BigFix vs Symantec Endpoint Security vs Tanium comparison

Symantec Endpoint Security

Read 18 Tanium reviews

6,211 Views
4,378 Comparison Views

76% willing to recommend

BigFix

Comparison Buyer's Guide

Download the report

Executive Summary

We performed a comparison between BigFix, Symantec Endpoint Security, and Tanium based on real PeerSpot user reviews.

Find out what your peers are saying about Microsoft, CrowdStrike, SentinelOne and others in Endpoint Protection Platform (EPP).

To learn more, read our detailed Endpoint Protection Platform (EPP) Report (Updated: April 2025).

Endpoint Protection Platform (EPP)

Download the complete report

Helped 849,686 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Mindshare comparison

As of May 2025, in the Endpoint Protection Platform (EPP) category, the mindshare of BigFix is 1.1%, up from 0.8% compared to the previous year. The mindshare of Symantec Endpoint Security is 4.0%, down from 4.8% compared to the previous year. The mindshare of Tanium is 2.5%, up from 2.1% compared to the previous year. It is calculated based on PeerSpot user engagement data.

Endpoint Protection Platform (EPP)

Featured Reviews

Bella Yakoby

CEO at Novilis

Offers third-party patching feature, good scalability, and enhance endpoint management capabilities

From the perspective of the team that's handling the environment, it's not so user-friendly compared to other solutions, the competitors. We hire new teams from time to time, and they are complaining, look, although BigFix is very robust and cross-platform, it's not so fun to work with. The user interface for the technical teams is not so advanced. It's not so intuitive compared to SCCM, compared to ManageEngine. And this is the fact that they have, with the teams, because they have the rejection. The look and feel of the system are old-fashioned. For new employees, it's less easy to find someone I don't need to educate on how to work with BigFix. Although it's easy, it's not as intuitive as the other solutions, and the functionality of the other solutions is less advanced. Let's summarize: The user interface has to be changed from the perspective of the teams that are managing the product. It's old school.

Read full review

Hakeem_Abdulkareem

Head, Security Technology & Engineering at a financial services firm with 10,001+ employees

The solution has given us visibility into compliance within our whole system and helped us ensure everything is updated

Symantec's application security module needs some improvement. You need to create a lot of fingerprints for application security. For instance, let's say I have different brands of ATMs in my environment, like Wincor and NCR. I use GRG to deploy an application control to whitelist some applications. I have to get the exact image of the different models of ATMs. When I tested in the past, some machines would not connect to the server without that. Only the approved software on the ATM should run. Anything outside that should not even come up at all. We did this so that an outside person doesn't introduce malicious software to the ATM. That's the essence of locking down with application control. Using Symantec for application control has been hectic, so I use Carbon Black to do the lockdown. Checking that data security will work fine with Carbon Black. Carbon Black worked fine. Setting up approval in Carbon Black works differently than Symantec. In Symantec, we first need the fingerprints of the applications running underneath. Before setting up Carbon Black, you first install the agent, allowing it to learn the environment. It will analyze all the software's behavior and provide recommendations for what should be allowed. It's more straightforward, whereas configuring application control in Symantec is a bit cumbersome.

Read full review

Ed Jarecki

Owner/Assistant Vice President at Jarecki Real Estate Investments/ EverView

A scalable solution that helps to understand how infrastructure works

We use the tool as an infrastructure operational management solution. The solution is scalable and helps to understand how infrastructure works. It helps to improve the health of the organization. Any movement into a SaaS solution has challenges since the processes and data flows are not well…

Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Pros

"Pre-packaged support for many third-party applications such as Adobe, Google, Mozilla, Sun (Java), WinZip, and others."

"The most valuable point is when you deploy an application, you have to make sure that the application has been deployed to all computers and that is working perfectly. This solution works well at deployments."

"BigFix has always been easier to use when managing servers, especially when you deal with so many servers. We have 7,000. That's a lot of services to manage, and it's convenient to patch them all at once."

"The older version of the tools that I use also included the connectivity aspect, and the fact that the tool now has it separate from the collection of usage data makes the deployment of these tools much easier."

"Patch management, because it very much improved the patch compliance and has the capability to manage Windows and non-Windows clients."

"The tool's most valuable features are patching and integration with vulnerability scanners."

"All the vendor patches are synchronized automatically."

"It is user-friendly."

More BigFix pros

"The antivirus and antimalware features are good."

"The best thing about Symantec is its ability to control our endpoints from a single point. You can manage the antivirus definitions, upgrades, remote scanning, etc., from one console."

"Customer service and support are very good, rating ten out of ten."

"We are using it on 1,600 computers. All the systems and servers are protected with the Symantec solution. Our environment has an uptime of 99.9% because we never had any attack or issue related to viruses. There is zero downtime."

"SEP, the entire suite of components, provides good endpoint protection."

"The most useful features are the antivirus, anti-spyware, and the firewall feature. It also provides application control and Host Integrity, which is a very unique feature."

"The solution is easy to use."

"The features I find the most valuable are the protection, the encryption, and the DLP."

More Symantec Endpoint Security pros

"Tanium's most valuable features are patch management, inventory, and distribution software."

"When I push a quick update, it's done right away, and I can rescan immediately to confirm completion within minutes."

"I'm not so familiar with the tool but I like the interaction of the console to the picture. Patching is the primary model I have been focusing on for the last couple of weeks. So I have created a proof of concept environment and have been checking the available features."

"I like the tool's incident response and security patching."

"The interrogation piece was the most valuable feature because it was very detailed."

"The product is granular and can build complex roles compared to other EDR vendors."

"Tanium is a very good product and I would rate it eight or nine out of ten."

More Tanium pros

Cons

"The look and feel of the system are old-fashioned."

"Around the scalability concern, I would like to see the ability to run teamed, clustered, or hierarchical root servers, in order to provide a more robust, high availability system. The single monolithic root server model does somewhat bother me."

"For improvements, it would be good if BigFix supported more databases. Currently, it only supports DB2 and Microsoft SQL. Adding support for other databases like Oracle would be beneficial."

"Needs to improve Network Access Protection (NAP) technologies to prevent computers with vulnerabilities from gaining access to networks."

"The solution’s pricing could be improved."

"The solution needs to improve console speed. I would like to see one console that does everything. It doesn't need to have a big client console."

"I remember doing restarts a few times. So, making sure that it is rock solid from an executable perspective is important."

"The console interface is not friendly, and requires training before using it in production."

More BigFix cons

"In a few cases, when we enable the IPS/IDS feature, there are performance-related issues on the end devices. If we run quite a few features of Symantec, especially the IPS/IDF, it consumes a lot of processing and memory capacity."

"As for some features I would like to see, I'd like a retrospective action feature similar to Cisco Secure Endpoint's. Some antiviruses don't allow you to re-scan a product that was in the former scan—for example, if a file was classified as proper, but then for some reason the file was changed, we need an antivirus with retrospective capability. We need EPP and EDR products in a secured environment."

"There are limitations because everyone these days has hybrid working; however, the endpoint does not work for us unless we are connected to a VPN, which is a major limitation."

"We are not satisfied with the technical support."

"Overall, the price could be reduced."

"The support can be wanting. Sometimes the time to resolution is longer than I would expect."

"Automation of tasks should be improved on SEPM. It is currently manual, and we should be able to automate installation and deployment from the client side."

"There is no local support for Symantec products in Hong Kong."

More Symantec Endpoint Security cons

"The solution can give a lot of false positives."

"The main issues are the network connection because different customers have issues with their networks. It's difficult implementing this type of solution because the network is the main feature in the architecture for these types of solutions. Tanium could improve by creating some network optimization."

"We had some issues with the solution's OS upgrade."

"The solution needs to improve the reporting and tracking capabilities."

"The solution lacks mobility."

"Tanium's limitations should be improved because although it is a great tool, it is limited to only a few classes during a session."

"Tanium required local admin or root rights on Mac devices, which did not comply with our security policies. This made the solution less suitable for our restrictive environment."

"The performance could improve in future releases. We have had performance issues in specialized web environments, but overall I think the problems are less than 2% of the computer systems being used."

More Tanium cons

Pricing and Cost Advice

"The price of BigFix could be lower. However, I am always seeking a lower price."

"I would stay with the Managed Virtual Server license model, which is a 1-to-1 license per OS whether it is virtual or physical."

"You get what we call the Platform Edition, which you get for free. The patch service is maybe $0.50 per workstation per month. Then there's the basic server cost, which is about $1.50 per server per month. You also get into Lifecycle which does power management, OSD remote control, and those types of things, and that might be about 10 times the price - which works out to about $13 per server and, maybe $5 per workstation per month."

"It might be about $23 a client."

"We have a subscription-based contract with BigFix."

"Its price is very reasonable."

"It is too costly. It is one of the best tools, but because of pricing, not all clients support it. Its licensing is on a yearly basis."

"Compliance, inventory, and licensing are really pricey. They should lower the price. It discourages users from getting onboard."

More BigFix pricing and cost advice

"We receive a discounted price for this solution because we are a non-profit organization."

"Its price should be reasonable."

"Symantec Endpoint Security's pricing is okay. It is cheaper compared to other products."

"Its price is reasonable."

"We have some customers on a one-year license and others on a three-year license."

"They're on the reasonable side. They are at mid-level. They're not too expensive as compared to their competitors. They're also not too cheap. In terms of price structure, hopefully, they could do a subscription."

"Pricing and licensing for our country is very good. It's not that expensive and the endpoint security is very good. It's not as cheap as some others, but they are not as good."

"Pricing and licensing are important to us when choosing a product."

More Symantec Endpoint Security pricing and cost advice

"Tanium is a more expensive solution in Latin America than some of the competitors, such as BigFix."

"It's an expensive solution. It would be nice if the cost were lower."

"It is higher than some competitors in the market."

"The solution is expensive but it's a good investment."

"The product's pricing differs from region to region depending on negotiations and the number of endpoints."

"There is an annual license required to use this solution."

"The solution offers value for money."

See which vendors are best for you

Use our free recommendation engine to learn which Endpoint Protection Platform (EPP) solutions are best for your needs.

See recommendations

849,686 professionals have used our research since 2012.

Top Industries

By visitors reading reviews

Educational Organization

46%

Financial Services Firm

Government

Computer Software Company

15%

Financial Services Firm

12%

Manufacturing Company

10%

Government

Financial Services Firm

17%

Government

12%

Computer Software Company

10%

Manufacturing Company

Company Size

By reviewers

Large Enterprise

Midsize Enterprise

Small Business

Questions from the Community

What do you like most about BigFix?

The most valuable features of the solution are Windows patching and the hardware and software inventory.

What is your experience regarding pricing and costs for BigFix?

The pricing is competitive, but not the most competitive.

What needs improvement with BigFix?

Implementing a business solution with BigFix has some issues, primarily concerning the time required for distribution...

Which is better - Cortex XDR or Symantec End-User Endpoint Security?

Aqua Security is easy to use and very manageable. Its main focus is on Kubernetes and Docker. Security is a very valu...

Which offers better endpoint security - Symantec or Microsoft Defender?

We use Symantec because we do not use MS Enterprise products, but in my opinion, Microsoft Defender is a superior sol...

What do you like most about Symantec End-User Endpoint Security?

Symantec have everything – documentation, videos, data sheets.

What do you like most about Tanium?

Tanium’s linear-chain architecture is valuable.

What needs improvement with Tanium?

When working with Tanium, there are some older devices that haven't been patched for a long time, and certain patches...

What is your primary use case for Tanium?

We primarily use Tanium for patching, focusing on vulnerabilities. Our major goal with Tanium is to patch based on vu...

Microsoft Intune vs BigFix

Comparisons

Compared 13% of the time

Microsoft Configuration Manager vs BigFix

Compared 9% of the time

Red Hat Ansible Automation Platform vs BigFix

Compared 7% of the time

Red Hat Satellite vs BigFix

Compared 5% of the time

ManageEngine Patch Manager Plus vs BigFix

Compared 4% of the time

More BigFix Competitors

Microsoft Defender for Endpoint vs Symantec Endpoint Security

Compared 18% of the time

CrowdStrike Falcon vs Symantec Endpoint Security

Compared 18% of the time

Trend Micro Deep Security vs Symantec Endpoint Security

Compared 8% of the time

Kaspersky Endpoint Security for Business vs Symantec Endpoint Security

Compared 7% of the time

Cortex XDR by Palo Alto Networks vs Symantec Endpoint Security

Compared 4% of the time

More Symantec Endpoint Security Competitors

CrowdStrike Falcon vs Tanium

Compared 15% of the time

Microsoft Defender for Endpoint vs Tanium

Compared 9% of the time

Microsoft Configuration Manager vs Tanium

Compared 9% of the time

ServiceNow Discovery vs Tanium

Compared 6% of the time

Qualys VMDR vs Tanium

Compared 5% of the time

More Tanium Competitors

Product Reports

BigFix

Download BigFix product report

Symantec Endpoint Security

Download Symantec Endpoint Security product report

Download Tanium product report

Also Known As

Tivoli Endpoint Manager

Symantec EPP, Symantec Endpoint Protection (SEP)

No data available

Overview

HCL BigFix is a powerful patch management tool that enables organizations to simply control their patch management operations. It is designed so that IT security and operations teams can collaborate in the most effective way possible. Users that employ BigFix can find and fix issues with their endpoints faster than those that employ its competitors. It comes with thousands of security checks that can be deployed quickly and easily. These enable users to safeguard themselves from a wide variety of digital threats.

HCL BigFix Benefits

Some of the ways that organizations can benefit by choosing to deploy HCL BigFix include:

Total visibility and simplified control. BigFix provides users with total system visibility while simultaneously enabling administrators to easily manage their networks. It enables organizations to run all of their patch management operations from a single user interface. This UI contains all of BigFix’s system controls. It also contains all of an organization’s network data. Users will never have to search for the features or information that they need as everything is centrally located.

Maximum benefit for reduced overhead. BigFix enables businesses to integrate with more than 100 different operating systems. Users can utilize the operating system of their choice without multiplying their overhead costs. They can keep costs down while still achieving their goals.

Flexibility. BigFix is highly flexible. Users can integrate it with the top vulnerability management solutions on the market. This enables users to maximize their protective coverage and minimize the amount of time that they have to spend resolving issues.

BigFix Features

BigFix Insights. The BigFix insights feature gives users access to a powerful deep analysis tool. This tool enables organizations to gather data from all of their endpoints and compile them into reports that can aid administrators in their work. It can centralize an organization’s data and also enable it to import data from other sources so that it can make more informed decisions.

Task automation. BigFix has the ability to automate rudimentary tasks so that users can focus on tasks that require a greater level of attention. This can include tasks such as event remediation and data collection. This feature enables users to focus their attention on other more critical tasks.

Data loss prevention tool. This tool enables users to prevent critical data from being leaked or leaking accidentally. It creates policies that limit or prevent sensitive data from being transmitted. It also enforces the privacy protocols that are already in place. Organizations can leverage this tool to bolster the security protecting their data from malicious actors.

Web reputation tool. This tool proactively protects networks from malicious websites. It scans for potentially dangerous websites and opens a blocking page when one is detected. Users are also given the ability to set proxy server credentials for the system to recognize and authenticate. Users can use this to ensure that suspicious websites are unable to infect their networks.

Centralized UI. BigFix comes with a built-in UI that centralizes all of the solution’s features so that they can be accessed from a single location. It enables administrators to target specific portions of the network when issues arise without requiring them to take actions that will affect the entire network.

Reviews from Real Users

HCL BigFix is a highly effective solution that stands out when compared to most of its competitors. Two major advantages it offers are its auto-patching capability and its user-friendly tools.

Santhosh K., the chief executive officer of Catnip Infotech Private Limited, writes, “The second valuable feature is, BigFix also has an auto patch updating feature, where the latest patches, and what is required for my system are automatically downloaded and kept ready for me. The solution applies the patch and notifies me after applying the patch. BigFix also gives me a ping saying that I should reset my system within a certain period of time, while the patch is being applied. Let's say, the patch is being applied and if there's an issue, the solution can revoke the applied patch, and revert back to the old state.”

Benedikt S., an application administrator, says, “It's very straightforward. The usability is very close to everyday technical tools that you use as a systems administrator. So it's quite user-friendly.”

HCLSoftware

Symantec Endpoint Security is a robust and reliable product that provides complete protection against viruses, malware, Trojans, and malicious files. It offers application and device control, ease of use in deploying and updating, a central control console, stability, scalability, auto-discovery capabilities, patch management, endpoint detection and response capabilities, intrusion detection module.

The Symantec Global Intelligence Network (GIN) provides threat intelligence and detection across endpoints, email, and web traffic. It has helped organizations reduce downtime, increase productivity, and improve security posture. Symantec Endpoint Security is easy to use, has a flexible administration, and offers more value than expected.

Broadcom

Tanium Endpoint Platform reduces security risk, improves agility & increases efficiency, a fundamentally new approach to endpoint security's threat detection, indicent response, vulnerability assessment and configuration compliance & with management's software distribution, asset utilization, asset inventory and patch management.

Sample Customers

US Foods, Penn State, St Vincent's Health US Foods, Sabadell Bank, SunTrust, Australia Sydney, Stemac, Capgemini, WNS Global Services, Jebsen & Jessen, CenterBeam, Strauss, Christian Hospital Centre, Brit Insurance, Career Education Corporation

Audio Visual Dynamics, Red Deer Advocate, Asia Pacific Telecom Co. Ltd., Kibbutz Ein Gedi, and AMETEK, Inc.

JPMorgan Chase, eBay, Amazon, US Bank, MetLife, pwc, Cerner, Delphi, MGM Grand, New York Life

Endpoint Protection Platform (EPP)