CrowdStrike Falcon and Cisco Secure Endpoint compete in the cybersecurity solutions category, providing comprehensive protection. CrowdStrike Falcon seems to have the upper hand due to its cloud-native architecture, advanced EDR capabilities, and strong AI/ML features, making threat detection proactive and accuracy-driven.
Features: CrowdStrike Falcon excels with a cloud-native architecture that enables remote system access, real-time threat analysis, and efficient EDR. Its AI/ML capabilities make threat detection proactive, while the intuitive incident response and investigative features further enhance its offering. Cisco Secure Endpoint offers real-time protection and integrates seamlessly within the Cisco ecosystem, providing robust endpoint visibility.
Room for Improvement: CrowdStrike Falcon could improve integration with firewalls and legacy systems and enhance reporting and dashboard functionalities. Licensing complexity and offline scanning features are also areas for potential growth. Cisco Secure Endpoint needs better integration with third-party products, robust forensic capabilities, and a more intuitive GUI. Licensing and dashboard navigation are other areas that need improvement.
Ease of Deployment and Customer Service: CrowdStrike Falcon is praised for its straightforward deployment and responsive technical support. The cloud-native model enhances the deployment process, although faster response times could still improve user experience. Cisco Secure Endpoint's deployment process faces criticism for being challenging, with support being less consistent than CrowdStrike. Its integration with Cisco products is beneficial but lacks seamlessness compared to CrowdStrike.
Pricing and ROI: CrowdStrike Falcon is recognized for its premium pricing but offers substantial ROI through improved threat management and reduced system downtime. The pricing is justified by its advanced features and operational savings. Cisco Secure Endpoint provides competitive pricing, especially when bundled in enterprise agreements, offering significant value due to its integration within the Cisco ecosystem. While both solutions reduce manpower needs, CrowdStrike is perceived to provide better ROI due to its advanced security posture.
CrowdStrike Falcon saves time and offers good value for money, especially for enterprise companies, because it can stop breaches.
It's very easy to deploy without many IT admins, saving time.
Cisco has good technical support, especially considering these are newer solutions compared to traditional routing and switching products.
On a scale of one to ten, I would rate the technical support as a 10 because they resolve many issues for us.
The CrowdStrike team is very efficient; I would rate them ten out of ten.
They could improve by initiating calls for high-priority cases instead of just opening tickets.
Cisco Secure Endpoint is definitely scalable.
It has adequate coverage and is easy to deploy.
In terms of scalability, I find CrowdStrike to be stable, and I have not encountered any limitations with it.
There's no scalability limitation from CrowdStrike itself, as it just requires agent deployment.
We have not encountered any problems.
I have never seen instability in the CrowdStrike tool.
We are following N-1 versions across our environment, which is stable.
The biggest issue occurred when every computer worldwide experienced a blue screen.
The forensic capabilities need enhancement, especially for deep forensic data collection.
Simplifying the querying process, such as using double quote queries or directly obtaining logs based on IP addresses or usernames, would be beneficial.
Another concern is CrowdStrike's GUI. It changes annually, making it hard to work and find options.
Threat prevention should be their first priority.
Cisco is aggressive in pricing, making it competitive and sometimes even cheaper than other good products like CrowdStrike, Microsoft Defender, or SentinelOne.
It is expensive compared to SentinelOne, but as the market leader, it is worth it.
The licensing cost and setup costs are affordable.
The solution is a bit expensive.
Cisco Secure Endpoint is very good in machine learning, which allows it to secure offline contents even if not connected to the internet.
I can investigate by accessing the customer's host based on the RTR environment and utilize host search to know details for the past seven days, including logins, processes, file installations, malicious processes, and network connections.
The real-time analytics aspect of CrowdStrike performs well because we get all logs in real-time, with no delay, allowing us to take action immediately.
Being an EDR solution, it helps us identify attacks in real-time.
| Product | Market Share (%) |
|---|---|
| CrowdStrike Falcon | 7.0% |
| Cisco Secure Endpoint | 1.3% |
| Other | 91.7% |
| Company Size | Count |
|---|---|
| Small Business | 21 |
| Midsize Enterprise | 14 |
| Large Enterprise | 21 |
| Company Size | Count |
|---|---|
| Small Business | 46 |
| Midsize Enterprise | 34 |
| Large Enterprise | 62 |
Cisco Secure Endpoint is a comprehensive endpoint security solution that natively includes open and extensible extended detection and response (XDR) and advanced endpoint detection and response (EDR) capabilities. Secure Endpoint offers relentless breach protection that enables you to be confident, be bold, and be fearless with one of the industry’s most trusted endpoint security solutions. It protects your hybrid workforce, helps you stay resilient, and secures what’s next with simple, comprehensive endpoint security powered by unique insights from 300,000 security customers and deep visibility from the networking leader.
Cisco Secure Endpoint was formerly known as Cisco AMP for Endpoints.
Reviews from Real Users
Cisco Secure Endpoint stands out among its competitors for a number of reasons. Two major ones are its ability to enable developers to easily secure their endpoints with one single operation using its management console and its advanced alerting techniques.
Tim C., an IT manager at Van Der Meer Consulting, writes, "The solution makes it possible to see a threat once and block it everywhere across all endpoints and the entire security platform. It has the ability to block right down to the file and application level across all devices based on policies, such as, blacklisting and whitelisting of software and applications. This is good. Its strength is the ability to identify threats very quickly, then lock them and the network down and block the threats across the organization and all devices, which is what you want. You don't want to be spending time working out how to block something. You want to block something very quickly, letting that flow through to all the devices and avoiding the same scenario on different operating systems."
Wouter H., a technical team lead network & security at Missing Piece BV, notes, "Any alert that we get is an actionable alert. Immediately, there is information that we can just click through, see the point in time, what happened, what caused it, and what automatic actions were taken. We can then choose to take any manual actions, if we want, or start our investigation. We're no longer looking at digging into information or wading through hundreds of incidents. There's a list which says where the status is assigned, e.g., under investigation or investigation finished. That is all in the console. It has taken away a lot of the administration, which we would normally be doing, and integrated it into the console for us."
CrowdStrike Falcon offers robust endpoint protection and threat detection, leveraging cloud-native architecture and AI-driven capabilities for advanced security. Its design ensures minimal system impact, making it a preferred choice for organizations seeking efficient protection solutions.
CrowdStrike Falcon provides comprehensive security features, including endpoint detection and response, real-time threat insights, and advanced AI-driven detection mechanisms. Its cloud-native architecture facilitates effortless scalability and seamless integration with cloud services, securing endpoints, servers, and roaming users. While Falcon delivers strong threat intelligence and automated detection, it faces challenges in operating system compatibility, reports require enhancements, and integration with some technologies is limited. High pricing and occasional false positives are noted areas for improvement, along with expanded support for older systems.
What are the key features of CrowdStrike Falcon?In industries requiring fortified cybersecurity measures, CrowdStrike Falcon is deployed for endpoint protection and incident response. It offers advanced threat defense and integrates well with cloud services, making it a suitable replacement for traditional antivirus solutions. For sectors engaging in forensic investigations and real-time malware defense, Falcon's capabilities align with their security demands, serving industries from healthcare to finance.
We monitor all Endpoint Protection Platform (EPP) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.
