We compared CylancePROTECT and Microsoft Defender for Endpoint based on our user's reviews in several parameters.
In summary, CylancePROTECT is praised for its exceptional threat detection capabilities, customer service, positive ROI, and ease of use, while users highlight the need for improvements in detection capabilities and integration. On the other hand, Microsoft Defender for Endpoint stands out for its comprehensive threat protection, efficient system management, and incident response capabilities, with users also satisfied with customer service and ROI. Pricing, setup, and licensing are perceived positively for both products, with room for improvement in certain areas mentioned by users.
Features: CylancePROTECT stands out for its exceptional threat detection, zero-day attack prevention, easy implementation, low system impact, and comprehensive analytics. Microsoft Defender for Endpoint excels in comprehensive threat protection, real-time monitoring, efficient system management, user-friendly interface, seamless integration, and incident response capabilities.
Pricing and ROI: The setup cost for CylancePROTECT is described as minimal, straightforward, and hassle-free, while Microsoft Defender for Endpoint's setup process is deemed straightforward and doesn't require much effort., The ROI from CylancePROTECT was highly positive, delivering improved security measures, increased efficiency, and reduced costs. Users praised its user-friendly interface and fast deployment. On the other hand, Microsoft Defender for Endpoint was seen as positive with users expressing satisfaction with its performance, effectiveness in protecting against threats, ease of use, and real-time insights.
Room for Improvement: CylancePROTECT has room for improvement in detection capabilities, integration with other security tools, reporting and analytics functionalities, and user interface. Microsoft Defender for Endpoint also has areas for enhancement according to user feedback.
Deployment and customer support: Based on user feedback, the duration required to establish a new tech solution varies for both CylancePROTECT and Microsoft Defender for Endpoint. Some users for CylancePROTECT mentioned different timeframes for deployment and setup, while for Microsoft Defender for Endpoint, users also had different timeframes but emphasized the importance of context., The customer service for CylancePROTECT is praised for exceptional assistance, personalized guidance, and resolving issues promptly. Microsoft Defender for Endpoint provides helpful, efficient, and prompt support with effective solutions.
The summary above is based on 98 interviews we conducted recently with CylancePROTECT and Microsoft Defender for Endpoint users. To access the review's full transcripts, download our report.
"The price is low and quite competitive with others."
"NGAV and EDR features are outstanding."
"Fortinet FortiEDR made our clients feel secure and more at ease, knowing that they had an EDR solution that would close the gap in their security posture."
"he solution is an anti-malware product that integrates well with other vendor products such as firewalls, SIEM, etc. It captures threat intelligence and gives you better visibility. The product also has sandboxing features."
"Exceptions are easy to create and the interface is easy to follow with a nice appearance."
"Ability to get forensics details and also memory exfiltration."
"The solution was relatively easy to deploy."
"It notifies us if there's any suspicious file on any PC. If any execution or similar kind of thing is happening, it just alerts us. It doesn't only alert. It also blocks the execution until we allow it. We check whether the execution is legitimate or not, and then approve it or keep it blocked. This gives us a little bit of control over this mechanism. Fortinet FortiEDR is also very straightforward and easy to maintain."
"The most valuable features of CylancePROTECT are its powerful machine-learning capabilities and predictive intelligence."
"The most valuable feature of CylancePROTECT is the support."
"The most functional item that we use is the process to turn off the false flags that it causes."
"In most cases, the solution's ability to detect in the MITRE framework, and its ability to be able to detect attacks in any one of seven or eight different areas of the life cycle of an attack is very useful."
"Endpoints are protected in real-time without the need of a centralized server."
"It is extremely simple to manage and deploy."
"Even if an endpoint loses connection to the Internet, I know that endpoint is protected against 99.99% of the threats in the wild today."
"CylancePROTECT works on AI technology, is always up to date, and uses very few resources on your devices."
"We apply the DLP policies across a range of endpoints and it is very accurate when reporting vulnerabilities, including those in email attachments."
"It can reach our applications and PC activities in the cloud."
"The integration of Defender, Security Center, and the Microsoft compliance score, is the feature we use most to share the results with our clients and to create a roadmap together."
"The threat hunting service is very useful for a security professional."
"I like the process visibility. This ability to visualize how something was executed is valuable, and the fact that Defender ATP is also linked to the threat intelligence that they have is also valuable. So, even if you have something that doesn't have a conventional signature, the fact that you get this strange execution means that you can detect things that are normally not visible."
"The attack surface reduction rules are the most valuable. We're able to have unattended remediation actions when the solution works side by side with a local antivirus like Microsoft Defender or Kaspersky. The attack surface reduction rules help us to proactively block and stop threats."
"Defender works in the background monitoring the traffic for viruses."
"The whole bundle of the product, which is similar to other Microsoft products, is valuable. Ten years ago, you had third-party stuff for different things. You had one solution for email archiving and another third-party one for something else. Nowadays, Microsoft Office covers all the stuff that was formerly covered by third-party solutions. It is the same with antivirus. The functionality is just basic. You have the scanning, and then you also have a kind of cloud-based protection and reporting about your environment. With Microsoft Security Center, you have a complete overview of your environment. You know the software inventory, and you have security recommendations. You can not only see that the antivirus is up to date; you can also see where are the vulnerabilities in your system. Microsoft Security Center tells you where you have old, deprecated software and what kind of CVEs are addressed. It's really cool stuff."
"ZTNA can improve latency."
"They can include the automation for the realtime updates. We have a network infrastructure with remote sites. Whenever they send updates, they are not automated. We have to go into the console and push those updates. I wish it was more automated. The update file is currently around 31 MB. It could be smaller."
"FortiEDR can be improved by providing more detailed reporting."
"There's room for improvement in the quick response time and technical support for integration issues, especially when dealing with multiple vendors."
"Everything with Fortinet having to do with their cloud services. They need to invest more in their internal infrastructure that they are running in the cloud. One of the things I find with their cloud environment compared to others' is that they go cheap on the equipment. So it causes some performance degradation."
"The SIEM could be improved."
"I haven't seen the use of AI in the solution."
"The support needs improvement."
"rom my experience interacting with the primary or the central administrative console, it's quite complex. You would need a fair bit of technical experience to set it up, implement and maintain it. That would be one area for improvement."
"It needs real analysis of quarantined files. The EDR product isn't showing much right now."
"I would like to see them fix the alerting system so that the endpoint reporting is a bit more streamlined."
"The price for this EPP platform is expensive and could be improved."
"Reporting is an area with shortcomings in CylancePROTECT that needs to be improved."
"The company that sells us the licenses sometimes doesn't know how to do certain things."
"The solution’s technical support could be improved."
"The solution’s user interface could be improved."
"I would like to be able to set up any kind of protection I want in the firewall, any IP address or any number."
"We encountered some issues when we were trying to enable automatic updates from our group policy."
"It needs to improve the cybersecurity for lateral movements. For example, when a hacker tries to enter a machine, they try to get the password by doing a lateral movement."
"Microsoft Windows Defender doesn't have a game mode."
"Microsoft Defender for Endpoint is effective for validating work, but not ideal for investigations."
"It could be easier when it comes to managing exceptions."
"The solution could use improvement on the interface."
"There is a lot of information to take in, and the portals tend to change quickly due to the fast-paced nature of the industry."
More Microsoft Defender for Endpoint Pricing and Cost Advice →
CylancePROTECT is ranked 27th in Endpoint Protection Platform (EPP) with 39 reviews while Microsoft Defender for Endpoint is ranked 1st in Endpoint Protection Platform (EPP) with 182 reviews. CylancePROTECT is rated 8.0, while Microsoft Defender for Endpoint is rated 8.0. The top reviewer of CylancePROTECT writes "Ensures advanced AI-driven threat detection to provide robust endpoint security, effectively preventing both known and unknown threats with minimal impact on system performance". On the other hand, the top reviewer of Microsoft Defender for Endpoint writes "Eliminates the need to look at multiple dashboards by automatically providing one XDR dashboard to show the security score of each subscription". CylancePROTECT is most compared with CrowdStrike Falcon, SentinelOne Singularity Complete, Cortex XDR by Palo Alto Networks, Trend Micro Deep Security and Kaspersky Endpoint Security for Business, whereas Microsoft Defender for Endpoint is most compared with Symantec Endpoint Security, Intercept X Endpoint, CrowdStrike Falcon, SentinelOne Singularity Complete and Fortinet FortiClient. See our CylancePROTECT vs. Microsoft Defender for Endpoint report.
See our list of best Endpoint Protection Platform (EPP) vendors.
We monitor all Endpoint Protection Platform (EPP) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.