Try our new research platform with insights from 80,000+ expert users

CyberArk Endpoint Privilege Manager vs Symantec Privileged Access Manager comparison

CyberArk and Broadcom are both solutions in the Privileged Access Management (PAM) category. CyberArk is ranked #3 with an average rating of 8.7, while Broadcom is ranked #16 with an average rating of 8.5. CyberArk holds a 3.2% mindshare in PAM, compared to Broadcom’s 1.6% mindshare. Additionally, 86% of CyberArk users are willing to recommend the solution, compared to 85% of Broadcom users who would recommend it.
CyberArk Endpoint Privilege...
Read 38 CyberArk Endpoint Privilege Manager reviews
  • 3,748 Views
  • 1,162 Comparison Views
86% willing to recommend
Symantec Privileged Access ...
Read 53 Symantec Privileged Access Manager reviews
  • 1,026 Views
  • 780 Comparison Views
85% willing to recommend
 

Comparison Buyer's Guide

Download the report
Executive SummaryUpdated on Oct 6, 2024

CyberArk Endpoint Privilege Manager and Symantec Privileged Access Manager compete in the privileged access management space. CyberArk shows an advantage in customer support and pricing, while Symantec leads with its robust features.

Features: CyberArk Endpoint Privilege Manager features strong integration capabilities, efficient privileged access controls, and competitive pricing. Symantec Privileged Access Manager offers comprehensive security features, scalability for larger organizations, and reliable performance gains.

Room for Improvement: CyberArk could enhance its reporting tools, simplify policy configurations, and improve initial deployment process. Symantec may improve the initial deployment process, technical documentation, and its user interface.

Ease of Deployment and Customer Service: CyberArk users cite a straightforward deployment process and responsive support team. Symantec offers detailed assistance with its more complex deployment procedure although some report slower response times.

Pricing and ROI: CyberArk offers competitive pricing with faster ROI for small to medium businesses. Symantec's higher upfront costs are justified by its reliability and potential long-term returns for larger enterprises.

DOWNLOAD THE COMPLETE REPORT
To learn more, read our detailed CyberArk Endpoint Privilege Manager vs. Symantec Privileged Access Manager Report (Updated: September 2025).
Buyer's Guide
CyberArk Endpoint Privilege Manager vs. Symantec Privileged Access Manager
September 2025
Download the complete report
Helped 872,922 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Categories and Ranking

CyberArk Endpoint Privilege...
Ranking in Privileged Access Management (PAM)
3rd
Average Rating
8.2
Reviews Sentiment
6.8
Number of Reviews
38
Ranking in other categories
Endpoint Compliance (5th), Anti-Malware Tools (5th), Application Control (5th), Ransomware Protection (5th)
Symantec Privileged Access ...
Ranking in Privileged Access Management (PAM)
16th
Average Rating
7.8
Reviews Sentiment
7.0
Number of Reviews
53
Ranking in other categories
No ranking in other categories
 

Mindshare comparison

As of November 2025, in the Privileged Access Management (PAM) category, the mindshare of CyberArk Endpoint Privilege Manager is 3.2%, down from 3.6% compared to the previous year. The mindshare of Symantec Privileged Access Manager is 1.6%, up from 1.5% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Privileged Access Management (PAM) Market Share Distribution
ProductMarket Share (%)
CyberArk Endpoint Privilege Manager3.2%
Symantec Privileged Access Manager1.6%
Other95.2%
Privileged Access Management (PAM)
 

Featured Reviews

Sumit Chavan - PeerSpot reviewer
Helps secure the infrastructure and control users with admin rights
There are many features that are currently missing. A customization option is required for certain policies. For instance, if we need to stop PowerShell scripting, we have to create a different policy for that. Being able to create a sub-level policy within a top-level policy would be good. Currently, no user-based policy option is available inside the EPM console. We can only create computer-based policies. The database is available, but there is a drawback in not being able to create local groups on the EPM console. We only have to depend on Active Directory. This limits infrastructure security as we depend on the Active Directory team to manage user groups. If they remove any users, we lose control. If we could create groups locally and block them or set specific policies, we would have more control. Local endpoint management is missing from the EPM site. Moreover, there is an issue with policies not running as expected when we make enhancements. We have to find multiple ways to whitelist applications or enhance policies.
Read full review
Muzi Lubisi - PeerSpot reviewer
Secure management of sensitive servers and seamless applications with direct linking
The credential injection feature is highly valued, particularly for RDP sessions. A majority of customers use it for RDP, and a couple for Linux servers. The broader capabilities, including access to multiple systems, web-based applications, and clustering, have never posed an issue. The threat analytics aspect is also a robust feature that analyzes all pertinent information.
Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"The password rotation and the session recording are the most valuable features."
"It doesn't affect operational efficiency. If you set everything correctly, the user doesn't notice that it is in the background."
"What sets CyberArk apart is its continuous innovation, staying ahead of the competition."
"Our setup process is moving to the cloud, which is very good. It reduces complexity."
"The product is very flexible"
"The most valuable feature is the ability to control users with admin rights. Even if developers and senior folks maintain their admin rights, we can still manage their activities."
"CyberArk Endpoint Privilege Manager is very easy to manage, which I like. The solution also has a dashboard where you can see which software is suspicious, which I find valuable."
"It offers great performance."
More CyberArk Endpoint Privilege Manager pros
"It's easy to use and easy to configure."
"Stability is solid as a rock."
"You can do A2A integration. You can have your own script, which can then run outside of PA to retrieve the password and perform other tasks."
"Comprehensive coverage of the required features for the PAM solution."
"Transparent login for users of privileged IDs (Linux, Windows). This prevents sharing of the password because it is never seen."
"Symantec PAM is easier to deploy compared to its competitors, such as BeyondTrust."
"The interface is very friendly, colorful, and bold."
"We can check the activities in the server for fragile files and documents in case of any issues."
More Symantec Privileged Access Manager pros
 

Cons

"While CyberArk Endpoint Privilege Manager is a great tool, I believe the functionality could be wider. If it could work not only with permissions but also involve pure EDR tasks or User and Entity Behavior Analytics, it would be great."
"There are many features that are currently missing. A customization option is required for certain policies."
"The price of the solution should improve."
"CyberArk Endpoint Privilege Manager is a perfect solution, but CyberArk Endpoint Privilege Manager for Linux has many issues. Another area for improvement in CyberArk Endpoint Privilege Manager, specifically for Windows, is that there's no way for you to check credential theft from a text file, such as a notepad file."
"They need much better integration with Azure AD."
"Performance could be better. We have a couple of problems with CyberArk right now. One of the problems is performance in our environment. Support also takes a long time to respond. If the user already has local admin rights, then I can't collect any events in the console from this device. There are also some options in CyberArk that are not working properly, and are not helpful in this case. I can't collect any information to create a proper policy for the device. I have to investigate everything manually, or even disable the local admin from the device. I can collect the events only after this, and it's very time consuming. In my case, it's a waste of resources."
"The CyberArk team is working on a feature to identify devices without the Endpoint Privilege Manager running, which is currently missing."
"The main issues I experience are related to deployment, which requires dependency on other solutions like AD or SCCM. These tools need to be defined and synced with the client or agent and master, sometimes needing manual checks."
More CyberArk Endpoint Privilege Manager cons
"The management console could be improved."
"We have to do a lot of manual work to automate features."
"Broadcom has neglected product development since acquiring Symantec, and nothing major has been added to PAM."
"Recent releases need improvement in webpage management."
"The setup is complex."
"An improvement for this solution is that it should not be constantly based on user name and password. There should be a condition to edit and update your username."
"We experience stability issues after every patch upgrade. This is a place where CA needs to improve drastically."
"They should include some assignments in the test environment to explore the product's features."
More Symantec Privileged Access Manager cons
 

Pricing and Cost Advice

"I think that it was in the range of $200,000 that had to get approved."
"I believe it's quite a reasonably priced solution. It's not very common to use CyberArk because it's a niche solution, but customers who are willing to control administrative accounts are willing to pay this money."
"The solution's pricing is reasonable compared to other vendors' products."
"The price of CyberArk Endpoint Privilege Manager is expensive."
"licensing for this solution is based on the number of APV (privileged users), and the number of sessions that you want to record."
"CyberArk Endpoint Privilege Manager is slightly expensive, but costs can be negotiated to become more competitive."
"It is an expensive solution."
"The product's license is easy to procure."
More CyberArk Endpoint Privilege Manager pricing and cost advice
"The prices are not low, but one can ask for a discount. It’s not the cheapest PAM solution."
"It is reasonably priced."
"It is more expensive than other solutions on the market."
"They offer per-device, per-user, or monthly and yearly licensing models."
"Appliances are relatively cheap, don’t skimp. Make sure you have redundancy, high availability, and enough appliances to manage the concurrent workload."
"Cost-wise, CA was better compared to others in the market. ​"
"I would prefer better licensing options for the 20-100 users we have at a given time."
"Don’t go with an agent model. Don’t go with a model that has you buying a thousand different parts. Go with PAM that gives you everything, or you’ll just be paying costs of implementing another tool that PAM would have just given you up front."
More Symantec Privileged Access Manager pricing and cost advice
report
See which vendors are best for you
Use our free recommendation engine to learn which Privileged Access Management (PAM) solutions are best for your needs.
See recommendations
872,922 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Computer Software Company
14%
Financial Services Firm
14%
Manufacturing Company
11%
Government
7%
Comms Service Provider
17%
Computer Software Company
16%
Government
11%
Financial Services Firm
8%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
By reviewers
Company SizeCount
Small Business17
Midsize Enterprise9
Large Enterprise18
By reviewers
Company SizeCount
Small Business14
Midsize Enterprise6
Large Enterprise30
 

Questions from the Community

Looking for recommendations and a pros/cons template for software to detect insider threats
This is an inside-out --- outside-in --- inside-in question, as an insider can be an outsider as well. There is no short answer other than a blend of a PAM tool with Behavioral Analytics and Endpo...
See all answers
What do you like most about CyberArk Endpoint Privilege Manager?
The most valuable feature of the solution is its performance.
See all answers
What is your experience regarding pricing and costs for CyberArk Endpoint Privilege Manager?
I believe it's quite a reasonably priced solution. It's not very common to use CyberArk because it's a niche solution, but customers who are willing to control administrative accounts are willing t...
See all answers
What is your experience regarding pricing and costs for Symantec Privileged Access Manager?
Due to the nature of the solution, it is hard to gauge, but compared to competitors, the pricing is very good. I would rate it as an eight and a half out of ten.
See all answers
What needs improvement with Symantec Privileged Access Manager?
Recent releases need improvement in webpage management. For instance, navigating through a webpage that acts like a wizard, where I proceed to the next page and enter more information, is not handl...
See all answers
What is your primary use case for Symantec Privileged Access Manager?
With the customers that I have so far, I help them broker RDP sessions to sensitive servers, particularly those that manage aspects like physical access. I have also done it for backend databases, ...
See all answers
 

Comparisons

CrowdStrike Falcon vs CyberArk Endpoint Privilege Manager Logo
CrowdStrike Falcon vs CyberArk Endpoint Privilege Manager
Compared 15% of the time
BeyondTrust Endpoint Privilege Management vs CyberArk Endpoint Privilege Manager Logo
BeyondTrust Endpoint Privilege Management vs CyberArk Endpoint Privilege Manager
Compared 12% of the time
Microsoft Defender for Endpoint vs CyberArk Endpoint Privilege Manager Logo
Microsoft Defender for Endpoint vs CyberArk Endpoint Privilege Manager
Compared 12% of the time
CyberArk Privileged Access Manager vs CyberArk Endpoint Privilege Manager Logo
CyberArk Privileged Access Manager vs CyberArk Endpoint Privilege Manager
Compared 11% of the time
Tanium vs CyberArk Endpoint Privilege Manager Logo
Tanium vs CyberArk Endpoint Privilege Manager
Compared 4% of the time
More CyberArk Endpoint Privilege Manager Competitors
CyberArk Privileged Access Manager vs Symantec Privileged Access Manager Logo
CyberArk Privileged Access Manager vs Symantec Privileged Access Manager
Compared 26% of the time
Cisco Identity Services Engine (ISE) vs Symantec Privileged Access Manager Logo
Cisco Identity Services Engine (ISE) vs Symantec Privileged Access Manager
Compared 25% of the time
ARCON Privileged Access Management vs Symantec Privileged Access Manager Logo
ARCON Privileged Access Management vs Symantec Privileged Access Manager
Compared 16% of the time
BeyondTrust Endpoint Privilege Management vs Symantec Privileged Access Manager Logo
BeyondTrust Endpoint Privilege Management vs Symantec Privileged Access Manager
Compared 14% of the time
Delinea Secret Server vs Symantec Privileged Access Manager Logo
Delinea Secret Server vs Symantec Privileged Access Manager
Compared 13% of the time
More Symantec Privileged Access Manager Competitors
 

Product Reports

Buyer's Guide
CyberArk Endpoint Privilege Manager
November 2025
CyberArk Endpoint Privilege Manager reportDownload CyberArk Endpoint Privilege Manager product report
Buyer's Guide
Symantec Privileged Access Manager
October 2025
Symantec Privileged Access Manager reportDownload Symantec Privileged Access Manager product report
 

Also Known As

Viewfinity
CA PAM, Xceedium Xsuite, CA Privileged Access Manager
 

Overview

CyberArk Endpoint Privilege Manager, a critical and foundational endpoint control addresses the underlying weaknesses of endpoint defenses against a privileged attacker and helps enterprises defend against these attacks through removing local admin rights, enforcing least privilege, and implementing foundational endpoint security controls across all Windows, macOS and Linux endpoints from hybrid to cloud environments.

Click here for a free 30 day trial: CyberArk Endpoint Privilege Manager free trial

CyberArk

CA Privileged Access Manager is a simple-to-deploy, automated, proven solution for privileged access management in physical, virtual and cloud environments. It enhances security by protecting sensitive administrative credentials such as root and administrator passwords, controlling privileged user access, proactively enforcing policies and monitoring and recording privileged user activity across all IT resources.  It includes CA PAM Server Control (previously CA Privileged Identity Manager) for fine-grained protection of critical servers

Broadcom
 

Sample Customers

Information Not Available
NEOVERA, Telesis, eSoft
Buyer's Guide
CyberArk Endpoint Privilege Manager vs. Symantec Privileged Access Manager
September 2025
Free Report: CyberArk Endpoint Privilege Manager vs. Symantec Privileged Access Manager
Find out what your peers are saying about CyberArk Endpoint Privilege Manager vs. Symantec Privileged Access Manager and other solutions. Updated: September 2025.
DOWNLOAD NOW
872,922 professionals have used our research since 2012.
See our CyberArk Endpoint Privilege Manager vs. Symantec Privileged Access Manager report.
See our list of best Privileged Access Management (PAM) vendors.

We monitor all Privileged Access Management (PAM) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.