Try our new research platform with insights from 80,000+ expert users

Cybereason Endpoint Detection & Response vs Elastic Security comparison

Cybereason and Elastic are both solutions in the Endpoint Detection and Response (EDR) category. Cybereason is ranked #24 with an average rating of 8.2, while Elastic is ranked #17 with an average rating of 7.6. Cybereason holds a 0.9% mindshare in EDR, compared to Elastic’s 2.3% mindshare. Additionally, 85% of Cybereason users are willing to recommend the solution, compared to 86% of Elastic users who would recommend it.
Cybereason Endpoint Detecti...
Read 22 Cybereason Endpoint Detection & Response reviews
  • 4,416 Views
  • 2,561 Comparison Views
85% willing to recommend
Elastic Security
Read 65 Elastic Security reviews
  • 12,063 Views
  • 3,619 Comparison Views
86% willing to recommend
 

Comparison Buyer's Guide

Download the report
Executive SummaryUpdated on Sep 9, 2024

Cybereason Endpoint Detection & Response and Elastic Security are two leading solutions for endpoint protection. Cybereason excels in specific features, while Elastic often offers superior overall value based on user reviews.

Features: Cybereason Endpoint Detection & Response is known for advanced threat detection and response capabilities, automated investigation features, and user-friendly design. Elastic Security is powerful with its integration with the ELK stack, extensive data analytics options, and customizability. Cybereason stands out with its advanced threat intelligence. Elastic shines due to flexibility and scalability, especially in large-scale deployments.

Room for Improvement: Cybereason Endpoint Detection & Response could improve reporting features and integration with third-party tools. Elastic Security users suggest a more streamlined setup process and better customer support documentation. Cybereason's feedback focuses on feature expansion, while Elastic's feedback is about usability and support.

Ease of Deployment and Customer Service: Cybereason Endpoint Detection & Response is commended for its straightforward deployment process and responsive customer support. Elastic Security's deployment can be more complex, but it offers robust support once set up. Cybereason stands out for ease of deployment and immediate support. Elastic offers deeper resources for users navigating a more challenging setup.

Pricing and ROI: Cybereason Endpoint Detection & Response users find the pricing fair relative to its value but sometimes costly for smaller organizations. Elastic Security is praised for offering good value due to its open-source components, leading to a lower setup cost and favorable ROI. Cybereason is valued for feature richness. Elastic is recognized for long-term cost efficiency.

DOWNLOAD THE COMPLETE REPORT
To learn more, read our detailed Cybereason Endpoint Detection & Response vs. Elastic Security Report (Updated: July 2025).
Buyer's Guide
Cybereason Endpoint Detection & Response vs. Elastic Security
July 2025
Download the complete report
Helped 864,053 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

ROI

Sentiment score
1.0
Cybereason enhances cybersecurity by blocking malicious connections, improving threat management, reducing response time, and delivering ROI within 24 months.
Sentiment score
5.9
Elastic Security is cost-effective, offers significant financial benefits, and is community-friendly, though premium support receives some criticism.
No quotes available
For more quotes and insights, download the Cybereason Endpoint Detection & Response report
It does not require hefty security budgets and can be deployed for enterprise security effectively.
For more quotes and insights, download the Elastic Security report
 

Customer Service

Sentiment score
5.0
Cybereason support is praised for competence and responsiveness, but users desire faster issue escalation and more timely solutions.
Sentiment score
6.4
Feedback on Elastic Security support is mixed, with community resources praised but technical support often inconsistent and improved communication needed.
Nine is great actually since we have people available when we ask, and they know what they are talking about.
if you're a partner with them, they provide fairly good support through a concept called invest support.
For more quotes and insights, download the Cybereason Endpoint Detection & Response report
Most of the time when my team encounters issues, they receive responses within 24 hours.
Providing necessary assistance efficiently.
For more quotes and insights, download the Elastic Security report
reviewer2642739 - PeerSpot reviewerIvan Burke - PeerSpot reviewerSyedAli17 - PeerSpot reviewerreviewer2181228 - PeerSpot reviewer
 

Scalability Issues

Sentiment score
6.2
Cybereason EDR efficiently scales for large organizations, offering seamless deployment and robust performance for millions of endpoints.
Sentiment score
7.3
Elastic Security scales effectively across business sizes, though infrastructure, licensing, and resource management adjustments may be necessary.
No quotes available
For more quotes and insights, download the Cybereason Endpoint Detection & Response report
It allows us to think about specific use cases, such as gathering malicious IPs in a single view and analyzing threats based on geolocation.
For more quotes and insights, download the Elastic Security report
 

Stability Issues

Sentiment score
5.5
<p>Cybereason Endpoint Detection &amp; Response is stable and reliable, though integration issues and cloud downtime concern some users.</p>
Sentiment score
7.7
Elastic Security is stable and reliable, but big data challenges require proper configuration for optimal performance and care during upgrades.
We inform Cybereason about any issues, and they work on a new solution, either with an update or a custom fix in anticipation of the next update.
For more quotes and insights, download the Cybereason Endpoint Detection & Response report
In terms of stability, I would rate Elastic a solid eight out of ten.
For more quotes and insights, download the Elastic Security report
 

Room For Improvement

Cybereason EDR needs improvements in support, integration, reporting, and stability, with user challenges in Linux and PowerShell.
Users seek better authentication, automation, machine learning, intuitive design, scalability, integration, training resources, and pricing transparency in Elastic Security.
No quotes available
For more quotes and insights, download the Cybereason Endpoint Detection & Response report
My security testing team continuously reports vulnerabilities, and we have to fix and update the versions frequently.
CrowdStrike and Defender have more established threat intelligence integration due to having a larger client base.
Elastic Security consumes a lot of resources, requiring a substantial deployment setup.
For more quotes and insights, download the Elastic Security report
SyedAli17 - PeerSpot reviewerreviewer2181228 - PeerSpot reviewerreviewer2405523 - PeerSpot reviewer
 

Setup Cost

Cybereason offers competitive pricing based on endpoints, appreciated for no extra fees, though some features may fall short.
Elastic Security offers a competitive pricing model with a free core version, suitable for small to medium enterprises.
No quotes available
For more quotes and insights, download the Cybereason Endpoint Detection & Response report
The pricing is reasonable, especially for Small Medium Enterprises (SMEs), making it a viable option for businesses building their security infrastructure.
This is beneficial for SMEs as they do not need extensive budgets for security solutions.
Elastic Security is considered cost-effective, especially at lower EPS levels.
For more quotes and insights, download the Elastic Security report
reviewer2181228 - PeerSpot reviewerSyedAli17 - PeerSpot reviewerreviewer2405523 - PeerSpot reviewer
 

Valuable Features

Cybereason EDR uses AI for real-time threat detection, offering agility, automation, and compatibility across multiple operating systems.
Elastic Security impresses with indexing, visualization, search, AI, scalability, open-source nature, and free, customizable dashboards.
What I find most valuable is the clarity of the platform.
For more quotes and insights, download the Cybereason Endpoint Detection & Response report
Elastic Security is as flexible and configurable as Microsoft Sentinel.
Elastic Security offers advanced features such as machine learning and integration with ChatGPT.
We require rapid processing speed for alerts and event data, and Elastic Security is very efficient at handling this level of data.
For more quotes and insights, download the Elastic Security report
reviewer2642739 - PeerSpot reviewerreviewer2181228 - PeerSpot reviewerreviewer2405523 - PeerSpot reviewerSyedAli17 - PeerSpot reviewer
 

Categories and Ranking

Cybereason Endpoint Detecti...
Ranking in Endpoint Detection and Response (EDR)
24th
Average Rating
7.8
Reviews Sentiment
5.6
Number of Reviews
22
Ranking in other categories
Endpoint Protection Platform (EPP) (35th)
Elastic Security
Ranking in Endpoint Detection and Response (EDR)
17th
Average Rating
7.8
Reviews Sentiment
6.8
Number of Reviews
65
Ranking in other categories
Log Management (11th), Security Information and Event Management (SIEM) (5th), Security Orchestration Automation and Response (SOAR) (8th), Extended Detection and Response (XDR) (10th)
 

Mindshare comparison

As of July 2025, in the Endpoint Detection and Response (EDR) category, the mindshare of Cybereason Endpoint Detection & Response is 0.9%, down from 1.1% compared to the previous year. The mindshare of Elastic Security is 2.3%, up from 2.2% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Endpoint Detection and Response (EDR)
 

Featured Reviews

Ivan Burke - PeerSpot reviewer
Offers useful threat hunting and response capabilities but struggles to justify cost for smaller deployments
I mostly work with incident response, so I work with a bunch of them interchangeably, but mostly with the EDR components; I also get involved with some of the XDR components, especially for the cloud. Regarding analysis features, such as deep behavioral detection, I do use it sometimes; I usually don't use the automated version of it, as I prefer threat hunting directly, depending on if the season is available. I know some of them have pretty good analytics engines, but I tend to do the threat hunting on my own. I manage incident response for a bunch of companies, so some of them have Cybereason Endpoint Detection & Response integrated into Sentinel, some into Fortinet, and others into various tools. When considering cost-effectiveness, their pricing structure works such that if you're a large organization with more than a thousand endpoints to deploy to, then Cybereason Endpoint Detection & Response is worthwhile. But for anything less than 300, it's too expensive; obviously, the more you buy, the better the price, making it cheaper for you. Cybereason Endpoint Detection & Response best fits enterprise-level businesses such as huge corporations; however, we are in the process of removing it from many of our endpoint clients because it's not really showing enough value for them at the moment. We're trying to see how we can improve it with some of our clients, but at the moment, it's struggling compared to other EDR solutions that we have deployed. On a scale of one to ten, I rate Cybereason Endpoint Detection & Response a six.
Read full review
SyedAli17 - PeerSpot reviewer
Centralized monitoring improves security posture through rapid data processing
The processing part of Elastic Security ( /products/elastic-security-reviews ) is very interesting for us since we handle almost 7,000 to 8,000 alerts per minute. We require rapid processing speed for alerts and event data, and Elastic Security is very efficient at handling this level of data. Additionally, Elastic Security helps improve the security posture of Pakistan through centralized visibility and real-time processing.
Read full review
report
See which vendors are best for you
Use our free recommendation engine to learn which Endpoint Detection and Response (EDR) solutions are best for your needs.
See recommendations
864,053 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Computer Software Company
15%
Financial Services Firm
11%
Manufacturing Company
8%
Government
7%
Computer Software Company
16%
Government
10%
Comms Service Provider
8%
Financial Services Firm
7%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
 

Questions from the Community

What is your experience regarding pricing and costs for Cybereason Endpoint Detection & Response?
Comparison with other products showed it be cheaper than some larger competitors. Set up cost for us were cheaper as we already had users experienced with the product in other business units. Initi...
See all answers
What is your primary use case for Cybereason Endpoint Detection & Response?
We use it to improve detection in the whole industrial sector. We are a big energy company. Across multiple endpoints, we deploy the EDR to secure all, improve detection, and also attempt to automa...
See all answers
What do you like most about Cybereason Endpoint Detection & Response?
The interface is user-friendly.
See all answers
Datadog vs ELK: which one is good in terms of performance, cost and efficiency?
With Datadog, we have near-live visibility across our entire platform. We have seen APM metrics impacted several times lately using the dashboards we have created with Datadog; they are very good c...
See all answers
What do you like most about Elastic Security?
Elastic provides the capability to index quickly due to the reverse indexes it offers. This data is crucial as it contains critical information. The reverse index allows fast data indexing because ...
See all answers
What is your experience regarding pricing and costs for Elastic Security?
I am satisfied with the pricing, setup cost, and licensing cost. It is a pure 10.
See all answers
 

Comparisons

Darktrace vs Cybereason Endpoint Detection & Response Logo
Darktrace vs Cybereason Endpoint Detection & Response
Compared 27% of the time
CrowdStrike Falcon vs Cybereason Endpoint Detection & Response Logo
CrowdStrike Falcon vs Cybereason Endpoint Detection & Response
Compared 13% of the time
SentinelOne Singularity Complete vs Cybereason Endpoint Detection & Response Logo
SentinelOne Singularity Complete vs Cybereason Endpoint Detection & Response
Compared 10% of the time
Microsoft Defender for Endpoint vs Cybereason Endpoint Detection & Response Logo
Microsoft Defender for Endpoint vs Cybereason Endpoint Detection & Response
Compared 9% of the time
ESET Inspect vs Cybereason Endpoint Detection & Response Logo
ESET Inspect vs Cybereason Endpoint Detection & Response
Compared 5% of the time
More Cybereason Endpoint Detection & Response Competitors
Wazuh vs Elastic Security Logo
Wazuh vs Elastic Security
Compared 17% of the time
IBM Security QRadar vs Elastic Security Logo
IBM Security QRadar vs Elastic Security
Compared 7% of the time
Splunk Enterprise Security vs Elastic Security Logo
Splunk Enterprise Security vs Elastic Security
Compared 7% of the time
CrowdStrike Falcon vs Elastic Security Logo
CrowdStrike Falcon vs Elastic Security
Compared 6% of the time
Microsoft Defender for Endpoint vs Elastic Security Logo
Microsoft Defender for Endpoint vs Elastic Security
Compared 6% of the time
More Elastic Security Competitors
 

Product Reports

Buyer's Guide
Cybereason Endpoint Detection & Response
July 2025
Cybereason Endpoint Detection & Response reportDownload Cybereason Endpoint Detection & Response product report
Buyer's Guide
Elastic Security
July 2025
Elastic Security reportDownload Elastic Security product report
 

Also Known As

Cybereason EDR, Cybereason Deep Detect & Respond
Elastic SIEM, ELK Logstash
 

Overview

Cybereason's Endpoint Detection and Response platform detects in real-time both signature and non-signature-based attacks and accelerates incident investigation and response. Cybereason connects together individual pieces of evidence to form a complete picture of a malicious operation.

Cybereason
Elastic Security is a robust, open-source security solution designed to offer integrated threat prevention, detection, and response capabilities across an organization's entire digital estate. Part of the Elastic Stack (which includes Elasticsearch, Logstash, and Kibana), Elastic Security leverages the power of search, analytics, and data aggregation to provide real-time insight into threats and vulnerabilities. It is a comprehensive platform that supports a wide range of security needs, from endpoint protection to cloud and network security, making it a versatile choice for organizations looking to enhance their cybersecurity posture.


Elastic Security combines the features of a security information and event management (SIEM) system with endpoint protection, allowing organizations to detect, investigate, and respond to threats in real time. This unified approach helps reduce complexity and improve the efficiency of security operations.

Additional offerings and benefits:

  • The platform utilizes advanced analytics, machine learning algorithms, and anomaly detection to identify threats and suspicious activities.
  • It offers extensive integration options with other tools and platforms, facilitating a more cohesive and comprehensive security ecosystem.
  • With Kibana, users gain access to powerful visualization tools and dashboards that provide real-time insight into security data.

Finally, Elastic Security benefits from a global community of users who contribute to its threat intelligence, helping to enhance its detection capabilities. This collaborative approach ensures that the solution remains on the cutting edge of cybersecurity, with up-to-date information on the latest threats and vulnerabilities.

Elastic
 

Sample Customers

Lockheed Martin, Spark Capital, DocuSign, Softbank Capital
Texas A&M, U.S. Air Force, NuScale Power, Martin's Point Health Care
Buyer's Guide
Cybereason Endpoint Detection & Response vs. Elastic Security
July 2025
Free Report: Cybereason Endpoint Detection & Response vs. Elastic Security
Find out what your peers are saying about Cybereason Endpoint Detection & Response vs. Elastic Security and other solutions. Updated: July 2025.
DOWNLOAD NOW
864,053 professionals have used our research since 2012.
See our Cybereason Endpoint Detection & Response vs. Elastic Security report.
See our list of best Endpoint Detection and Response (EDR) vendors.

We monitor all Endpoint Detection and Response (EDR) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.