We have 1500 users and even with a reasonable sized support team we find SCCM difficult to manage. I haven't experienced the other solutions, but I suspect you will be better placed with an alternative to SCCM.

Having previously run a penetration testing company, I can tell you that the general feedback I have from professional hackers is that CrowdStrike Falcon does make their job a lot more difficult.  The "traditional" players in the endpoint protection market e.g. Trend Micro…

Look at the ACSC Essential Eight. If you can implement all of these then you will be highly unlikely to get hit by ransomware.