Carbon Black App Control is an application control product, used to lock down servers and critical systems, prevent unwanted changes and ensure continuous compliance with regulatory mandates.
N/A
Symantec Endpoint Security
Score 8.6 out of 10
N/A
Symantec Endpoint Protection is the company's flagship antivirus / endpoint security product.
$29.99
per year 100-249 devices
Pricing
Carbon Black App Control
Symantec Endpoint Security
Editions & Modules
No answers on this topic
Endpoint Security, Initial Hybrid Subscription License With Support
$29.99
1 year 100-249 devices
Symantec Endpoint Security Enterprise, Initial Hybrid Subscription License with Support
$34.99
1 year 1-99 devices
Endpoint Security, Initial Hybrid Subscription License With Support
$90.99
3 years 100-249 devices
Symantec Endpoint Security Enterprise, Initial Hybrid Subscription License with Support
$99.99
3 years 1-99 devices
Symantec Endpoint Security Complete, Initial Hybrid Subscription License with Support
More robust options and protections than Malware Bytes. Better overall detection and alerting to security issues. The overall ROI was better for us and we felt would also give us a stronger line of defense in our overall security strategy. We chose Symantec Endpoint because it …
Cb Protect is best suited somewhere where you want to maximize the lockdown of workstations. So moving past no local admin rights to blocking specific applications and peripherals. The idea would be to have a list of applications you want to run, and then anything else is not able to be used. As stated prior, if you have a very fluid environment where you are having all sorts of new applications installed frequently (I feel for you!!) this is still do-able, but it misses the general idea. I think especially in environments that are more sensitive to new applications, like banks, healthcare systems etc, this is a good fit. The ability to look at application levels, drift, unapproved software etc is very useful.
Symantec Endpoint Security is a well-rounded product that provides a significant amount of functionality and covers many of our endpoint needs without needing to resort to multiple vendors that might clash in unpredictable ways when ultimately deployed to the endpoints in our estate. The default policies are adequate and tuning these requires some time as with all similar EDR products but the product is flexible enough to allow very granular whitelisting/blacklisting which is great. Low resource requirements are also fantastic and we've not had many complaints from developers who were getting slowed down when compiling complex code with other previous solutions.
The system should have a better ability to auto repair, if an item is malfunctioning it should auto reinstall.
The cloud platform and the server do not talk well to each other and it would be great to get the same data on both platforms, this may be due to version though.
It seems the whitelisting on the cloud platform could use some work.
The rating reflects Symantec Endpoint Security's ability to balance enterprise grade security with user-friendly workflows or advanced configurations require extra effort. For most organizations, the streamlined management and robust automation justify the high score. Management GUI is old fashined and need to be improve. Older devices may experience slowdowns during full scans without careful configuration.
We've used it for years and the software is easy to use. The dashboard is easy to read, and you can easily figure out where to go to troubleshoot or deploy software. Symantec is there for emergencies like backup restoration or file retrieval. It's pretty low maintenance. Symantec is there when your IT infrastructure needs it
Support is completely awful! You can never get anyone to help if you can even find a number to call. The support web portal is a joke and their response time if you're even able to submit a ticket is ridiculously slow.
The big difference between Protect and Barkly/AMP is how exactly it goes about what it's doing. Protect is application whitelisting and program reputation. So the way it's protecting you is using a proprietary reputation service, and hash values to identify applications, and then hitting a list of whitelisted programs to decide if you are able to run that or not, based on the policy you are in. There is a LOT of value in that. We actually are working on transitioning to Cisco Advanced Malware Protection (AMP). The main reason is cost (about the same cost as Cb Protect, but with (most of) the featureset of all 3 Carbon Black products for less than 1/3 of the total spend. AMP works differently, looking at a reputation service powered by Cisco's Talos cloud. You don't really have application whitelisting, but that also reduces how many "requests" you get for applications. So I'll have to find a different way to do whitelisting and USB blocking and the like, but I'm getting more visibility across my network and also built in antivirus (TETRA engine - ClamAV with some work). Barkly is an add that we are looking to put in as it looks at behavior of programs. So specifically it watches for privilege elevation and the like. Thus far all the big name problem children (WannaCry, other ransomware problems) have been caught natively in Barkly day 0.
Symantec Endpoint Security offers very similar features to the above products, they all do the same thing in terms of protecting your endpoints against cybersecurity threats. Installation wise the products all install from a central management system and report back to this for central reporting. Ultimately we choose Symantec as the reseller was able to offer additional incentives which made their pricing very competitive.
