any movement into a SaaS solution has challenges since the processes and data flows are not well defined. Hence, you need to build it at the same time."
"The solution lacks mobility."
More Tanium cons
 

Pricing and Cost Advice

"Compliance, inventory, and licensing are really pricey. They should lower the price. It discourages users from getting onboard."
"There's not much big cost. We only have to pay the agents' cost for the server, and for the systems."
"The cost is slightly high."
"The license is subscription-based."
"The price is reasonable, but our customers find it expensive."
"The tool's price continues to go up. The cost per endpoint can vary, ranging from approximately 30 to 80 dollars per year. Compared to other products, pricing is in the middle. You need to buy an additional database license, but most users already have it."
"The price is very fair."
"The price of the solution is high. There are not any additional fees from the standard license."
More BigFix pricing and cost advice
"It is so expensive. It isn't cheaper than McAfee or other solutions."
"Because Microsoft Defender comes as an add-on, it can be a bit expensive if you're trying to buying it separately. Another option is to upgrade, but the enterprise licenses for Microsoft can also be quite a bit pricey. Overall, the cost of Microsoft Defender compared to that of other endpoint detection solutions is slightly higher."
"The nice thing about Defender and Sentinel is that the cost is based on the data logs that you ingest from the Defender endpoints and data connectors. I don't have to buy a 25- or 50- or 1,000-user or enterprise license. I can buy one license at a time."
"The cost is high for E5 licenses, but if we go with the E3 license, most of the features are not covered."
"Everybody would like to see a lower price on everything. The Slovenian market is basically an SME market with clients having up to 100 seat licenses, comprising 90% of the company. They're very price sensitive. So, the price could be cheaper."
"We have an enterprise agreement so from my perspective, this is a product that ships with Windows and it is not priced standalone."
"The E5 license is the one that I recommend because it comes with Cloud App Security, which is a good thing to have on top of Microsoft Defender."
"Its price is fair. It has approximately the same price as the other products such as Kaspersky. It is much cheaper than Malwarebytes."
More Microsoft Defender for Endpoint pricing and cost advice
"The solution is expensive but it's a good investment."
"The product's pricing differs from region to region depending on negotiations and the number of endpoints."
"Tanium is a more expensive solution in Latin America than some of the competitors, such as BigFix."
"It is higher than some competitors in the market."
"There is an annual license required to use this solution."
"It's an expensive solution. It would be nice if the cost were lower."
"The solution offers value for money."
report
See which vendors are best for you
Use our free recommendation engine to learn which Endpoint Protection Platform (EPP) solutions are best for your needs.
See recommendations
851,471 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Educational Organization
44%
Financial Services Firm
9%
Government
7%
Computer Software Company
6%
Educational Organization
24%
Computer Software Company
12%
Government
7%
Financial Services Firm
7%
Financial Services Firm
17%
Government
13%
Computer Software Company
10%
Manufacturing Company
8%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
 

Questions from the Community

What do you like most about BigFix?
The most valuable features of the solution are Windows patching and the hardware and software inventory.
See all answers
What is your experience regarding pricing and costs for BigFix?
The pricing is competitive, but not the most competitive.
See all answers
What needs improvement with BigFix?
Implementing a business solution with BigFix has some issues, primarily concerning the time required for distribution...
See all answers
How is Cortex XDR compared with Microsoft Defender?
Microsoft Defender for Endpoint is a cloud-delivered endpoint security solution. The tool reduces the attack surface,...
See all answers
Which offers better endpoint security - Symantec or Microsoft Defender?
We use Symantec because we do not use MS Enterprise products, but in my opinion, Microsoft Defender is a superior sol...
See all answers
How does Microsoft Defender for Endpoint compare with Crowdstrike Falcon?
The CrowdStrike solution delivers a lot of information about incidents. It has a very light sensor that will never pu...
See all answers
What do you like most about Tanium?
Tanium’s linear-chain architecture is valuable.
See all answers
What needs improvement with Tanium?
While there is always room for improvement, I am pleased with Tanium.
See all answers
What is your primary use case for Tanium?
The primary use case for Tanium ( /products/tanium-reviews ) is compliance, patching, and inventory as part of the co...
See all answers
 

Comparisons

Microsoft Intune vs BigFix Logo
Microsoft Intune vs BigFix
Compared 12% of the time
Microsoft Configuration Manager vs BigFix Logo
Microsoft Configuration Manager vs BigFix
Compared 8% of the time
Red Hat Ansible Automation Platform vs BigFix Logo
Red Hat Ansible Automation Platform vs BigFix
Compared 7% of the time
Red Hat Satellite vs BigFix Logo
Red Hat Satellite vs BigFix
Compared 5% of the time
Trellix Endpoint Security vs BigFix Logo
Trellix Endpoint Security vs BigFix
Compared 2% of the time
More BigFix Competitors
CrowdStrike Falcon vs Microsoft Defender for Endpoint Logo
CrowdStrike Falcon vs Microsoft Defender for Endpoint
Compared 8% of the time
Symantec Endpoint Security vs Microsoft Defender for Endpoint Logo
Symantec Endpoint Security vs Microsoft Defender for Endpoint
Compared 5% of the time
Microsoft Intune vs Microsoft Defender for Endpoint Logo
Microsoft Intune vs Microsoft Defender for Endpoint
Compared 5% of the time
F-Secure Total vs Microsoft Defender for Endpoint Logo
F-Secure Total vs Microsoft Defender for Endpoint
Compared 4% of the time
Kaspersky Endpoint Security for Business vs Microsoft Defender for Endpoint Logo
Kaspersky Endpoint Security for Business vs Microsoft Defender for Endpoint
Compared 2% of the time
More Microsoft Defender for Endpoint Competitors
CrowdStrike Falcon vs Tanium Logo
CrowdStrike Falcon vs Tanium
Compared 15% of the time
Microsoft Configuration Manager vs Tanium Logo
Microsoft Configuration Manager vs Tanium
Compared 8% of the time
ServiceNow Discovery vs Tanium Logo
ServiceNow Discovery vs Tanium
Compared 6% of the time
Qualys VMDR vs Tanium Logo
Qualys VMDR vs Tanium
Compared 5% of the time
Tenable Security Center vs Tanium Logo
Tenable Security Center vs Tanium
Compared 4% of the time
More Tanium Competitors
 

Product Reports

Buyer's Guide
BigFix
May 2025
BigFix reportDownload BigFix product report
Buyer's Guide
Microsoft Defender for Endpoint
May 2025
Microsoft Defender for Endpoint reportDownload Microsoft Defender for Endpoint product report
Buyer's Guide
Tanium
April 2025
Tanium reportDownload Tanium product report
 

Also Known As

Tivoli Endpoint Manager
Microsoft Defender ATP, Microsoft Defender Advanced Threat Protection, MS Defender for Endpoint, Microsoft Defender Antivirus
No data available
 

Interactive Demo

Demo not available
HCLSoftware
Microsoft
Demo not available
Tanium
 

Overview

HCL BigFix is a powerful patch management tool that enables organizations to simply control their patch management operations. It is designed so that IT security and operations teams can collaborate in the most effective way possible. Users that employ BigFix can find and fix issues with their endpoints faster than those that employ its competitors. It comes with thousands of security checks that can be deployed quickly and easily. These enable users to safeguard themselves from a wide variety of digital threats.

HCL BigFix Benefits

Some of the ways that organizations can benefit by choosing to deploy HCL BigFix include:

  • Total visibility and simplified control. BigFix provides users with total system visibility while simultaneously enabling administrators to easily manage their networks. It enables organizations to run all of their patch management operations from a single user interface. This UI contains all of BigFix’s system controls. It also contains all of an organization’s network data. Users will never have to search for the features or information that they need as everything is centrally located.
  • Maximum benefit for reduced overhead. BigFix enables businesses to integrate with more than 100 different operating systems. Users can utilize the operating system of their choice without multiplying their overhead costs. They can keep costs down while still achieving their goals. 
  • Flexibility. BigFix is highly flexible. Users can integrate it with the top vulnerability management solutions on the market. This enables users to maximize their protective coverage and minimize the amount of time that they have to spend resolving issues. 

BigFix Features

  • BigFix Insights. The BigFix insights feature gives users access to a powerful deep analysis tool. This tool enables organizations to gather data from all of their endpoints and compile them into reports that can aid administrators in their work. It can centralize an organization’s data and also enable it to import data from other sources so that it can make more informed decisions.
  • Task automation. BigFix has the ability to automate rudimentary tasks so that users can focus on tasks that require a greater level of attention. This can include tasks such as event remediation and data collection. This feature enables users to focus their attention on other more critical tasks.
  • Data loss prevention tool. This tool enables users to prevent critical data from being leaked or leaking accidentally. It creates policies that limit or prevent sensitive data from being transmitted. It also enforces the privacy protocols that are already in place. Organizations can leverage this tool to bolster the security protecting their data from malicious actors.
  • Web reputation tool. This tool proactively protects networks from malicious websites. It scans for potentially dangerous websites and opens a blocking page when one is detected. Users are also given the ability to set proxy server credentials for the system to recognize and authenticate. Users can use this to ensure that suspicious websites are unable to infect their networks.
  • Centralized UI. BigFix comes with a built-in UI that centralizes all of the solution’s features so that they can be accessed from a single location. It enables administrators to target specific portions of the network when issues arise without requiring them to take actions that will affect the entire network.

Reviews from Real Users

HCL BigFix is a highly effective solution that stands out when compared to most of its competitors. Two major advantages it offers are its auto-patching capability and its user-friendly tools.

Santhosh K., the chief executive officer of Catnip Infotech Private Limited, writes, “The second valuable feature is, BigFix also has an auto patch updating feature, where the latest patches, and what is required for my system are automatically downloaded and kept ready for me. The solution applies the patch and notifies me after applying the patch. BigFix also gives me a ping saying that I should reset my system within a certain period of time, while the patch is being applied. Let's say, the patch is being applied and if there's an issue, the solution can revoke the applied patch, and revert back to the old state.”


Benedikt S., an application administrator, says, “It's very straightforward. The usability is very close to everyday technical tools that you use as a systems administrator. So it's quite user-friendly.”

HCLSoftware

Microsoft Defender for Endpoint is a comprehensive security solution that provides advanced threat protection for organizations. It offers real-time protection against various types of cyber threats, including malware, viruses, ransomware, and phishing attacks.

With its powerful machine-learning capabilities, it can detect and block sophisticated attacks before they can cause any harm. The solution also includes endpoint detection and response (EDR) capabilities, allowing organizations to quickly investigate and respond to security incidents. It provides detailed insights into the attack timeline, enabling security teams to understand the scope and impact of an incident.

Microsoft Defender for Endpoint also offers proactive threat hunting, allowing organizations to proactively search for and identify potential threats within their network. It integrates seamlessly with other Microsoft security solutions, such as Microsoft Defender XDR, to provide a unified and holistic security approach. With its centralized management console, organizations can easily deploy, configure, and monitor the security solution across their entire network.

Microsoft Defender for Endpoint is a robust and scalable security solution that helps organizations protect their endpoints and data from evolving cyber threats.

Microsoft

Tanium Endpoint Platform reduces security risk, improves agility & increases efficiency, a fundamentally new approach to endpoint security's threat detection, indicent response, vulnerability assessment and configuration compliance & with management's software distribution, asset utilization, asset inventory and patch management.

Tanium
 

Sample Customers

US Foods, Penn State, St Vincent's Health US Foods, Sabadell Bank, SunTrust, Australia Sydney, Stemac, Capgemini, WNS Global Services, Jebsen & Jessen, CenterBeam, Strauss, Christian Hospital Centre, Brit Insurance, Career Education Corporation
Petrofrac, Metro CSG, Christus Health
JPMorgan Chase, eBay, Amazon, US Bank, MetLife, pwc, Cerner, Delphi, MGM Grand, New York Life
Buyer's Guide
Endpoint Protection Platform (EPP)
May 2025
Download Free Report
Find out what your peers are saying about Microsoft, CrowdStrike, SentinelOne and others in Endpoint Protection Platform (EPP). Updated: May 2025.
DOWNLOAD NOW
851,471 professionals have used our research since 2012.