What does endpoint security software do?
Endpoint security software protects endpoint devices, such as mobile devices and laptops, from malware and cyberattacks by installing agents directly on the endpoint itself.
Endpoint Security Software
Top Rated Endpoint Security Products
These products won a Top Rated award for having excellent customer satisfaction ratings. The list is based purely on reviews; there is no paid placement, and analyst opinions do not influence the rankings. Read more about the Top Rated criteria.
Endpoint Security Software TrustMap
TrustMaps are two-dimensional charts that compare products based on trScore and research frequency by prospective buyers. Products must have 10 or more ratings to appear on this TrustMap.
Endpoint Security Software Overview
What is Endpoint Security Software?
Endpoint security software protects enterprise-connected devices from malware and cyber attacks. Endpoint protection involves a multifaceted approach combining scanning and antivirus / antimalware, threat detection, and infiltration prevention. Beyond simple antivirus software, endpoint security includes endpoint protection platforms (EPP) as well as endpoint detection and remediation (EDR) software.
Endpoint security software has become increasingly crucial as Bring Your Own Device (BOYD) policies have become the norm for many businesses. Under BOYD policies, employees can use their personal devices, most commonly smartphones or laptops, for doing professional work or accessing business systems. Each of these personal devices are an endpoint that could be a vulnerability to the business.
Endpoint security software can help mitigate the risks that BOYD poses. It allows administrators to centrally manage the business’s endpoint vulnerabilities using a variety of tools at scale. This centralization is far more preferable than trusting each endpoint owner individually.
Vendors providing total endpoint protection software generally offer basic antivirus as well as higher tier applications providing additional security and remediation features for businesses. The specific advanced features offered will vary by each product.
Machine learning in particular has taken a key role in modern endpoint security. Machine learning methods allow endpoint security products to adapt to new threats more quickly than humans could manually achieve. This improved efficiency has made machine learning a mainstay in most leading endpoint security software.
Features of Endpoint Security Software
Endpoint security software offers the following features:
Traditional endpoint scanning and antivirus /antimalware capabilities
Scheduled or continuous monitoring of files and connected devices
Lock down or restricted access of endpoints by administrator
Restrict endpoint users from accessing various websites and applications
Integrated firewall
Policy-based configuration and compliance controls
Automated updates
Endpoint Security Comparison
Comparing endpoint security software “apples-to-apples” can be difficult. Consider these factors when comparing different products:
Mobile Device Support: Mobile devices come with their own unique security challenges and requirements vs. more traditional computers. Consider how well each product support mobile device protection. An additional factor would be how unobtrusive the software is, which can make a big difference in adoption when trying to implement the software in BOYD environments.
Policy Management: How easily can administrators establish, manage, and customize security policies for different groups of devices, down to individual devices? Consider not only whether each product can do so, but also how easy to manage those processes are, since centralized management is such a core benefit of endpoint security software in the first place.
Hosted vs. On-Premise Software: Consider whether it is better for the business to deploy the software on an on-premise server vs. having the software provider host the product. Hosted solutions let businesses outsource the continual updates and improvements necessary to maintain effective security. In contrast, on-premise solutions allow in-house IT administrators to have a higher level of control at the cost of additional maintenance requirements.
Pricing Information
Simple antivirus and threat detection software is relatively inexpensive, with a device per year pricing model. These simple tools can range in price from free to several hundred Dollars depending on the number of devices supported. More complex endpoint protection platforms including remediation can cost more.
Endpoint Security Products
(1-25 of 54) Sorted by Most Reviews
Symantec Endpoint Security
Top Rated
Symantec Endpoint Protection is the company's flagship antivirus / endpoint security product.
Bitdefender GravityZone
Top Rated
Bitdefender GravityZone combines multiple security services into a single platform to reduce the cost of building a trusted environment for endpoints.
Sophos Intercept X
Top Rated
Sophos Endpoint Protection (Sophos EPP) with Intercept X is an endpoint security product providing an antivirus / antimalware solution that when upgraded with Intercept X or Intercept X Advanced provides advanced threat detection and EDR capabilities.
Webroot in Broomfield, Colorado offers SecureAnywhere antivirus and endpoint protection, boasting a small unobtrusive endpoint client with rapid deployment and fast scan with multi-vector security.
The ESET Endpoint Security product line, from Slovakian company ESET, combines antivirus and antispyware with anti-phishing, support for virtualization, as well as remote management and antispam and other features for businesses, as well relatively simple deployment for small offices.…
FortiClient
Top Rated
Fortinet offers FortiClient, their endpoint security system emphasizing automated advanced threat protection, security fabric integration, secure remote access, endpoint quarantine, and a comprehensive reporting dashboard.
Kaspersky Work Space Security is antivirus / endpoint security software from Russian company Kaspersky.
The Trend Micro Endpoint Security platform Apex One (formerly OfficeScan) provides antivirus and malware detection, and endpoint visibility. The product suite can be extended with associated applications that cover mobile endpoint protection, endpoint encryption, as well as network…
Cylance, a Blackberry company since the early 2019 acquisition, developed their flagship business antivirus and endpoint protection software in CylancePROTECT, featured in business and home editions boasting artificial intelligence guided protection. BlackBerry Protect is a post-…
CrowdStrike offers the Falcon Endpoint Protection suite, an antivirus and endpoint protection system emphasizing threat detection, machine learning malware detection, and signature free updating. Additionally the available Falcon Spotlight module delivers vulnerability assessment…
McAfee Endpoint Security supplants McAfee VirusScan Enterprise as the company's flagship antivirus and antimalware endpoint protection application, combining behavior monitoring and application containment.
Trend Micro offers the Smart Protection Suite with XGen, an endpoint security suite including data loss prevention and mobile device protection. The Smart Prtection Endpoint Suite is the basic edition. The Smart Protection Complete Suite also includes a message security gateway for…
Cisco Advanced Malware Protection (AMP) for Endpoints is a combined endpoint protection platform (EPP) and endpoint detection and response (EDR) software, providing a total endpoint protection solution.
SentinelOne is endpoint security software, from the company of the same name with offices in North America and Israel, presenting a combined antivirus and EDR solution.
The VMware Carbon Black Cloud Endpoint Standard solution (formerly Cb Defense) is an endpoint security and "next-gen antivirus (NGAV)" that uses machine learning and behavioral models to analyze endpoint data and uncover malicious activity to stop all types of attacks before they…
Traps replaces traditional antivirus with multi-method prevention, a proprietary combination of malware and exploit prevention methods that protect users and endpoints from known and unknown threats.
Spanish company Panda Security offers Panda Security for Desktops (Panda Endpoint Protection), an endpoint security and antivirus software.
Malwarebytes provides business class endpoint protection with multi-vector protection including application hardening, exploit mitigation, centralized endpoint management, and other features. Malwarebytes also offers security for home and small business.
Microsoft Defender for Endpoint (formerly Microsoft Defender ATP) is a holistic, cloud delivered endpoint security solution that includes risk-based vulnerability management and assessment, attack surface reduction, behavioral based and cloud-powered next generation protection, endpoint…
Webroot Endpoint Protection is the company's business class multi-vector endpoint protection application, providing centralized endpoint management, deep learning intelligence, and advanced behavioral analytics.
Check Point Endpoint Security suite including Sandblast Agent is an enterprise class endpoint protection suite combining antivirus and advanced threat protection, full disk encryption (FDE), remote access VDN, and zero-day phishing prevention, among other features.
Panda Adaptive Defense 360 combines next-generation antivirus protection, endpoint detection and response (EDR), patch management, content filtering, email security, full disk encryption, and more, into one package. The platform touts a unique zero-trust security service that certifies…
Microsoft System Center Endpoint Protection is a malware, spyware, antivirus and endpoint protection application via Microsoft System Center Configuration Manager.
The Barkly antivirus and endpoint security software acquired by Alert Logic in 2018 serves as the basis for the Alert Logic Extended Endpoint Protection solution, which helps thwart attack techniques that try to compromise Windows and Mac client endpoints, gain access to resources,…
Frequently Asked Questions
What is included in endpoint security software?
Endpoint security software can include several different security methods. Some of the most common technologies include firewalls, antivirus, and IP blocking.
Who uses endpoint security software?
Endpoint security software is most commonly used by midsize and larger organizations. The software is usually managed by IT administrators.
What are the benefits of endpoint security software?
Endpoint security software enables centrally-managed, controlled, and monitored security across a range of devices.
How much does endpoint security software cost?
Most leading products range from $30-100/year per device, although pricing will vary dramatically depending on the package and features that are purchased, as well as the number of devices being protected.