No more typing reviews! Try our Samantha, our new voice AI agent.

Cisco Secure Endpoint vs Dell Trusted Device powered by CrowdStrike Falcon and Intel vPro comparison

Sponsored
 

Comparison Buyer's Guide

Executive SummaryUpdated on May 17, 2026

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Categories and Ranking

Cortex XDR by Palo Alto Net...
Sponsored
Ranking in Endpoint Detection and Response (EDR)
6th
Average Rating
8.4
Reviews Sentiment
6.8
Number of Reviews
113
Ranking in other categories
Endpoint Protection Platform (EPP) (4th), Extended Detection and Response (XDR) (4th), Ransomware Protection (2nd), AI-Powered Cybersecurity Platforms (1st)
Cisco Secure Endpoint
Ranking in Endpoint Detection and Response (EDR)
26th
Average Rating
8.6
Reviews Sentiment
7.2
Number of Reviews
49
Ranking in other categories
Endpoint Protection Platform (EPP) (29th), Cisco Security Portfolio (8th)
Dell Trusted Device powered...
Ranking in Endpoint Detection and Response (EDR)
32nd
Average Rating
9.6
Reviews Sentiment
6.2
Number of Reviews
4
Ranking in other categories
No ranking in other categories
 

Mindshare comparison

As of July 2026, in the Endpoint Detection and Response (EDR) category, the mindshare of Cortex XDR by Palo Alto Networks is 3.6%, down from 3.9% compared to the previous year. The mindshare of Cisco Secure Endpoint is 1.3%, down from 1.6% compared to the previous year. The mindshare of Dell Trusted Device powered by CrowdStrike Falcon and Intel vPro is 0.4%, up from 0.0% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Endpoint Detection and Response (EDR) Mindshare Distribution
ProductMindshare (%)
Cortex XDR by Palo Alto Networks3.6%
Cisco Secure Endpoint1.3%
Dell Trusted Device powered by CrowdStrike Falcon and Intel vPro0.4%
Other94.7%
Endpoint Detection and Response (EDR)
 

Featured Reviews

ABHISHEK_SINGH - PeerSpot reviewer
Senior Process Expert at A.P. Moller - Maersk
Gained full visibility and streamlined threat detection through behavior-based insights and AI integration
Initially, we got to have a lot of false positives when we onboarded, but nowadays it's quite smooth. We have fine-tuned our security policies and allowed different levels of policies to get rid of those false positives. Currently, we are getting a fairly good amount of incidents that are not false positives or benign, but actionable items. The process is streamlined. In the initial days, the operations used to get involved in a lot of benign and other activities, but now the process is streamlined. We are leveraging the auto-detection and remediation plans. The operations teams are now more involved in other business roles as well, not just looking into the logs and fetching out what's happening there. They have fixed a lot of things. Initially, they didn't have IAC code drift detection, cloud posture management, or security posture management, but they have those now. They purchased different vendors and did a merger with that. They have now Prisma Cloud that gets integrated and now they are working with Cortex Cloud. Everything that was negative has now been addressed, and the product altogether looks to be in a very better and mature shape now. Currently, it's more or less detecting the workloads with AI-based best practices. Since most organizations are consuming AI agents and other things, we are looking forward to seeing what other feature enhancements Palo Alto can support in that.
JavedHashmi - PeerSpot reviewer
Chief Technology Officer at Future Point Technologies
Reliable threat protection is achieved while integration and analysis capabilities need refinement
Cisco Secure Endpoint is very good in machine learning, which allows it to secure offline contents even if not connected to the internet. We haven't encountered a single breach after it's deployed. It controls USB devices and has a separate antivirus solution called Tetra, providing security even for real-time, day-zero attacks through its strong Talos threat intelligence platform.
Tom Cichosz - PeerSpot reviewer
System Engineer at a healthcare company with 501-1,000 employees
Integrated device protection has secured bios-level threats and preserves user performance
The features of Dell Trusted Device powered by CrowdStrike Falcon and Intel vPro that I appreciate most are the real-time analytics in CrowdStrike and the ability to detect anomalies in the computer at the BIOS level, which is excellent to have. You would not normally see that with standard antivirus or regular security software; it would not integrate with the BIOS, but the fact that it does means that you get an enhanced layer of protection with CrowdStrike, more than you would see with another product. My perception of chip-level recovery is that it is a beautiful thing. Normally you are dependent on the OS for recovery actions, but in this case, you do not need that because it happens at the chip level. It happens out of band, before the OS is booted; you can make recovery choices, and that is extremely important. You always need an out of band solution, and on end user devices especially, if that is possible, that changes the whole landscape. Normally out of band is only for server-level devices, but this changes that; this adds an extra layer of protection that you would not normally see. I view the critical feature of Advanced Memory Scanning by CrowdStrike as incredible; the fact that it can actively scan memory without any performance hit on the PC or server devices is remarkable. Previously, in years before 2020, we would see a performance hit from this type of software, but the fact that CrowdStrike integrated with Dell does not cause any performance hit on the end user or the overall performance of the computer is an amazing thing. It is probably the best performing antivirus software I have actually seen.

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"Cortex XDR by Palo Alto Networks's ability to block sophisticated threats in real time is quite good and is on par with SentinelOne's."
"The stability of this product is very good."
"On a scale from one to ten, I would rate Cortex XDR by Palo Alto Networks a nine."
"The most valuable features of this product are the management capabilities, which allow an IT organization to get quite a good picture of attempted cyber attacks, and its out-of-the-box investigation capabilities."
"I like the centralized console and the predictive analysis it does of malware. It is very stable and also scalable."
"I don't have to do much monitoring with it; I don't have to have anybody manually looking at this, it gives us reports, and it lets us know if something needs to be addressed, and we can easily address it."
"But overall, when we speak about security and protection, they are one of the top providers."
"Has great threat detection capabilities."
"Cisco AMP is the broadest, most integrated security platform that connects the breadth of Cisco's integrated security portfolio and the customer's infrastructure for a consistent experience."
"Definitely, the best feature for Cisco Secure Endpoint is the integration with Talos. On the backend, Talos checks all the signatures, all the malware, and for any attacks going on around the world... Because Secure Endpoint has a connection to it, we get protected by it right then and there."
"In the 18 months that we've had AMP, there has not been malicious activity on an endpoint that we weren't able to resolve immediately."
"Cisco Secure Endpoint enables us to stop a threat before it spreads across our system, which is a massive improvement for us as we couldn't follow threats and respond to them as rapidly when we used other solutions."
"We have been very happy with it."
"The most valuable feature of the solution is its technical support."
"One of the best features of AMP is its cloud feature; it doesn't matter where the device is in regards to whether it's inside or outside of your network environment, especially right now when everybody's remote and taking their laptops home, because you don't have to be VPNed into the environment for AMP to work and AMP will work anywhere in the world as long as it has an Internet connection, giving you protection and reporting so no matter where the device is, AMP has still got coverage on it and is protecting it while you still have the ability to manage and remediate things, making the cloud feature the magic bullet and what makes the solution a valuable tool as far as I'm concerned."
"If you are looking for deep security and malware for your endpoint users and network then I would recommend Cisco AMP."
"The fact that CrowdStrike and Dell have gotten to a point where it has no user effect, or virtually zero user effect, is absolutely game-changing."
"If you are considering protecting your Dell endpoints and your Dell infrastructure with CrowdStrike, it is a no-brainer."
"Dell Trusted Device powered by CrowdStrike Falcon and Intel vPro has helped us immensely."
"The features of Dell Trusted Device powered by CrowdStrike Falcon and Intel vPro that I like the most include its ability to recover quickly."
 

Cons

"The solution should add unwanted malicious hash values to a block list so that whenever the action is triggered, it will automatically prevent the malicious content."
"It tends to do 99.9% of things. The only thing I'd like is single sign-on authentication into their cloud platform so that my users can be properly authenticated against it."
"It's not an ideal choice for smaller businesses, as you need a minimum of 200 endpoints to even use the solution at all."
"It is an enterprise-level solution. Its price could be less expensive."
"Limited remote connection."
"In reporting they should have a customizable dashboard due to the fact that C-level people don't like reporting to the IT department. They prefer to have a real-time dashboard. That kind of dashboard needs to have various customizations."
"In an upcoming release, the solution could improve by proving hard disk encryption. If it could support this it would be a complete solution."
"We had a problem with getting our older endpoints up to date, but their newest updates have been really good. I've been pleased with it in terms of what our needs are. It's doing what we want it to do."
"The reporting and analytics areas of the solution need to be improved."
"The integration of the Cisco products for security could be better in the sense that not everything is integrated, and they aren't working together. In addition, not all products are multi-tenant, so you can't separate different customer environments from each other, which makes it a little bit hard for a managed service provider to deliver services to the customers."
"The user interface is dull."
"It does not include encryption and decryption of local file shares."
"The thing I hate the most, which they have not fixed, is when it creates duplicate entries within a console."
"Cisco Meraki could benefit from AI assistance or intelligent assistance features. Compared to competitors like Juniper, Cisco Meraki currently lacks a digital network assistant, which is an area Cisco is reportedly working on."
"An easier way to do deduplication of machines, or be alerted to the fact that there's more than one instance of a machine, would be useful... That way you could get a more accurate device count, so you're not having an inflated number."
"We have had some problems with updates not playing nice with our environment. This is important, because if there is a new version, we need to test it thoroughly before it goes into production. We cannot just say, "There's a new version. It's not going to give us any problems." With the complexity of the solution using multiple engines for multiple tasks, it can sometimes cause performance issues on our endpoints. Therefore, we need to test it before we deploy. That takes one to three days before we can be certain that the new version plays nice with our environment."
"The room for improvement that I would recommend to make it a 10 is that it might be beneficial to scale out to include servers."
"The biggest thing I would do to improve Dell Trusted Device powered by CrowdStrike Falcon and Intel vPro is add that agentic AI to it at the highest level and allow it to start to deploy and do things ourselves."
 

Pricing and Cost Advice

"The price of the solution is high for the license and in general."
"I feel it is fairly priced."
"We pay about $50,000 USD per year for a bundle that includes Cortex XDR."
"The solution has one subscription for endpoint protection and one subscription for detection and response. The two licenses combined give you the BRO version."
"It is cost-effective compared to similar solutions. It fits for the small businesses through to the big businesses."
"If one wishes to work with another team or large number of users at a future point, he must purchase a license for them."
"Cortex XDR's pricing is ok."
"Very costly product."
"The solution is highly affordable; I believe we pay $2 or $3 per endpoint. It's significantly cheaper than the competitors on the market."
"Our company was very happy with the price of Cisco AMP. It was about a third of what we were paying for System Center Endpoint Protection."
"The price is very fair to the customer."
"It can always be cheaper."
"Whenever you are doing the licensing process, I would highly advise to look at what other Cisco solutions you have in your organization, then evaluate if an Enterprise Agreement is the best way to go. In our case, it was the best way to go. Since we had so many other Cisco products, we were able to tie those in. We were actually able to get several Cisco security solutions for less than if we had bought three or four Cisco security solutions independently or ad hoc."
"Because we do see the value of what it's bringing, I think they have priced it well."
"There is also the Cisco annual subscription plus my management time in terms of what I do with the Cisco product. I spend a minimal amount of time on it though, just rolling out updates as they need them and monitoring the console a couple of times a day to ensure nothing is out of control. Cost-wise, we are quite happy with it."
"The visibility that we have into the endpoint and the forensics that we're able to collect give us value for the price. This is not an overly expensive solution, considering all the things that are provided. You get great performance and value for the cost."
Information not available
report
Use our free recommendation engine to learn which Endpoint Detection and Response (EDR) solutions are best for your needs.
902,988 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Construction Company
12%
Financial Services Firm
11%
Manufacturing Company
10%
Comms Service Provider
9%
Manufacturing Company
10%
Financial Services Firm
8%
Construction Company
7%
Government
7%
Construction Company
15%
Comms Service Provider
11%
Hospitality Company
11%
Recreational Facilities/Services Company
9%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
By reviewers
Company SizeCount
Small Business46
Midsize Enterprise21
Large Enterprise53
By reviewers
Company SizeCount
Small Business21
Midsize Enterprise15
Large Enterprise21
No data available
 

Questions from the Community

Cortex XDR by Palo Alto vs. Sentinel One
Cortex XDR by Palo Alto vs. SentinelOne SentinelOne offers very detailed specifics with regard to risks or attacks. ...
Comparing CrowdStrike Falcon to Cortex XDR (Palo Alto)
Cortex XDR by Palo Alto vs. CrowdStrike Falcon Both Cortex XDR and Crowd Strike Falcon offer cloud-based solutions th...
How is Cortex XDR compared with Microsoft Defender?
Microsoft Defender for Endpoint is a cloud-delivered endpoint security solution. The tool reduces the attack surface,...
What is your experience regarding pricing and costs for Cisco Secure Endpoint?
Cisco is aggressive in pricing, making it competitive and sometimes even cheaper than other good products like CrowdS...
What needs improvement with Cisco Secure Endpoint?
Cisco Secure Endpoint lacks features like DLP which other vendors offer. XDR is new, so integration capabilities with...
What is your primary use case for Cisco Secure Endpoint?
We deployed Cisco Secure Endpoint for our customers two to three years back. The use case was to secure their endpoin...
What is your experience regarding pricing and costs for Dell Trusted Device powered by CrowdStrike Falcon and Intel vPro?
My experience with the pricing, setup cost, and licensing of the platform has been fairly simple. Licensing has been ...
What needs improvement with Dell Trusted Device powered by CrowdStrike Falcon and Intel vPro?
The room for improvement that I would recommend to make it a 10 is that it might be beneficial to scale out to includ...
What is your primary use case for Dell Trusted Device powered by CrowdStrike Falcon and Intel vPro?
Our main use cases for Dell Trusted Device powered by CrowdStrike Falcon and Intel vPro involve having a pretty expan...
 

Also Known As

Cyvera, Cortex XDR, Palo Alto Networks Traps
Cisco AMP for Endpoints
No data available
 

Overview

 

Sample Customers

CBI Health Group, University Honda, VakifBank
Heritage Bank, Mobile County Schools, NHL University, Thunder Bay Regional, Yokogawa Electric, Sam Houston State University, First Financial Bank
Information Not Available
Find out what your peers are saying about Cisco Secure Endpoint vs. Dell Trusted Device powered by CrowdStrike Falcon and Intel vPro and other solutions. Updated: June 2026.
902,988 professionals have used our research since 2012.