


Code42 Incydr and CrowdStrike Falcon compete in the security solutions category. CrowdStrike Falcon is often considered superior due to its advanced feature set, despite a higher cost.
Features: Code42 Incydr includes data loss protection, real-time monitoring, and incident response. CrowdStrike Falcon offers AI-driven threat detection, extensive endpoint visibility, and proactive threat hunting.
Room for Improvement: Code42 Incydr could improve threat detection, and integration with other security tools, and enhance its functionalities. CrowdStrike Falcon could improve ease of use for new administrators, reduce false positives, and streamline its complex features.
Ease of Deployment and Customer Service: Code42 Incydr is noted for straightforward deployment and responsive customer support. CrowdStrike Falcon deployment is effective but more complex; customer service may require more technical expertise.
Pricing and ROI: Code42 Incydr is favored for cost-effectiveness and quicker ROI, especially for smaller organizations. CrowdStrike Falcon is viewed as offering better long-term ROI due to advanced capabilities, despite a higher cost, making it worth the investment for larger enterprises.
They appreciate the rich telemetry data from the solution, as it provides in-depth threat identification.
Cortex XDR by Palo Alto Networks helps to reduce my total cost of ownership significantly.
In Cortex XDR by Palo Alto Networks, most of the remediation is automated and the accuracy is quite good.
Based on our experience and industry benchmarks, I can say that we have seen around a thirty to forty percent improvement in time spent on endpoint security operations.
CrowdStrike Falcon saves time and offers good value for money, especially for enterprise companies, because it can stop breaches.
It's very easy to deploy without many IT admins, saving time.
Mimecast Insider Risk Management and Data Protection eases the workload through automation, through policies and rules that are pre-configured to handle complex tasks that would take hours and days for a team to initiate.
With Mimecast Insider Risk Management and Data Protection, our investigation time for high-risk incidents has been cut in half, and overall management now takes us less than four hours a week.
There have been scenarios where we have stopped users from sharing data, and that data has been successfully protected from leaving the premises, adding tremendous value for us.
The technical support from Palo Alto deserves a mark of ten because they reach out within an hour whenever assistance is needed.
There is no back and forth, and they know what we are asking for and come up with the best resolution for a solution.
If any of these services are missed, it becomes a problem in terms of support tickets, follow-up, or special configuration that needs to be done in the system.
On a scale of one to ten, I would rate the technical support as a 10 because they resolve many issues for us.
The CrowdStrike team is very efficient; I would rate them ten out of ten.
They could improve by initiating calls for high-priority cases instead of just opening tickets.
I would rate the customer support a perfect 10.
I have never had any problems with the customer support, and they are very responsive.
They resolve issues according to their established SLA.
You can onboard 10,000 endpoints in just hours, which demonstrates the excellent scalability of this product.
Activating the newly purchased licenses is instantaneous, allowing installations without adjustments since it's cloud-based.
Cortex XDR by Palo Alto Networks can be expanded anytime by purchasing another license without any issues related to scalability.
It has adequate coverage and is easy to deploy.
In terms of scalability, I find CrowdStrike to be stable, and I have not encountered any limitations with it.
There's no scalability limitation from CrowdStrike itself, as it just requires agent deployment.
The tool effectively detected both malware and spam, ensuring that only a few emails categorized as malware reached user mailboxes.
I would rate the scalability of Mimecast Insider Risk Management and Data Protection around 9.5, as it is highly scalable and widely used by many organizations, including large enterprises.
As the organization grows, Mimecast scales its cloud resources to handle increased demand.
Cortex remains fast and responsive, even with increasing data and alerts.
The thresholds we've seen on our firewall boxes at some instances reached 80% to 85%, but even at that level of utilization, we don't observe any latency or any issues reported with respect to accessing the application.
Cortex XDR by Palo Alto Networks can be trusted completely.
I have never seen instability in the CrowdStrike tool.
We are following N-1 versions across our environment, which is stable.
The biggest issue occurred when every computer worldwide experienced a blue screen.
Mimecast Insider Risk Management and Data Protection has been very stable in my experience.
Mimecast Insider Risk Management and Data Protection is stable in my experience.
Mimecast Insider Risk Management and Data Protection is definitely stable without fail based on my experience.
Improving reporting and dashboard customization, along with the addition of real-time and exportable reports, would help SOC teams greatly.
The inclusion of this feature would allow the application of DLP policies alongside antivirus policies via a single agent and console, making it more competitive as other OEMs often offer DLP solutions as part of their antivirus products.
If the per GB data could be provided at a certain level free of cost or at the same cost which the customer is taking for the entire bundle, that would be better.
Simplifying the querying process, such as using double quote queries or directly obtaining logs based on IP addresses or usernames, would be beneficial.
Another concern is CrowdStrike's GUI. It changes annually, making it hard to work and find options.
Threat prevention should be their first priority.
If Mimecast could provide more information about how they store the data and whether the agents are local agents or cloud-hosted agents, that would be of great help for the organizations to consider its AI capabilities while adhering to the compliance needs of a particular organization.
Mimecast Insider Risk Management and Data Protection should incorporate features to detect if a URL is malicious or generated by AI, especially since many attackers use scripts to bypass mail gateways.
The policies are solid, they work effectively, the implementation time is not very long, integrations with SIEM are quite easy, and the Glassbreak account is something I have tested.
The pricing on SentinelOne is far more reasonable and cheaper than Cortex XDR by Palo Alto Networks.
I would say it is definitely not a cheap product, considering how mature it is and how scalable all Palo Alto products are together.
Compared to CrowdStrike, which is very costly, and SentinelOne, which is also very costly, Cortex XDR by Palo Alto Networks is a medium cost-efficient solution.
For example, the basic plan starts at a certain price per endpoint per year, while advanced plans with more features cost higher.
It is expensive compared to SentinelOne, but as the market leader, it is worth it.
The licensing cost and setup costs are affordable.
The setup cost is a one-time investment that will stay with us forever.
After migrating, the cost is almost a 50% discount.
My experience with pricing, setup cost, and licensing indicates that pricing is always very expensive.
It incorporates AI for normal behavior detection, distinguishing unusual operations.
The product provides automation responses in case of a threat attack, severity assessments, centralized manageability, and comprehensive compliance features, resulting in reduced costs.
It includes machine learning to easily analyze data and detect complex threats across endpoints, networks, or clouds.
I can investigate by accessing the customer's host based on the RTR environment and utilize host search to know details for the past seven days, including logins, processes, file installations, malicious processes, and network connections.
The real-time analytics aspect of CrowdStrike performs well because we get all logs in real-time, with no delay, allowing us to take action immediately.
Being an EDR solution, it helps us identify attacks in real-time.
Mimecast Insider Risk Management and Data Protection has positively impacted our organization as it has helped us identify a lot of phishing emails and stopped many unauthorized disclosures or accidental disclosures of information.
The second thing is that the alert getting triggered is very fast. There is no latency issue that we have observed.
If you want to secure your communication through email, you have to deploy Mimecast Insider Risk Management and Data Protection in your network infrastructure.
| Product | Mindshare (%) |
|---|---|
| CrowdStrike Falcon | 9.3% |
| SentinelOne Singularity Endpoint | 5.9% |
| Wazuh | 4.9% |
| Other | 79.9% |
| Product | Mindshare (%) |
|---|---|
| Mimecast Insider Risk Management and Data Protection | 2.8% |
| Microsoft Purview Data Loss Prevention | 6.2% |
| Forcepoint Data Loss Prevention | 4.7% |
| Other | 86.3% |



| Company Size | Count |
|---|---|
| Small Business | 46 |
| Midsize Enterprise | 21 |
| Large Enterprise | 53 |
| Company Size | Count |
|---|---|
| Small Business | 55 |
| Midsize Enterprise | 33 |
| Large Enterprise | 63 |
| Company Size | Count |
|---|---|
| Small Business | 31 |
| Midsize Enterprise | 29 |
| Large Enterprise | 45 |
Cortex XDR by Palo Alto Networks provides advanced threat detection with AI-driven endpoint protection and seamless integration, ensuring multi-layered security and automatic threat response.
Cortex XDR is designed to safeguard endpoints against malware and suspicious activities. It offers advanced threat detection and response capabilities using behavioral analysis, AI, and machine learning. It seamlessly integrates with security infrastructures, providing endpoint security, firewall integration, and enhanced visibility in both cloud-based and on-premises environments.
What are the key features of Cortex XDR?Organizations in diverse sectors deploy Cortex XDR to protect against malware, leveraging its advanced threat detection capabilities. Its integration with existing security infrastructures appeals to those seeking comprehensive protection in both cloud and on-premises environments, providing enhanced visibility and threat intelligence.
CrowdStrike Falcon provides cutting-edge endpoint detection with automatic alerts, real-time monitoring, and seamless integration capabilities. Cloud-native architecture and AI-driven processes ensure scalable protection and efficient threat remediation.
CrowdStrike Falcon is recognized for its robust EDR and threat intelligence features that enhance security and streamline operations. Its lightweight agent minimizes system impact while offering real-time monitoring and detailed reporting. This platform uses cloud-native architecture for scalable, consistent protection, significantly reducing administrative demands. AI and machine learning empower precise threat hunting and behavioral analysis, which mitigates false positives and boosts cybersecurity efficiency. Users seek improvements in integration with other systems, reporting functions, and compatibility with specific operating systems. While the solution handles malware mitigation and threat response efficiently, suggestions for on-demand scanning, enhanced visibility, and better dashboard features are noted.
What are the key features of CrowdStrike Falcon?In technology sectors, CrowdStrike Falcon commonly supports endpoint protection and threat response initiatives, allowing companies to replace traditional antivirus systems with more advanced solutions. In finance, it secures sensitive data across multiple platforms, ensuring compliance. In healthcare, real-time security analysis protects patient data on critical devices like servers and laptops, utilizing AI to enhance cybersecurity defenses.
Mimecast Insider Risk Management and Data Protection streamlines automated backups and simplifies navigation with intuitive interfaces, supporting cross-platform environments and central administration.
Offering seamless integration of security and management tools, Mimecast Insider Risk Management and Data Protection enhances data protection while ensuring ease of use. With real-time data management and centralized administration, businesses experience minimized maintenance effort. Despite needing improvements in reporting, account management, and mobile integration, its robust risk scoring and lightweight clients offer substantial benefits. Designed for corporate and HIPAA-related data, it aids recovery from device losses and strengthens data loss prevention, integrating well into egress strategies.
What are the key features of Mimecast?Industries like healthcare and legal benefit from Mimecast's data recovery support for HIPAA-compliance and large-scale unstructured data management. The platform is adaptable for both on-premises and cloud-based deployments, essential for maintaining security in high-risk environments such as during legal investigations.
We monitor all Extended Detection and Response (XDR) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.