2021-08-16T06:26:00Z
RD
Director Information Technology at McCullough Robeertson Lawyers
  • 7
  • 162

What do you recommend to choose when replacing Symantec EDR: SentinelOne or CrowdStirke Falcon?

Hi community members, 

I work as the Director of Information Technology at a legal firm and I'm looking at replacing our Symantec EDR with either SentinelOne or CrowdStrike but can't seem to get any balanced views other than those from each vendor.  

Currently, I'm doing a POC on both and am interested to know: has anyone already gone through the same dilemma and which solution did you end up with?

Thanks!

6
PeerSpot user
6 Answers
BH
IT Security Coordinator at a healthcare company with 10,001+ employees
Real User
Top 5
2021-08-18T12:42:43Z
Aug 18, 2021

We RFI/POC'd them all. 


Sentinel One came out on top for every aspect of the requirements that we needed to fulfill from our architect.


That said, CrowdStrike is a good tool as well but I think ends up being more expensive. The best bang for the buck was S1.

Product comparison that may be of interest to you
SP
Managing Member at Pender & Associates
Real User
Top 5Leaderboard
2021-08-20T13:00:22Z
Aug 20, 2021

Hi Ron - SentinelOne without a doubt - it has not been breached.

SH
Administrator at Neuberger Gebäudeautomation GmbH
Real User
Top 5Leaderboard
2021-08-19T14:08:18Z
Aug 19, 2021

We are currently in the process of looking for "new tools" in regards to endpoint security. We use McAfee at the moment and we lean more towards S1.


But I am interested how your POCs go. Please come back with some insight!

reviewer1653270 - PeerSpot reviewer
User at tiberium
User
2021-08-19T13:52:25Z
Aug 19, 2021

It really depends what you want as outcomes, reporting integration with other security technologies. Be happy to discuss.

AH
Modern Workspace Solution (Technical Specialist - Managing Consultant) at GFI India
Consultant
2021-08-19T08:32:36Z
Aug 19, 2021

BetterI would suggest moving it to Microsoft Defender for Endpoint, which will help more in feature.

AH
Modern Workspace Solution (Technical Specialist - Managing Consultant) at GFI India
Consultant
Aug 19, 2021

@Evgeny Belenky, I have deployed Microsoft Defender for Endpoint to 10 -12 customers and 5 of them as a replacement of CrowdSrtike.

EDR is also very accurate and easy to analyze.

For Defender, we just need to have ASR Policies defined for Block, Warn, Audit and Enable for the endpoint to action detection. Microsoft Defender for Endpoint comes with a vulnerability assessment as well. This will help remediate and keep a clean environment to avoid security attacks.

Microsoft365 is this unified tool that we can integrate with Cloud app, security Device policy and alerts.

PeerSpot user
Eric Rise - PeerSpot reviewer
Network & Security Engineer at a healthcare company with 51-200 employees
Real User
Top 5
2021-08-18T17:58:59Z
Aug 18, 2021

S1 for sure. 


Disconnect Falcon from the internet and it looses its ability to do anything. Falcon is still a fine product, for EDR I'd go S1.

Find out what your peers are saying about CrowdStrike Falcon vs. SentinelOne Singularity Complete and other solutions. Updated: March 2023.
690,226 professionals have used our research since 2012.
Related Questions
Miriam Tover - PeerSpot reviewer
Service Delivery Manager at PeerSpot
Feb 17, 2023
Hi, We all know it's really hard to get good pricing and cost information. Please share what you can so you can help your peers.
2 out of 5 answers
YP
Senioor Engineer of System and Security at Connex Information Technologies
Oct 10, 2022
The pricing appears to be pretty affordable.
VM
Senior Manager INFOSEC AND Risk ASSESSMENT Engineering at a tech services company with 201-500 employees
Oct 17, 2022
When it came to the price compared to other solutions we tested, SentinelOne Singularity gave us the price of our expectations whereas CrowdStrike could not.
Julia Miller - PeerSpot reviewer
Community Director at PeerSpot
Feb 2, 2023
Please share with the community what you think needs improvement with SentinelOne Singularity. What are its weaknesses? What would you like to see changed in a future version?
2 out of 5 answers
YP
Senioor Engineer of System and Security at Connex Information Technologies
Oct 10, 2022
I would like to see category-based web filtering.
VM
Senior Manager INFOSEC AND Risk ASSESSMENT Engineering at a tech services company with 201-500 employees
Oct 17, 2022
The training for SentinelOne Singularity should be free. The solution has a lot of features but we do not know how to use them all. The moment someone purchases the solution they should contact them and provide them with a feature session on how to use the features. When we connect the solution to our patch management system they should explain to us how to do it. Additionally, it should be notifying me what patch is missing in my system.
Moderator
DS
Owner at David Strom Inc.
Product Comparisons
Download Free Report
Download our FREE report comparing CrowdStrike Falcon and SentinelOne Singularity Complete based on reviews, features, and more! Updated: March 2023.
DOWNLOAD NOW
690,226 professionals have used our research since 2012.