No more typing reviews! Try our Samantha, our new voice AI agent.

DFLabs IncMan SOAR vs McAfee ePolicy Orchestrator comparison

DFLabs and McAfee are both solutions in the Security Orchestration Automation and Response (SOAR) category. DFLabs is ranked #30, while McAfee is ranked #17 with an average rating of 8.8. DFLabs holds a 0.5% mindshare in SOAR, compared to McAfee’s 1.3% mindshare. Additionally, 82% of McAfee users are willing to recommend the solution.
Sponsored
Torq
Read 7 Torq reviews
  • 2,280 Views
  • 2,120 Comparison Views
100% willing to recommend
DFLabs IncMan SOAR
Read 1 DFLabs IncMan SOAR review
  • 263 Views
  • 221 Comparison Views
0% willing to recommend
McAfee ePolicy Orchestrator
Read 43 McAfee ePolicy Orchestrator reviews
  • 1,656 Views
  • 1,126 Comparison Views
82% willing to recommend
 

Comparison Buyer's Guide

Download the report
Executive Summary
We performed a comparison between DFLabs IncMan SOAR and McAfee ePolicy Orchestrator based on real PeerSpot user reviews.

Find out what your peers are saying about Microsoft, Splunk, Palo Alto Networks and others in Security Orchestration Automation and Response (SOAR).

DOWNLOAD THE COMPLETE REPORT
To learn more, read our detailed Security Orchestration Automation and Response (SOAR) Report (Updated: March 2026).
Buyer's Guide
Security Orchestration Automation and Response (SOAR)
March 2026
Download the complete report
Helped 885,837 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Categories and Ranking

Torq
Sponsored
Ranking in Security Orchestration Automation and Response (SOAR)
5th
Average Rating
8.6
Reviews Sentiment
6.6
Number of Reviews
7
Ranking in other categories
AI-SOC (3rd), AI-Powered Security Automation (2nd)
DFLabs IncMan SOAR
Ranking in Security Orchestration Automation and Response (SOAR)
30th
Average Rating
0.0
Reviews Sentiment
7.3
Number of Reviews
1
Ranking in other categories
No ranking in other categories
McAfee ePolicy Orchestrator
Ranking in Security Orchestration Automation and Response (SOAR)
17th
Average Rating
8.0
Reviews Sentiment
6.5
Number of Reviews
43
Ranking in other categories
No ranking in other categories
 

Mindshare comparison

As of April 2026, in the Security Orchestration Automation and Response (SOAR) category, the mindshare of Torq is 4.2%, down from 5.1% compared to the previous year. The mindshare of DFLabs IncMan SOAR is 0.5%, up from 0.2% compared to the previous year. The mindshare of McAfee ePolicy Orchestrator is 1.3%, up from 0.5% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Security Orchestration Automation and Response (SOAR) Mindshare Distribution
ProductMindshare (%)
Torq4.2%
McAfee ePolicy Orchestrator1.3%
DFLabs IncMan SOAR0.5%
Other94.0%
Security Orchestration Automation and Response (SOAR)
 

Featured Reviews

Nimrod Vardi - PeerSpot reviewer
Nimrod Vardi
Global IT Director at OpenWeb
Automation workflows have transformed our IT, enabling secure just-in-time access control
We work with them quite often, so we have a direct line regarding areas in Torq that have room for improvement. If we have a feature request, we can request it. I do not have anything in mind at the moment. We were a design partner for a short while, so we feel that they listen and that users of the system have an impact on the way the system is designed for the better. They have a new community, which is something that I personally suggested years ago. There are many people like me in different places and they might have already built the workflow that I need. Having the option to share workflows or to jump on a thread and say I have this need, did anyone ever build a workflow for it, is amazing. Someone would jump in and say yes, sure, here, take this workflow. I think this is an amazing thing and I really hope that the community will come alive because I think this is really powerful. This is something that I already suggested and it did happen eventually, and I am quite happy with it. I do not have any specific feature in mind that I have a need for at the moment.
Read full review
reviewer1137807 - PeerSpot reviewer
reviewer1137807
Technical Team Manager at a tech services company with 11-50 employees
Protects an organization from the threat of a data breach or cyberattack
The vendors themselves will actually help with any customizations a client may require. Many vendors don't offer this service or if they do, they charge very high rates. Their vendors are very helpful; they will walk you through the whole Playbook until you have a good grasp of the product. Also, in terms of integration, it is very seamless compared to other cybersecurity products. They also have good features such as multi-tenancy. Every user would like to see these kinds of fanciful features on a robust interface. It actually makes the user feel like they are in a sci-fi movie.
Read full review
Binu Haneef - PeerSpot reviewer
Binu Haneef
System Administrator at Sky News Arabia
Comprehensive security management enabled through efficient integration and automation
McAfee ePolicy Orchestrator helps automate routine security tasks. We created customized automation. For example, when we did not have an EDR or XDR solution, we created tasks exclusively for detection and response automation and automatic segregation of infected PCs. The ability to customize the dashboard in McAfee ePolicy Orchestrator helps us significantly. The main feature is automation for auto-segmentation and segregation. As we are in an AI era, McAfee can focus on AI tools. Instead of putting manual effort into each security-related task, it can implement more advanced automation using AI. This enhancement could improve cybersecurity significantly. Regarding the reporting area in McAfee ePolicy Orchestrator, we are satisfied with what we currently have. Our cybersecurity team needs customized reports beyond the default ones. We have more than 20 separate reports for identifying threats, managing, and understanding the security posture of our company and assets.
Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"Any request that comes in, regardless of how complex it is, I can accomplish it with Torq."
"Using that one piece of AI, we auto-closed 511 cases in quarter four alone."
"Torq's unified platform approach to AI, SOAR, automation, and case management is superior compared to my experience managing multiple point solutions."
"As an analyst, it has demonstrated potential to reduce workforce requirements and time needed for related activities."
"Once I started to use the system and I saw the potential, it changed all of our work in IT."
"Since we started working with Torq, I am handling much fewer alerts, it is becoming really easy for me to handle an alert, I have all the information that I need, I do not need to connect to different vendors to receive this information, and the main thing I got from Torq is time, which now helps me to build another automated system and learn."
"What I appreciate most about Torq is that it is an essential part of our system."
"If I review about 100 vendors that I might work with, Torq is definitely in the top five that gave me personally investment back, just because every bit of effort I put into Torq eventually became a workflow that gave it back to me."
"The vendors themselves will actually help with any customizations a client may require, and their vendors are very helpful; they will walk you through the whole Playbook until you have a good grasp of the product."
"The vendors themselves will actually help with any customizations a client may require"
"What I like the most is the ability to manage centrally, to manage the various devices, the platform, and the endpoint, all from one console."
"I really like the DLP feature because it gives IT clarity, it doesn't have database issues, and it hasn't crashed or given us problems in the two years we've been using it."
"It is a highly scalable solution. Scalability-wise, I rate the solution a ten out of ten."
"We implemented data transfer protection, which allows transfer in one direction only. Users can copy from the PC to the USB but not from the USB to the PC. That way, if someone is carrying a virus on a USB, it will not be transferred to the PC."
"In this cyberworld, McAfee is the best software to protect our machines."
"McAfee is helping us to clean all of the viruses from the machines, protecting our desktops from the latest threats."
"The most valuable features of McAfee ePolicy Orchestrator are the easy-to-use console, and lots of reports, such as customized reports and inventory reports. Additionally, overall the centralized management is very good where you can see the compliance levels and inventory."
"The central management console is the solution's most valuable aspect."
More McAfee ePolicy Orchestrator pros
 

Cons

"The initial deployment of Torq was not easy."
"We have MCP that we are working with our cloud security platform, and we wanted to connect this MCP to the case management."
"It was able to capture data but was unable to differentiate between the agent hostname we are using and the hostname that resides on the back end of the Internet."
"Even now, we have workflows that are in production that use AI steps and I get different results, making it unusable to some degree."
"Regarding stability, I have noticed some lagging, crashing, and downtime, which is one of my largest gripes."
"Regarding the pricing of Torq, I would say it is expensive."
"The initial deployment of Torq was not easy."
"Because we are located in Singapore, there is a time-zone difference with customer support. The support is not 24/7 so we have to work with them on their schedule for deployment and customization, which is usually in the afternoon, Singapore time."
"The support is not 24/7."
"It's a little bit complex to configure it, but when you start using it, it is much easier."
"There are some issues we are having with updating our Windows server. So we need to contact support or access our support portal."
"There needs to be support for Mac computers. Currently, McAfee does not work on iOS."
"They have to do something to make the solution more resilient or recoverable from power failure events, which may include creating their own database."
"The solution sometimes has some false positives on IP addresses, from the web control aspect of the product. This needs to be improved."
"McAfee's technical support is a bit of a letdown. Also, there's no good support within our region."
"The solution sometimes has some false positives on connections from the web control aspect of the product."
"In terms of what could be improved, I would say the impact of the agent on the endpoint's performance - the resources it takes."
More McAfee ePolicy Orchestrator cons
 

Pricing and Cost Advice

Information not available
Information not available
"It's an expensive solution"
"It is attractively priced. It is a fraction of what we're going to pay for CrowdStrike or SentinelOne, but it only has a fraction of the capabilities as well."
"This solution is priced in the mid-range."
"McAfee ePolicy Orchestrator is not an expensive solution."
"McAfee tries to package different things into different products, then sell them as different products with different licenses. They just split everything up into multiple things. That's just their sales pitch and how they do it."
"McAfee ePolicy Orchestrator is a cheaply priced product, meaning it is not expensive since McAfee provides a free version of ePO, which includes phone support as well."
"For large enterprise companies, the price should be alright, but for small businesses, the uptake might be slow because, for these clients, the price doesn't look very attractive."
"On a scale from one to ten, where one is cheap, and ten is expensive, I rate the solution's pricing a three out of ten."
More McAfee ePolicy Orchestrator pricing and cost advice
report
See which vendors are best for you
Use our free recommendation engine to learn which Security Orchestration Automation and Response (SOAR) solutions are best for your needs.
See recommendations
885,837 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Financial Services Firm
13%
Construction Company
11%
Comms Service Provider
8%
Manufacturing Company
8%
No data available
Financial Services Firm
9%
Manufacturing Company
8%
Performing Arts
7%
Marketing Services Firm
7%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
By reviewers
Company SizeCount
Midsize Enterprise3
Large Enterprise4
No data available
By reviewers
Company SizeCount
Small Business13
Midsize Enterprise11
Large Enterprise19
 

Questions from the Community

What needs improvement with Torq?
This is exactly what we discussed two days ago with the Torq team. We told them where we want to see improvements. Fo...
See all answers
What is your primary use case for Torq?
I use Torq as my case management and alert system. Working as a SOC analyst, the first thing I do every morning is ge...
See all answers
What advice do you have for others considering Torq?
I would definitely recommend Torq. I have no doubt, really. When we looked for another vendor, Torq really answered a...
See all answers
Ask a question
Earn 20 points
Which is better - Mcafee's MVision ePO or ePolicy Orchestrator?
Our organization ran comparison tests to determine whether Mcafee's MVision ePO or ePolicy Orchestrator network secur...
See all answers
What do you like most about McAfee MVISION ePO?
McAfee ePolicy Orchestrator's performance is good.
See all answers
What is your experience regarding pricing and costs for McAfee MVISION ePO?
It's an expensive solution.
See all answers
 

Comparisons

Tines vs Torq Logo
Tines vs Torq
Compared 30% of the time
Splunk SOAR vs Torq Logo
Splunk SOAR vs Torq
Compared 15% of the time
Blink Ops vs Torq Logo
Blink Ops vs Torq
Compared 13% of the time
Palo Alto Networks Cortex XSOAR vs Torq Logo
Palo Alto Networks Cortex XSOAR vs Torq
Compared 9% of the time
Swimlane vs Torq Logo
Swimlane vs Torq
Compared 8% of the time
More Torq Competitors
Palo Alto Networks Cortex XSOAR vs DFLabs IncMan SOAR Logo
Palo Alto Networks Cortex XSOAR vs DFLabs IncMan SOAR
Compared 61% of the time
IBM Resilient vs DFLabs IncMan SOAR Logo
IBM Resilient vs DFLabs IncMan SOAR
Compared 39% of the time
More DFLabs IncMan SOAR Competitors
Splunk SOAR vs McAfee ePolicy Orchestrator Logo
Splunk SOAR vs McAfee ePolicy Orchestrator
Compared 17% of the time
Palo Alto Networks Cortex XSOAR vs McAfee ePolicy Orchestrator Logo
Palo Alto Networks Cortex XSOAR vs McAfee ePolicy Orchestrator
Compared 16% of the time
GTB Technologies Inspector vs McAfee ePolicy Orchestrator Logo
GTB Technologies Inspector vs McAfee ePolicy Orchestrator
Compared 10% of the time
Symantec Data Loss Prevention vs McAfee ePolicy Orchestrator Logo
Symantec Data Loss Prevention vs McAfee ePolicy Orchestrator
Compared 9% of the time
Elastic Security vs McAfee ePolicy Orchestrator Logo
Elastic Security vs McAfee ePolicy Orchestrator
Compared 9% of the time
More McAfee ePolicy Orchestrator Competitors
 

Product Reports

Buyer's Guide
Torq
March 2026
Torq reportDownload Torq product report
Buyer's Guide
Security Orchestration Automation and Response (SOAR)
March 2026
DFLabs IncMan SOAR reportDownload DFLabs IncMan SOAR product report
Buyer's Guide
McAfee ePolicy Orchestrator
March 2026
McAfee ePolicy Orchestrator reportDownload McAfee ePolicy Orchestrator product report
 

Also Known As

No data available
DFLabs IncMan Incident Response
McAfee ePO, ePolicy Orchestrator, Intel Security ePolicy Orchestrator, McAfee MVISION ePO
 

Overview

Torq is the enterprise AI SOC solution that effectively combines adaptive insights and automation to handle critical threats efficiently. It manages threat lifecycles, swiftly moving from triage to response, ensuring effective risk management.

Torq is designed to streamline security operations by aggregating telemetry across your security stack. It investigates significant risks and manages threats from triage to containment and remediation. This AI-driven tool enhances the capabilities of your SecOps team, allowing them to achieve more impactful results without introducing complicated processes.

What are the key features of Torq?
  • Adaptive Agentic Insights: Provides real-time threat intelligence tailored to specific security challenges.
  • Automation: Automates responses to security incidents, minimizing manual intervention requirements.
  • Threat Lifecycle Management: Comprehensive handling of threats from detection to remediation.
  • Telemetry Aggregation: Integrates data across platforms for a unified security overview.
Why consider Torq based on reviews?
  • Efficiency: Users notice significant reductions in time spent managing threats.
  • Risk Reduction: Enhanced ability to identify and address critical threats promptly.
  • Resource Optimization: Allows teams to allocate effort to other critical tasks by reducing manual security operations.
  • Scalability: Adaptable to meet the demands of growing or changing infrastructures.

In industries like finance and healthcare, Torq shows effectiveness by adapting to specific risk scenarios often encountered in these fields. Its integration with existing infrastructures makes it a valuable asset for maintaining stringent security standards, essential for protecting critical data and operations in diverse high-stakes environments.

Torq

DFLabs' Security Orchestration, Automation and Response (SOAR) platform, IncMan SOAR, is designed for SOCs, CSIRTs and MSSPs to automate, orchestrate and measure security operations and incident response processes and tasks, all from within one single, intuitive platform. By integrating security tools, fusing intelligence, sharing knowledge and implementing seamless workflows, IncMan SOAR enables every security incident to be detected, responded to, and remediated in the fastest possible time frame.

DFLabs IncMan SOAR is the only Security Orchestration, Automation and Response (SOAR) platform capable of full incident lifecycle automation, that includes built-in, automated threat intelligence gathering, risk assessment, triage and notification, context enrichment, hunting and investigating, threat containment and more. This feature rich, unique and scalable SOAR platform provides context to security incidents, automates actions, orchestrates response to activities, while enabling full reporting and measurement functionality across all stakeholders.

DFLabs covers the entire spectrum of security orchestration, automation and response components as outlined by Gartner, with a unique combination of features and capabilities, driven through continuous improvement and innovation. IncMan SOAR is the only platform to offer full incident response lifecycle management with machine learning and threat hunting. Acting as a force multiplier, it enables security teams to do more with less, empowering security analysts, while ensuring organizations stay one step ahead of any potential threat.

Automate. Orchestrate. Measure.

IncMan SOAR provides three critical functions as an enabler to your security program. Automation and orchestration which in turn enables response, as well as measurement.

Automate

Augment analysts by automating common, repetitive and menial tasks driven by machine learning for faster response to all alerts.

Orchestrate

Establish repeatable, enforceable, measurable and effective incident response workflows, orchestrating your security tool set into one seamless response process.

Measure

Measure, benchmark and optimize security operations and incident response activities and performance from one intuitive and collaborative platform.

Seamlessly Integrate and Orchestrate Your Tools Together as One.

Improve efficiencies by enabling your security analysts to access and manage all tools, technologies and processes from one intuitive platform. IncMan SOAR supports hundreds of 3rd party security technologies via QIC, API, CEF, Syslog and Email, with a constantly growing list of certified bidirectional integrations and Open Integration Framework for custom integrations.

Dramatically reduce the mean time to detection, response and remediation of all potential security incidents, ensuring no alert goes untouched.

See IncMan SOAR in Action.

DFLabs
McAfee ePolicy Orchestrator (McAfee ePO) is the most advanced, extensible, and scalable centralized security management software in the industry. Unifying security management through an open platform, McAfee ePO makes risk and compliance management simpler and more successful for organizations of all sizes.
McAfee
 

Sample Customers

Information Not Available
University of Advancing Technology, Cybersecurity Ventures
Brelje & Race, Cognizant, Sutherland Global Services, Eagle Rock Energy, Arab National Bank, Bank Central Asia, Kleberg Bank, Leading Mexican Bank, SF Police Credit Union, Macquarie Telecom, Seagate Technology, Blackburn & Darwen Council, California Department of Corrections & Rehabilitation, IRCEP, Major U.S. State Government, State of Alaska, State of Colorado, Cemex, Deutsche Edelstahlwerke
Buyer's Guide
Security Orchestration Automation and Response (SOAR)
March 2026
Download Free Report
Find out what your peers are saying about Microsoft, Splunk, Palo Alto Networks and others in Security Orchestration Automation and Response (SOAR). Updated: March 2026.
DOWNLOAD NOW
885,837 professionals have used our research since 2012.

We monitor all Security Orchestration Automation and Response (SOAR) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.