Cisco Secure Endpoint (formerly Cisco AMP)
50 Ratings
Free Trial
VMware Carbon Black EDR
11 Ratings

Cisco Secure Endpoint (formerly Cisco AMP)

50 Ratings
<a href='https://www.trustradius.com/static/about-trustradius-scoring' target='_blank' rel='nofollow noopener'>trScore algorithm: Learn more.</a>
Score 8.6 out of 100

Based on 50 reviews and ratings

Free Trial

VMware Carbon Black EDR

11 Ratings
<a href='https://www.trustradius.com/static/about-trustradius-scoring' target='_blank' rel='nofollow noopener'>trScore algorithm: Learn more.</a>
Score 8.4 out of 100

Based on 11 reviews and ratings

Feature Set Ratings

    Endpoint Security

    7.9

    Cisco Secure Endpoint (formerly Cisco AMP)

    79%

    VMware Carbon Black EDR

    Feature Set Not Supported
    N/A
    Cisco Secure Endpoint (formerly Cisco AMP) ranks higher in 7/7 features
    Cisco Secure Endpoint (formerly Cisco AMP) ranks higher in 7/7 features

    Anti-Exploit Technology

    8.0
    80%
    17 Ratings
    N/A
    0 Ratings

    Endpoint Detection and Response (EDR)

    7.9
    79%
    17 Ratings
    N/A
    0 Ratings

    Centralized Management

    8.7
    87%
    17 Ratings
    N/A
    0 Ratings

    Hybrid Deployment Support

    7.2
    72%
    6 Ratings
    N/A
    0 Ratings

    Infection Remediation

    7.6
    76%
    17 Ratings
    N/A
    0 Ratings

    Vulnerability Management

    7.1
    71%
    17 Ratings
    N/A
    0 Ratings

    Malware Detection

    8.7
    87%
    17 Ratings
    N/A
    0 Ratings

    Incident Response Platforms

    Cisco Secure Endpoint (formerly Cisco AMP)

    Feature Set Not Supported
    N/A
    8.3

    VMware Carbon Black EDR

    83%
    VMware Carbon Black EDR ranks higher in 6/6 features
    VMware Carbon Black EDR ranks higher in 6/6 features

    Company-wide Incident Reporting

    N/A
    0 Ratings
    9.0
    90%
    2 Ratings

    Integration with Other Security Systems

    N/A
    0 Ratings
    8.0
    80%
    2 Ratings

    Attack Chain Visualization

    N/A
    0 Ratings
    9.0
    90%
    2 Ratings

    Centralized Dashboard

    N/A
    0 Ratings
    9.0
    90%
    2 Ratings

    Machine Learning to Prevent Incidents

    N/A
    0 Ratings
    7.0
    70%
    2 Ratings

    Live Response for Rapid Remediation

    N/A
    0 Ratings
    8.0
    80%
    2 Ratings

    Attribute Ratings

    • Cisco Secure Endpoint (formerly Cisco AMP) is rated higher in 1 area: Likelihood to Recommend

    Likelihood to Recommend

    8.2

    Cisco Secure Endpoint (formerly Cisco AMP)

    82%
    17 Ratings
    8.0

    VMware Carbon Black EDR

    80%
    2 Ratings

    Usability

    8.1

    Cisco Secure Endpoint (formerly Cisco AMP)

    81%
    12 Ratings

    VMware Carbon Black EDR

    N/A
    0 Ratings

    Support Rating

    8.0

    Cisco Secure Endpoint (formerly Cisco AMP)

    80%
    20 Ratings

    VMware Carbon Black EDR

    N/A
    0 Ratings

    Likelihood to Recommend

    Cisco Secure Endpoint (formerly Cisco AMP)

    Cisco Secure Endpoint is a very good endpoint protection solution. It would be particularly good for someone with the time and ability to really work with it to get the most out of it. This would include the other Cisco product integrations and systems that it works well with.

    Read full review

    Jeff Collins | TrustRadius Reviewer
    Jeff Collins
    View all 17 answers on this topic

    VMware Carbon Black EDR

    We are able to check if any phishing link was visited by the user or not. To check for the whether any file is executed on the machine or not.To check on which port connections are being made by the machine.To create custom watchlist for alert to be investigated by an analyst.To check every process executed in the machine for a specified range.

    Read full review

    Anonymous | TrustRadius Reviewer
    Verified User
    View all 2 answers on this topic

    Pros

    Cisco Secure Endpoint (formerly Cisco AMP)

    • Identifies malware, malicious processes/services and other events well
    • Great automated actions features such as host isolation
    • Detailed threat visibility such as file trajectory
    • Integration with other Cisco suite of security products
    • Great value
    • Low false positive rate
    • Lightweight agent
    • Variety of reporting
    • Stable agent

    Read full review

    Randy Zuehlke | TrustRadius Reviewer
    Randy Zuehlke
    View all 17 answers on this topic

    VMware Carbon Black EDR

    • Process tree view of endpoint activity
    • Ability to pull files from host
    • Threat Intelligence integration
    • Isolate a host

    Read full review

    Anonymous | TrustRadius Reviewer
    Verified User
    View all 2 answers on this topic

    Cons

    Cisco Secure Endpoint (formerly Cisco AMP)

    • Event search function. The searching is very limited and allows for poor filtering choices.
    • Slowness. The web GUI is far slower than most Cisco products.
    • Sync issues. When attempting to move a device from one group to another or start isolation on a device, there is a sizable delay in communication with the device that can cause operations to fail.

    Read full review

    Anonymous | TrustRadius Reviewer
    Verified User
    View all 17 answers on this topic

    VMware Carbon Black EDR

    • Number of false positive which are triggered due to threat feeds are sometimes more needs to be fine tuned by the client.
    • In very rare scenarios processes are not captured properly.

    Read full review

    Anonymous | TrustRadius Reviewer
    Verified User
    View all 2 answers on this topic

    Pricing Details

    Cisco Secure Endpoint (formerly Cisco AMP)

    General

    Free Trial
    Free/Freemium Version
    Premium Consulting/Integration Services
    Entry-level set up fee?
    No

    Starting Price

    VMware Carbon Black EDR

    General

    Free Trial
    Free/Freemium Version
    Premium Consulting/Integration Services
    Entry-level set up fee?
    No

    Starting Price

    Usability

    Cisco Secure Endpoint (formerly Cisco AMP)

    Cisco Secure Endpoint (formerly Cisco AMP) 8.1
    Based on 12 answers
    AMP is very difficult to use compared to other products we've seen. It's hard to understand why there are so many different logins for the various products that supposedly integrate with AMP. We had weekly phone calls for months to implement the product yet none of the IT department really enjoys using this product or feels comfortable with the accuracy of detections. The number of false positives is high.

    Read full review

    Anonymous | TrustRadius Reviewer
    Verified User
    View all 12 answers on this topic

    VMware Carbon Black EDR

    No score
    No answers yet
    No answers on this topic

    Support Rating

    Cisco Secure Endpoint (formerly Cisco AMP)

    Cisco Secure Endpoint (formerly Cisco AMP) 8.0
    Based on 20 answers
    Like most Cisco products, Cisco Advanced Malware Protection (AMP) for Endpoints has a great knowledge base on Cisco's community portal, but unfortunately the Cisco support team cannot always clearly describe the solution for your issue, especially if it is related to the demo period. Nevertheless, Cisco goes to great efforts to improve your current situation with Cisco Advanced Malware Protection (AMP) for Endpoints support.

    Read full review

    Oleksandr Tsapenko | TrustRadius Reviewer
    Oleksandr Tsapenko
    View all 20 answers on this topic

    VMware Carbon Black EDR

    No score
    No answers yet
    No answers on this topic

    Alternatives Considered

    Cisco Secure Endpoint (formerly Cisco AMP)

    Being all products of a similar nature, Cisco Advance Malware Protection stands out for its simplicity, low resource consumption, reporting, work dashboards and integration with the rest of the already installed suit.
    Those are the most notable aspects, although the rest of the solutions were very good, all the capabilities added together make this product surpassing.

    Read full review

    Sebastián Sarasate | TrustRadius Reviewer
    Sebastián Sarasate
    View all 17 answers on this topic

    VMware Carbon Black EDR

    CB Response allows for a better view of what happened on the endpoint and provides more functionality out of the box then the FireEye Endpoint Security Product. CB Response allows you to basically have a remote connection into the CLI of an endpoint. This allows you to view the file system, run programs/scripts on the host, etc. FireEye Endpoint Security does not have this functionality.

    Read full review

    Anonymous | TrustRadius Reviewer
    Verified User
    View all 2 answers on this topic

    Return on Investment

    Cisco Secure Endpoint (formerly Cisco AMP)

    • AMP has been able to catch some serious infections and stop them from doing huge damage in our environment.
    • The overall cost of AMP vs the cost of not having this protection and getting hit with malware, or other nefarious damage to your environment is well worth the money.

    Read full review

    Nicole McMillian | TrustRadius Reviewer
    Nicole McMillian
    View all 17 answers on this topic

    VMware Carbon Black EDR

    • It is helping to protect us from potential loss of revenue that would be caused by malware or a compromised account.
    • It took some time in deploying in the environment , but that time is much worth it because of the results we are getting now.
    • It helps in hunting, which help us check and protect our environment from any cyber attacks.

    Read full review

    Anonymous | TrustRadius Reviewer
    Verified User
    View all 2 answers on this topic

    Add comparison