IT Central Station is now PeerSpot: Here's why

BigFix vs Trellix Endpoint Security comparison

Cancel
You must select at least 2 products to compare!
Cisco Logo
21,041 views|12,877 comparisons
HCL Logo
21,981 views|14,067 comparisons
Trellix Logo
17,429 views|14,995 comparisons
Featured Review
Buyer's Guide
BigFix vs. Trellix Endpoint Security
May 2022
Find out what your peers are saying about BigFix vs. Trellix Endpoint Security and other solutions. Updated: May 2022.
597,415 professionals have used our research since 2012.
Quotes From Members
We asked business professionals to review the solutions they use.
Here are some excerpts of what they said:
Pros
"The entirety of our network infrastructure is Cisco and the most valuable feature is the integration.""The threat Grid with the ability to observe the sandboxing, analyze, and perform investigations of different malicious files has been great.""Among the most valuable features are the exclusions. And on the scalability side, we can integrate well with the SIEM orchestration engine and a number of applications that are proprietary or open source.""Another of my favorite features is called the Device Trajectory, where it shows everything that's going on, on a computer. It shows the point in time when a virus is downloaded, so you can see if the user was surfing the internet or had a program open. It shows every running process and file access on the computer and saves it like a snapshot when it detects something malicious. It also has a File Trajectory, so you can even see if that file has been found on any of your other computers that have AMP.""Integration is a key selling factor for Cisco security products. We have a Cisco Enterprise Agreement with access to Cisco Email Security, Cisco Firepower, Cisco Stealthwatch, Cisco Talos, Cisco Threat Grid, Cisco Umbrella, and also third-party solutions. This is key to our security and maximizing operations. Because we do have the Email Security appliance and it is integrated with Threat Response, we have everything tied together. Additionally, we are using the Cisco SecureX platform, as we were a beta test for that new solution. With SecureX, we are able to pull all those applications into one pane for visibility and maintenance. This greatly maximizes our security operations.""Any alert that we get is an actionable alert. Immediately, there is information that we can just click through, see the point in time, what happened, what caused it, and what automatic actions were taken. We can then choose to take any manual actions, if we want, or start our investigation. We're no longer looking at digging into information or wading through hundreds of incidents. There's a list which says where the status is assigned, e.g., under investigation or investigation finished. That is all in the console. It has taken away a lot of the administration, which we would normally be doing, and integrated it into the console for us.""It is extensive in terms of providing visibility and insights into threats. It allows for research into a threat, and you can chart your progress on how you're resolving it.""It doesn't impact the devices. It is an agent-based solution, and we see no performance knock on cell phones. That was a big thing for us, especially in the mobile world. We don't see battery degradation like you do with other solutions which really drain the battery, as they're constantly doing things. That can shorten the useful life of a device."

More Cisco Secure Endpoint Pros →

"It is a one-stop tool that allows you to do everything. It supports reporting, vulnerability management, patch management, and configuration. All things can be done in one tool.""We found the implementation partner to be very supportive in terms of explaining and training the in-house resources and deploying the solution.""The most valuable feature of BigFix is the software deployment.""It's easy to use, not complicated.""BigFix is easy to use.""What I like most is that it is a powerful solution.""BigFix technical support is good.""I like the inventory and life cycle management feature."

More BigFix Pros →

"The installation is pretty straightforward.""We can manage everything from the central console and it is very easy.""The most valuable feature is ease of use.""It's easy to use.""The performance is good.""This product has the capability to check a wide range of vulnerabilities and devices.""The manageability of the product itself is its most valuable aspect. You have the underlying EPO, and on top of it, you can deploy the various components as you require. This is unlike other solutions like Symantec where you have to deploy everything or nothing. With this solution, you can choose to only deploy antivirus or only deploy a firewall, or only something else. I choose the components and that deployment is done through EPO. It makes manageability very flexible.""The most valuable features are reporting from the ePO console and the advanced threat protection (ATP)."

More Trellix Endpoint Security Pros →

Cons
"We had a lot of noise at the beginning, and we had to turn it down based on exclusions, application whitelisting, and excluding unknown benign applications. Cisco should understand the need for continuous updates on the custom Cisco exclusions and the custom applications that come out-of-the-box with the AMP for Endpoints.""I would like to see integration with Cisco Analytics.""The room for improvement would be on event notifications. I have mine tuned fairly well. I do feel that if you subscribe to all the event notification types out-of-the-box, or don't really go through and take the time to filter out events, the notifications can become overwhelming with information. Sometimes, when you're overwhelmed with information, you just say, "I'm not going to look at anything because I'm receiving so much." I recommend the vendor come up with a white paper on the best practices for event notifications.""The thing I hate the most, which they have not fixed, is when it creates duplicate entries within a console. If you have a computer and you upgrade from Windows 7 to Windows 10, or you upgrade your agent from version 6 to 7, it creates a new instance in there instead of updating the information. Instead of paying a license for one computer, I have to license two computers until I manually go in, search for all the duplicate entries, and clean them out myself.""...the greatest value of all, would be to make the security into a single pane of glass. Whilst these products are largely integrated from a Talos perspective, they're not integrated from a portal perspective. For example, we have to look at an Umbrella portal and a separate AMP portal. We also have to look at a separate portal for the firewalls. If I could wave a magic wand and have one thing, I would put all the Cisco products into one, simple management portal.""We have had some problems with updates not playing nice with our environment. This is important, because if there is a new version, we need to test it thoroughly before it goes into production. We cannot just say, "There's a new version. It's not going to give us any problems." With the complexity of the solution using multiple engines for multiple tasks, it can sometimes cause performance issues on our endpoints. Therefore, we need to test it before we deploy. That takes one to three days before we can be certain that the new version plays nice with our environment.""The connector updates are very easily done now, and that's improving. Previously, the connector had an issue, where almost every time it needed to be updated, it required a machine reboot. This was always a bit of an inconvenience and a bug. Because with a lot of software now, you don't need to do that and shouldn't need to be rebooting all the time.""We don't have issues. We think that Cisco covers all of the security aspects on the market. They continue to innovate in the right way."

More Cisco Secure Endpoint Cons →

"Sometimes the workstations communicate back to the BigFix server two or three days in a week or something similar. Sometimes there can be a delay reporting back to the server for a variety of reasons, such as users turning their computer off when they go home. When the user comes back and turns the computer back on BigFix needs to synchronize and sometimes it can take some time, approximately one week. The communication between the agent and the server should be faster, there is room for improvement in this area.""We would like to see a different license plan, e.g. to include features from lifecycle with Patch Management, as an example.""I remember doing restarts a few times. So, making sure that it is rock solid from an executable perspective is important.""They need better integration.""BigFix is actually a little bit on the expensive side in Turkey because of the dollar's exchange rate in our currency.""The reporting and dashboard parts have room for improvement.""The remote software installation could be better.""The reporting structure could be a little more simplistic. Currently, it throws too many vulnerabilities. Some of them are not needed because they are only informational and limitations, and they are not of much help. It doesn't need to show us these things."

More BigFix Cons →

"The initial setup isn't so easy. You need to know what you are doing.""There are times the solution has some additional software added that is not fully integrated properly, such as Exchange Group Sheild. It is quite old and is not fully integrated properly and could be improved.""There are two main areas that require improvement. One is the size of the packages. Although I'll admit manageability is good, if I want to deploy, let's say just the antivirus or just the firewall, each of those package sizes are quite large. They are sometimes as big as 200MB or 250MB. When I have operations in remote areas where connectivity is always poor, it's difficult. To deploy such a package in a remote location over the internet or something like that is always challenging.""The solution needs to offer better local technical support.""Every time we open a ticket with McAfee, their response differs and they are not consistent.""The resolution time should be faster.""The solution has problematic encryption, which needs reforming.""They can make it free, but that's not going to happen."

More Trellix Endpoint Security Cons →

Pricing and Cost Advice
  • "The visibility that we have into the endpoint and the forensics that we're able to collect give us value for the price. This is not an overly expensive solution, considering all the things that are provided. You get great performance and value for the cost."
  • "Whenever you are doing the licensing process, I would highly advise to look at what other Cisco solutions you have in your organization, then evaluate if an Enterprise Agreement is the best way to go. In our case, it was the best way to go. Since we had so many other Cisco products, we were able to tie those in. We were actually able to get several Cisco security solutions for less than if we had bought three or four Cisco security solutions independently or ad hoc."
  • "In our case, it is a straightforward annual payment through our Enterprise Agreement."
  • "Our company was very happy with the price of Cisco AMP. It was about a third of what we were paying for System Center Endpoint Protection."
  • "There are a couple of different consumption models: Pay up front, or if you have an enterprise agreement, you can do a monthly thing. Check your licensing possibilities and see what's best for your organization."
  • "The Enterprise Agreement is like an all-you-can-eat buffet of Cisco products. In that vein, it was very affordable."
  • "We can know if something bad is potentially happening instantaneously and prevent it from happening. We can go to a device and isolate it before it infects other devices. In our environment, that's millions of dollars saved in a matter of seconds."
  • "The pricing and licensing are reasonable. The cost of AMP for Endpoints is inline with all the other software that has a monthly endpoint cost. It might be a little bit higher than other antivirus type products, but we're only talking about a dollar a month per user. I don't see that cost as being an issue if it's going to give us the confidence and security that we're looking for. We have had a lot of success and happiness with what we're using, so there's no point in changing."
  • More Cisco Secure Endpoint Pricing and Cost Advice →

  • "You get what we call the Platform Edition, which you get for free. The patch service is maybe $0.50 per workstation per month. Then there's the basic server cost, which is about $1.50 per server per month. You also get into Lifecycle which does power management, OSD remote control, and those types of things, and that might be about 10 times the price - which works out to about $13 per server and, maybe $5 per workstation per month."
  • "The price is very fair."
  • "The price is reasonable, but our customers find it expensive."
  • "It is too costly. It is one of the best tools, but because of pricing, not all clients support it. Its licensing is on a yearly basis."
  • "The license is subscription-based."
  • "You are charged per server and per workstation when using BigFix. ManageEngine is a lot cheaper than BigFix. There are some additional costs, such as support."
  • "We have a subscription-based contract with BigFix."
  • "The price of BigFix is better than the solutions. You are able to pay monthly or annually. There are not any hidden costs with BigFix. There is an additional cost for the SQL database."
  • More BigFix Pricing and Cost Advice →

  • "Pricing is reasonable and runs at a cost per user per year."
  • "It is not that expensive. There is no additional cost. We got the entire bundle together."
  • "The price of this product is good."
  • "The price of McAfee is pretty similar to Symantec, and there are no costs in addition to the standard licensing fees."
  • "Its price is very high. It is higher than its competitors, and it should be less."
  • "The pricing is great and licensing fees are billed on a yearly basis."
  • "Since the maintenance is done by our own team, the price of the subscription should really be cheaper."
  • "We pay 650 Rand for a license. It is a perpetual license which we normally run for two years."
  • More Trellix Endpoint Security Pricing and Cost Advice →

    report
    Use our free recommendation engine to learn which Endpoint Protection for Business (EPP) solutions are best for your needs.
    597,415 professionals have used our research since 2012.
    Questions from the Community
    Top Answer: 
    It is extensive in terms of providing visibility and insights into threats. It allows for research into a threat, and… more »
    Top Answer: 
    The pricing was negotiated before I started, so I don't really know.
    Top Answer: 
    While I've attended a lot of their training webinars, they were mostly high-level. They just say that these are the… more »
    Top Answer: 
    It is for multiple use cases. A lot of people are looking at it just for security, and that's really endpoint security… more »
    Top Answer: 
    We have a subscription-based contract with BigFix.
    Top Answer: 
    I remember doing restarts a few times. So, making sure that it is rock solid from an executable perspective is… more »
    Top Answer: 
    The flexible manageability of McAfee Endpoint Security is one of our favorite aspects of this solution. You can deploy… more »
    Top Answer: 
    The primary reason the solution is good is because of its ease-of-use.
    Top Answer: 
    I believe their prices are very good. Our customers pay an annual license fee.
    Comparisons
    Also Known As
    Cisco AMP for Endpoints
    Tivoli Endpoint Manager
    McAfee Endpoint Security, McAfee Complete Endpoint Protection, McAfee Endpoint Protection, Total Protection for Endpoint, Intel Security Total Protection for Endpoint, MCAFEE Complete Endpoint Protection
    Learn More
    Overview

    Cisco Secure Endpoint is a cloud-managed endpoint security solution that provides advanced protection against viruses, malware, and other cyber threats by detecting, preventing, and responding to threats. Cisco Secure Endpoint is managed online via a web-based management console and can be deployed on a variety of platforms. It protects endpoints, networks, emails, and web traffic.

    In a world of evolving threats, it’s necessary to put security above everything. Cisco Secure Endpoint provides you with the scope, scale, and capabilities to attain effective security with its integrated portfolio and industry-leading threat intelligence. Cisco Secure Endpoint continuously tracks and analyzes files and file activities across your systems - both remote and on premises - and compares these events to other events that occurred before or during past attacks. If a file exhibits malicious behavior, the tool sends an alert which enables you to stop a potential threat from succeeding.

    Key Capabilities of Cisco Secure Endpoint

    • Multi-layered protection: Cisco Secure Endpoint combines behavioral analytics, machine learning, and signature-based techniques to prevent threats from compromising your endpoints.

    • Powerful EDR capabilities: Reduce attack surface using advanced endpoint and extended detection and response, threat hunting, and endpoint isolation.

    • Dynamic malware analysis: Identify and block attacks in real time.

    • Simplified investigations: Advanced search capabilities help you get the information you need about your endpoints fast.

    Reviews from Real Users

    Cisco Secure Endpoint stands out among its competitors for a number of reasons. Two major ones are its ability to enable developers to easily secure their endpoints with one single operation using its management console and its advanced alerting techniques.

    Tim C., an IT manager at Van Der Meer Consulting, writes, "The solution makes it possible to see a threat once and block it everywhere across all endpoints and the entire security platform. It has the ability to block right down to the file and application level across all devices based on policies, such as, blacklisting and whitelisting of software and applications. This is good. Its strength is the ability to identify threats very quickly, then lock them and the network down and block the threats across the organization and all devices, which is what you want. You don't want to be spending time working out how to block something. You want to block something very quickly, letting that flow through to all the devices and avoiding the same scenario on different operating systems."

    Wouter H., a technical team lead network & security at Missing Piece BV, notes, "Any alert that we get is an actionable alert. Immediately, there is information that we can just click through, see the point in time, what happened, what caused it, and what automatic actions were taken. We can then choose to take any manual actions, if we want, or start our investigation. We're no longer looking at digging into information or wading through hundreds of incidents. There's a list which says where the status is assigned, e.g., under investigation or investigation finished. That is all in the console. It has taken away a lot of the administration, which we would normally be doing, and integrated it into the console for us."

    HCL BigFix provides complete visibility and control into all endpoints through a single, collaborative endpoint management platform that enables IT/Security Operations to fully automate discovery, management and remediation of endpoints, whether they are on-prem or in the cloud, regardless of location or connectivity. BigFix bridges the gap between IT and Security Operations, drastically reducing remediation times and costs. With BigFix, enterprises can protect endpoints running Windows, UNIX, Linux, and macOS by achieving greater than 98% first-pass patch success rates and enabling continuous endpoint compliance. Unlike complex tools that cover a subset of endpoints and take days or weeks to remediate, BigFix can find and fix endpoints fast.

    McAfee Complete Endpoint Protection allows you to protect all of your devices with intelligent, collaborative security, in one easy-to-manage, integrated solution. Our integrated endpoint security framework helps remove redundancies, enables fast, proven performance and offers an architecture to align both current and future security investments. With a flexible choice of cloud-based or a local management console, security administrators also get true centralized management that simplifies ongoing tasks, deployment and monitoring.

    Offer
    Learn more about Cisco Secure Endpoint
    Learn more about BigFix
    Learn more about Trellix Endpoint Security
    Sample Customers
    Heritage Bank, Mobile County Schools, NHL University, Thunder Bay Regional, Yokogawa Electric, Sam Houston State University, First Financial Bank
    US Foods, Penn State, St Vincent's Health US Foods, Sabadell Bank, SunTrust, Australia Sydney, Stemac, Capgemini, WNS Global Services, Jebsen & Jessen, CenterBeam, Strauss, Christian Hospital Centre, Brit Insurance, Career Education Corporation
    inHouseIT, Seagate Technology
    Top Industries
    REVIEWERS
    Government13%
    Healthcare Company13%
    Manufacturing Company13%
    Financial Services Firm7%
    VISITORS READING REVIEWS
    Comms Service Provider24%
    Computer Software Company22%
    Government7%
    Financial Services Firm5%
    REVIEWERS
    University11%
    Computer Software Company11%
    Retailer11%
    Healthcare Company11%
    VISITORS READING REVIEWS
    Computer Software Company25%
    Comms Service Provider17%
    Government11%
    Financial Services Firm7%
    REVIEWERS
    Financial Services Firm25%
    Computer Software Company15%
    Government13%
    Comms Service Provider10%
    VISITORS READING REVIEWS
    Computer Software Company26%
    Comms Service Provider22%
    Government9%
    Manufacturing Company6%
    Company Size
    REVIEWERS
    Small Business39%
    Midsize Enterprise18%
    Large Enterprise43%
    VISITORS READING REVIEWS
    Small Business28%
    Midsize Enterprise21%
    Large Enterprise52%
    REVIEWERS
    Small Business27%
    Midsize Enterprise11%
    Large Enterprise63%
    VISITORS READING REVIEWS
    Small Business33%
    Midsize Enterprise15%
    Large Enterprise53%
    REVIEWERS
    Small Business38%
    Midsize Enterprise21%
    Large Enterprise42%
    Buyer's Guide
    BigFix vs. Trellix Endpoint Security
    May 2022
    Find out what your peers are saying about BigFix vs. Trellix Endpoint Security and other solutions. Updated: May 2022.
    597,415 professionals have used our research since 2012.

    BigFix is ranked 14th in Endpoint Protection for Business (EPP) with 15 reviews while Trellix Endpoint Security is ranked 15th in Endpoint Protection for Business (EPP) with 39 reviews. BigFix is rated 8.6, while Trellix Endpoint Security is rated 8.0. The top reviewer of BigFix writes "Very stable and easy to deploy with excellent patch compliance". On the other hand, the top reviewer of Trellix Endpoint Security writes "Protect your business against a wide variety of threats". BigFix is most compared with Microsoft Endpoint Configuration Manager, Red Hat Ansible Automation Platform, Tanium, Microsoft Windows Server Update Services and Red Hat Satellite, whereas Trellix Endpoint Security is most compared with McAfee MVISION Endpoint, Microsoft Defender for Endpoint, Symantec Endpoint Security, CrowdStrike Falcon and Cortex XDR by Palo Alto Networks. See our BigFix vs. Trellix Endpoint Security report.

    See our list of best Endpoint Protection for Business (EPP) vendors.

    We monitor all Endpoint Protection for Business (EPP) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.