CyberArk Endpoint Privilege Manager vs Symantec Privileged Access Manager comparison

CyberArk and Broadcom are both solutions in the Privileged Access Management (PAM) category. CyberArk is ranked #4 with an average rating of 8.8, while Broadcom is ranked #17 with an average rating of 8.5. CyberArk holds a 2.6% mindshare in PAM, compared to Broadcom’s 1.7% mindshare. Additionally, 86% of CyberArk users are willing to recommend the solution, compared to 85% of Broadcom users who would recommend it.

CyberArk Endpoint Privilege...

Read 38 CyberArk Endpoint Privilege Manager reviews

3,967 Views
1,190 Comparison Views

86% willing to recommend

Symantec Privileged Access ...

Read 53 Symantec Privileged Access Manager reviews

1,258 Views
981 Comparison Views

85% willing to recommend

CyberArk Endpoint Privilege...

Symantec Privileged Access ...

Comparison Buyer's Guide

Download the report

Executive SummaryUpdated on Oct 6, 2024

CyberArk Endpoint Privilege Manager and Symantec Privileged Access Manager compete in the privileged access management space. CyberArk shows an advantage in customer support and pricing, while Symantec leads with its robust features.

Features: CyberArk Endpoint Privilege Manager features strong integration capabilities, efficient privileged access controls, and competitive pricing. Symantec Privileged Access Manager offers comprehensive security features, scalability for larger organizations, and reliable performance gains.

Room for Improvement: CyberArk could enhance its reporting tools, simplify policy configurations, and improve initial deployment process. Symantec may improve the initial deployment process, technical documentation, and its user interface.

Ease of Deployment and Customer Service: CyberArk users cite a straightforward deployment process and responsive support team. Symantec offers detailed assistance with its more complex deployment procedure although some report slower response times.

Pricing and ROI: CyberArk offers competitive pricing with faster ROI for small to medium businesses. Symantec's higher upfront costs are justified by its reliability and potential long-term returns for larger enterprises.

To learn more, read our detailed CyberArk Endpoint Privilege Manager vs. Symantec Privileged Access Manager Report (Updated: December 2025).

Buyer's Guide

CyberArk Endpoint Privilege Manager vs. Symantec Privileged Access Manager

December 2025

Download the complete report

Helped 881,082 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Categories and Ranking

CyberArk Endpoint Privilege...

Ranking in Privileged Access Management (PAM)

4th

Average Rating

8.2

Reviews Sentiment

6.8

Number of Reviews

Ranking in other categories

Endpoint Compliance (4th), Anti-Malware Tools (5th), Application Control (3rd), Ransomware Protection (5th)

Symantec Privileged Access ...

Ranking in Privileged Access Management (PAM)

17th

Average Rating

7.8

Reviews Sentiment

7.0

Number of Reviews

Ranking in other categories

No ranking in other categories

Mindshare comparison

As of January 2026, in the Privileged Access Management (PAM) category, the mindshare of CyberArk Endpoint Privilege Manager is 2.6%, down from 3.6% compared to the previous year. The mindshare of Symantec Privileged Access Manager is 1.7%, up from 1.4% compared to the previous year. It is calculated based on PeerSpot user engagement data.

Privileged Access Management (PAM) Market Share Distribution
Product	Market Share (%)
CyberArk Endpoint Privilege Manager	2.6%
Symantec Privileged Access Manager	1.7%
Other	95.7%

Privileged Access Management (PAM)

Featured Reviews

Sumit Chavan

Lead Consultant at a tech vendor with 501-1,000 employees

Helps secure the infrastructure and control users with admin rights

There are many features that are currently missing. A customization option is required for certain policies. For instance, if we need to stop PowerShell scripting, we have to create a different policy for that. Being able to create a sub-level policy within a top-level policy would be good. Currently, no user-based policy option is available inside the EPM console. We can only create computer-based policies. The database is available, but there is a drawback in not being able to create local groups on the EPM console. We only have to depend on Active Directory. This limits infrastructure security as we depend on the Active Directory team to manage user groups. If they remove any users, we lose control. If we could create groups locally and block them or set specific policies, we would have more control. Local endpoint management is missing from the EPM site. Moreover, there is an issue with policies not running as expected when we make enhancements. We have to find multiple ways to whitelist applications or enhance policies.

Read full review

Muzi Lubisi

Senior technical Consultant at CA Africa

Secure management of sensitive servers and seamless applications with direct linking

The credential injection feature is highly valued, particularly for RDP sessions. A majority of customers use it for RDP, and a couple for Linux servers. The broader capabilities, including access to multiple systems, web-based applications, and clustering, have never posed an issue. The threat analytics aspect is also a robust feature that analyzes all pertinent information.

Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Pros

"The most valuable feature of CyberArk Endpoint Privilege Manager is its high performance, it's the best identity security platform. The security is good. It's easy to showcase the feature and capabilities and compare it with other competitors. It competes well with other solutions. Additionally, it is a complete solution."

"The product is stable."

"The product is very flexible"

"CyberArk Endpoint Privilege Manager (EPM) 's most valuable feature is its ability to manage user application privileges and protect against ransomware attacks by controlling access to specific files and applications."

"We did immediately begin to see results when using CyberArk."

"The solution's technical support is good."

"Their customer support was excellent."

"The solution allows me to give access and privileges to each user individually"

More CyberArk Endpoint Privilege Manager pros

"For me, it is the robust API which is the most valuable feature. This allows for low maintenance costs and allows applications to automatically connect. This is great to automate security of the DevOps pipeline for shared secrets across environments. Also, being on Linux and a virtual appliance is great."

"It will provide us with more security."

"Password Management and Session Recording. The simplicity and ease that it is to be up and running out-of-the-box is very much appreciated."

"Stability is solid as a rock."

"Transparent login for users of privileged IDs (Linux, Windows). This prevents sharing of the password because it is never seen."

"It is simple to implement and is suitable for medium to large-scale enterprises."

"We know we can scale up with what we have, and we probably will not need to buy any further appliances down the road."

"You can do A2A integration. You can have your own script, which can then run outside of PA to retrieve the password and perform other tasks."

More Symantec Privileged Access Manager pros

Cons

"The product needs a streamlined user interface; improvements to the user interface can enhance user experience and make the solution more intuitive to navigate."

"Compared to other tools like Linux, this solution isn't as user-friendly."

"The installation process is pretty difficult."

"Despite newer versions and functionalities, CyberArk Endpoint Privilege Manager lacks sufficient knowledgeable support staff, resulting in longer wait times for assistance."

"The product's threat protection and defense capabilities need enhancement."

"Performance could be better. We have a couple of problems with CyberArk right now. One of the problems is performance in our environment. Support also takes a long time to respond. If the user already has local admin rights, then I can't collect any events in the console from this device. There are also some options in CyberArk that are not working properly, and are not helpful in this case. I can't collect any information to create a proper policy for the device. I have to investigate everything manually, or even disable the local admin from the device. I can collect the events only after this, and it's very time consuming. In my case, it's a waste of resources."

"My recommendation for improvement is to add functionality for when users request access to an application. There's a pop-up UI, but it's not very customizable. I suggest creating a UI where we can write scripts or use SDKs to enhance it. This could automatically create tickets in a system like ServiceNow when users request an application. If a manager approves, we could automatically push policies to those users."

"The turnaround time of the support team is an area of concern where improvements are required."

More CyberArk Endpoint Privilege Manager cons

"Technical support was good when CA handled it. After Broadcom took over, it's not as good."

"They should include some assignments in the test environment to explore the product's features."

"What I hope happens with the new product CA PAM is to keep all the useful features that exist in PA, but what I’ve noticed with many new products is the UI gets polished but systems lags stability and performance or it adds additional complexity instead of simplifying the user experience."

"The response time for support could be faster. Some features should be added: cloud-based, VPN-less, more secure, and it should be adjusted in a hybrid environment."

"The setup is complex."

"The support for other remote assistance tools would be excellent. Free included tools in Windows (Remote Assist) and Microsoft SCCM Configuration Manager (ConMgr Remote Control) allow companies to reduce the amount of RDP connections and expand the usage of the tools are frequently used by companies to provide technical support for remote assistance."

"It's difficult to locate the reports, there are limits on what reports can be run from the GUI, and the report formats are lacking."

"Bring more technology into the portfolio and being able to collapse those products into a much more integrated way."

More Symantec Privileged Access Manager cons

Pricing and Cost Advice

"It's not at the lower end of the market. I think the price is reasonable considering the quality it delivers. It is a top-notch solution at a fair price point."

"We pay about $17 per user."

"The cost for CyberArk is very high."

"licensing for this solution is based on the number of APV (privileged users), and the number of sessions that you want to record."

"CyberArk Endpoint Privilege Manager is slightly expensive, but costs can be negotiated to become more competitive."

"I believe it's quite a reasonably priced solution. It's not very common to use CyberArk because it's a niche solution, but customers who are willing to control administrative accounts are willing to pay this money."

"The tool is a bit pricey compared to its competitors. My company does work with competitors, but I don't have hands-on experience with other software. I've just done some comparisons."

"The professional services for one eight-hour day would be $1,800."

More CyberArk Endpoint Privilege Manager pricing and cost advice

"It is reasonably priced."

"The prices are not low, but one can ask for a discount. It’s not the cheapest PAM solution."

"I would prefer better licensing options for the 20-100 users we have at a given time."

"The version we are using is affordable compared to BeyondTrust, which is maybe three to four times as expensive, but it depends on the features."

"Don’t go with an agent model. Don’t go with a model that has you buying a thousand different parts. Go with PAM that gives you everything, or you’ll just be paying costs of implementing another tool that PAM would have just given you up front."

"Appliances are relatively cheap, don’t skimp. Make sure you have redundancy, high availability, and enough appliances to manage the concurrent workload."

"Cost-wise, CA was better compared to others in the market. "

"The licensing is simple and scalable."

More Symantec Privileged Access Manager pricing and cost advice

See which vendors are best for you

Use our free recommendation engine to learn which Privileged Access Management (PAM) solutions are best for your needs.

See recommendations

881,082 professionals have used our research since 2012.

Top Industries

By visitors reading reviews

Financial Services Firm

14%

Manufacturing Company

11%

Computer Software Company

10%

Government

Computer Software Company

13%

Comms Service Provider

13%

Government

Performing Arts

Company Size

By reviewers

Large Enterprise

Midsize Enterprise

Small Business

By reviewers
Company Size	Count
Small Business	17
Midsize Enterprise	9
Large Enterprise	18

By reviewers
Company Size	Count
Small Business	14
Midsize Enterprise	6
Large Enterprise	30

Questions from the Community

Looking for recommendations and a pros/cons template for software to detect insider threats

This is an inside-out --- outside-in --- inside-in question, as an insider can be an outsider as well. There is no short answer other than a blend of a PAM tool with Behavioral Analytics and Endpo...

See all answers

What do you like most about CyberArk Endpoint Privilege Manager?

The most valuable feature of the solution is its performance.

See all answers

What is your experience regarding pricing and costs for CyberArk Endpoint Privilege Manager?

I believe it's quite a reasonably priced solution. It's not very common to use CyberArk because it's a niche solution, but customers who are willing to control administrative accounts are willing t...

See all answers

What is your experience regarding pricing and costs for Symantec Privileged Access Manager?

Due to the nature of the solution, it is hard to gauge, but compared to competitors, the pricing is very good. I would rate it as an eight and a half out of ten.

See all answers

What needs improvement with Symantec Privileged Access Manager?

Recent releases need improvement in webpage management. For instance, navigating through a webpage that acts like a wizard, where I proceed to the next page and enter more information, is not handl...

See all answers

What is your primary use case for Symantec Privileged Access Manager?

With the customers that I have so far, I help them broker RDP sessions to sensitive servers, particularly those that manage aspects like physical access. I have also done it for backend databases, ...

See all answers

Comparisons

CrowdStrike Falcon vs CyberArk Endpoint Privilege Manager

Compared 11% of the time

BeyondTrust Endpoint Privilege Management vs CyberArk Endpoint Privilege Manager

Compared 9% of the time

CyberArk Privileged Access Manager vs CyberArk Endpoint Privilege Manager

Compared 8% of the time

Microsoft Defender for Endpoint vs CyberArk Endpoint Privilege Manager

Compared 8% of the time

Tanium vs CyberArk Endpoint Privilege Manager

Compared 5% of the time

More CyberArk Endpoint Privilege Manager Competitors

CyberArk Privileged Access Manager vs Symantec Privileged Access Manager

Compared 25% of the time

Cisco Identity Services Engine (ISE) vs Symantec Privileged Access Manager

Compared 20% of the time

ARCON Privileged Access Management vs Symantec Privileged Access Manager

Compared 13% of the time

BeyondTrust Endpoint Privilege Management vs Symantec Privileged Access Manager

Compared 12% of the time

Delinea Secret Server vs Symantec Privileged Access Manager

Compared 12% of the time

More Symantec Privileged Access Manager Competitors

Product Reports

Buyer's Guide

CyberArk Endpoint Privilege Manager

January 2026

CyberArk Endpoint Privilege Manager report

Download CyberArk Endpoint Privilege Manager product report

Buyer's Guide

Symantec Privileged Access Manager

January 2026

Symantec Privileged Access Manager report

Download Symantec Privileged Access Manager product report

Also Known As

Viewfinity

CA PAM, Xceedium Xsuite, CA Privileged Access Manager

Overview

CyberArk Endpoint Privilege Manager, a critical and foundational endpoint control addresses the underlying weaknesses of endpoint defenses against a privileged attacker and helps enterprises defend against these attacks through removing local admin rights, enforcing least privilege, and implementing foundational endpoint security controls across all Windows, macOS and Linux endpoints from hybrid to cloud environments.

Click here for a free 30 day trial: CyberArk Endpoint Privilege Manager free trial

CyberArk

CA Privileged Access Manager is a simple-to-deploy, automated, proven solution for privileged access management in physical, virtual and cloud environments. It enhances security by protecting sensitive administrative credentials such as root and administrator passwords, controlling privileged user access, proactively enforcing policies and monitoring and recording privileged user activity across all IT resources. It includes CA PAM Server Control (previously CA Privileged Identity Manager) for fine-grained protection of critical servers

Broadcom

Sample Customers

Information Not Available

NEOVERA, Telesis, eSoft

Buyer's Guide

CyberArk Endpoint Privilege Manager vs. Symantec Privileged Access Manager

December 2025

Free Report: CyberArk Endpoint Privilege Manager vs. Symantec Privileged Access Manager

Find out what your peers are saying about CyberArk Endpoint Privilege Manager vs. Symantec Privileged Access Manager and other solutions. Updated: December 2025.

DOWNLOAD NOW

881,082 professionals have used our research since 2012.

See our CyberArk Endpoint Privilege Manager vs. Symantec Privileged Access Manager report.

See our list of best Privileged Access Management (PAM) vendors.

We monitor all Privileged Access Management (PAM) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.