Endpoint Security Software

Endpoint Security Software Overview

Endpoint security software protects enterprise-connected devices from malware and cyber attacks. Endpoint protection involves a multifaceted approach combining scanning and antivirus / antimalware, threat detection, and infiltration prevention. Beyond simple antivirus software, endpoint security includes endpoint protection platforms (EPP) as well as endpoint detection and remediation (EDR) software.

Endpoint security software has become increasingly crucial as Bring Your Own Device (BOYD) policies have become the norm for many businesses. Under BOYD policies, employees can use their personal devices, most commonly smartphones or laptops, for doing professional work or accessing business systems. Each of these personal devices are an endpoint that could be a vulnerability to the business.

Endpoint security software can help mitigate the risks that BOYD poses. It allows administrators to centrally manage the business’s endpoint vulnerabilities using a variety of tools at scale. This centralization is far more preferable than trusting each endpoint owner individually.

Vendors providing total endpoint protection software generally offer basic antivirus as well as higher tier applications providing additional security and remediation features for businesses. The specific advanced features offered will vary by each product.

Machine learning in particular has taken a key role in modern endpoint security. Machine learning methods allow endpoint security products to adapt to new threats more quickly than humans could manually achieve. This improved efficiency has made machine learning a mainstay in most leading endpoint security software.

Top Rated Endpoint Security Products

TrustRadius Top Rated for 2022

These products won a Top Rated award for having excellent customer satisfaction ratings. The list is based purely on reviews; there is no paid placement, and analyst opinions do not influence the rankings. Read more about the Top Rated criteria.

Endpoint Security Software TrustMap

TrustMaps are two-dimensional charts that compare products based on trScore and research frequency by prospective buyers. Products must have 10 or more ratings to appear on this TrustMap.

Endpoint Security Products

(1-25 of 69) Sorted by Most Reviews

The list of products below is based purely on reviews (sorted from most to least). There is no paid placement and analyst opinions do not influence their rankings. Here is our Promise to Buyers to ensure information on our site is reliable, useful, and worthy of your trust.

Adaptive Defense 360 / WatchGuard EPDR

WatchGuard Endpoint Security (formerly Panda Adaptive Defense 360) combines next-generation antivirus protection, endpoint detection and response (EDR), patch management, content filtering, email security, full disk encryption, and more, into one package. The platform touts a unique…

Key Features

  • Endpoint Detection and Response (EDR) (68)
    89%
    8.9
  • Centralized Management (68)
    88%
    8.8
  • Malware Detection (70)
    83%
    8.3
Symantec Endpoint Security

Symantec Endpoint Protection is the company's flagship antivirus / endpoint security product.

Key Features

  • Malware Detection (40)
    84%
    8.4
  • Centralized Management (40)
    82%
    8.2
  • Infection Remediation (39)
    74%
    7.4
Bitdefender GravityZone
Customer Verified
Top Rated

Bitdefender GravityZone combines multiple security services into a single platform to reduce the cost of building a trusted environment for endpoints.

Key Features

  • Malware Detection (58)
    94%
    9.4
  • Anti-Exploit Technology (54)
    90%
    9.0
  • Centralized Management (58)
    90%
    9.0
ESET PROTECT

The ESET Endpoint Security product line, from Slovakian company ESET, combines antivirus and antispyware with anti-phishing, support for virtualization, as well as remote management and antispam and other features for businesses, as well relatively simple deployment for small offices.…

Key Features

  • Anti-Exploit Technology (9)
    95%
    9.5
  • Endpoint Detection and Response (EDR) (9)
    91%
    9.1
  • Infection Remediation (9)
    90%
    9.0
CrowdStrike Falcon Endpoint Protection

CrowdStrike offers the Falcon Endpoint Protection suite, an antivirus and endpoint protection system emphasizing threat detection, machine learning malware detection, and signature free updating. Additionally the available Falcon Spotlight module delivers vulnerability assessment…

Key Features

  • Malware Detection (33)
    95%
    9.5
  • Centralized Management (33)
    93%
    9.3
  • Infection Remediation (33)
    92%
    9.2
Sophos Intercept X

Sophos Endpoint Protection (Sophos EPP) with Intercept X is an endpoint security product providing an antivirus / antimalware solution that when upgraded with Intercept X or Intercept X Advanced provides advanced threat detection and EDR capabilities.

Key Features

  • Endpoint Detection and Response (EDR) (16)
    94%
    9.4
  • Centralized Management (16)
    90%
    9.0
  • Anti-Exploit Technology (16)
    86%
    8.6
Kaspersky Endpoint Security

Kaspersky Work Space Security is antivirus / endpoint security software from Russian company Kaspersky.

Key Features

  • Infection Remediation (13)
    79%
    7.9
  • Endpoint Detection and Response (EDR) (13)
    79%
    7.9
  • Anti-Exploit Technology (13)
    78%
    7.8
FortiClient

Fortinet offers FortiClient, their endpoint security system emphasizing automated advanced threat protection, security fabric integration, secure remote access, endpoint quarantine, and a comprehensive reporting dashboard.

Key Features

  • Malware Detection (14)
    96%
    9.6
  • Centralized Management (15)
    90%
    9.0
  • Anti-Exploit Technology (15)
    74%
    7.4
Webroot Antivirus + Internet Security Complete (SecureAnywhere)

Webroot Security Complete (formerly under the brand name SecureAnywhere) is a suite of antivirus, multi-endpoint security and Internet security solutions available for home offices, and possibly small businesses with limited security needs.

Trend Micro Apex One

The Trend Micro Endpoint Security platform Apex One (formerly OfficeScan) provides antivirus and malware detection, and endpoint visibility. The product suite can be extended with associated applications that cover mobile endpoint protection, endpoint encryption, as well as network…

Key Features

  • Infection Remediation (9)
    89%
    8.9
  • Anti-Exploit Technology (9)
    89%
    8.9
  • Centralized Management (9)
    88%
    8.8
Cisco Secure Endpoint

Cisco Secure Endpoint (formerly Cisco Advanced Malware Protection [AMP] for Endpoints) offers cloud-delivered next-generation antivirus, endpoint protection platform (EPP), and advanced endpoint detection and response (EDR).

Key Features

  • Centralized Management (17)
    87%
    8.7
  • Anti-Exploit Technology (17)
    81%
    8.1
  • Endpoint Detection and Response (EDR) (17)
    79%
    7.9
Webroot Endpoint Protection

Webroot Endpoint Protection is the OpenText company's business class multi-vector endpoint protection application, providing centralized endpoint management, deep learning intelligence, and advanced behavioral analytics. For SMBs, Webroot Smarter Cybersecurity solutions were designed…

Key Features

  • Centralized Management (11)
    97%
    9.7
  • Malware Detection (11)
    87%
    8.7
  • Infection Remediation (11)
    82%
    8.2
BlackBerry Protect (CylancePROTECT)

Cylance, a Blackberry company since the early 2019 acquisition, developed their flagship business antivirus and endpoint protection software in CylancePROTECT, featured in business and home editions boasting artificial intelligence guided protection. BlackBerry Protect is a post-…

Key Features

  • Endpoint Detection and Response (EDR) (5)
    98%
    9.8
  • Anti-Exploit Technology (5)
    89%
    8.9
  • Centralized Management (5)
    88%
    8.8
McAfee Endpoint Security

McAfee Endpoint Security supplants McAfee VirusScan Enterprise as the company's flagship antivirus and antimalware endpoint protection application, combining behavior monitoring and application containment.

Key Features

  • Centralized Management (7)
    90%
    9.0
  • Infection Remediation (7)
    87%
    8.7
  • Vulnerability Management (7)
    86%
    8.6
Palo Alto Networks Cortex XDR (Traps)

Traps replaces traditional antivirus with multi-method prevention, a proprietary combination of malware and exploit prevention methods that protect users and endpoints from known and unknown threats.

SentinelOne Singularity

SentinelOne is endpoint security software, from the company of the same name with offices in North America and Israel, presenting a combined antivirus and EDR solution.

Key Features

  • Endpoint Detection and Response (EDR) (9)
    96%
    9.6
  • Infection Remediation (9)
    91%
    9.1
  • Centralized Management (9)
    91%
    9.1
Malwarebytes Endpoint Protection

Malwarebytes provides business class endpoint protection with multi-vector protection including application hardening, exploit mitigation, centralized endpoint management, and other features. Malwarebytes also offers security for home and small business.

Key Features

  • Infection Remediation (11)
    94%
    9.4
  • Endpoint Detection and Response (EDR) (11)
    91%
    9.1
  • Centralized Management (11)
    89%
    8.9
Trend Micro Smart Protection Suite, with XGen

Trend Micro offers the Smart Protection Suite with XGen, an endpoint security suite including data loss prevention and mobile device protection. The Smart Prtection Endpoint Suite is the basic edition. The Smart Protection Complete Suite also includes a message security gateway for…

Key Features

  • Centralized Management (9)
    97%
    9.7
  • Vulnerability Management (9)
    96%
    9.6
  • Malware Detection (9)
    96%
    9.6
Microsoft Defender for Endpoint

Microsoft Defender for Endpoint (formerly Microsoft Defender ATP) is a holistic, cloud delivered endpoint security solution that includes risk-based vulnerability management and assessment, attack surface reduction, behavioral based and cloud-powered next generation protection, endpoint…

Key Features

  • Centralized Management (6)
    96%
    9.6
  • Endpoint Detection and Response (EDR) (6)
    96%
    9.6
  • Anti-Exploit Technology (6)
    93%
    9.3
Huntress

Huntress is a security platform that surfaces hidden threats, vulnerabilities, and exploits. The platform helps IT resellers protect their customers from persistent footholds, ransomware and other attacks.

VMware Carbon Black Endpoint

The VMware Carbon Black Endpoint solution (formerly Cb Defense) is an endpoint security and "next-gen antivirus (NGAV)" that uses machine learning and behavioral models to analyze endpoint data and uncover malicious activity to stop all types of attacks before they reach critical…

Panda Security for Desktops

Spanish company Panda Security offers Panda Security for Desktops (Panda Endpoint Protection), an endpoint security and antivirus software.

Trend Micro Worry-Free Services Suite

Trend Micro offers an end-to-end hosted security solution which they call the Worry-Free Business Security suite for midsize and larger enterprises, which provides a wide range of services such as endpoint protection, email encryption, general antivirus and threat detection and prevention,…

Sophos Intercept X for Server

Sophos now offers Intercept X for Server, as a server-specific version of its popular endpoint security solution, featuring advanced malware detection and prevention, ransomware protection, and hacker deterrents.

Action1 RMM

Action1 is a cloud RMM tool that’s free for the first 100 endpoints. It delivers policy-based patching and deployment of OS and third-party software, provides real-time visibility into vulnerabilities and IT assets, and includes a built-in remote desktop compliant with modern privacy…

Learn More About Endpoint Security Software

What is Endpoint Security Software?

Endpoint security software protects enterprise-connected devices from malware and cyber attacks. Endpoint protection involves a multifaceted approach combining scanning and antivirus / antimalware, threat detection, and infiltration prevention. Beyond simple antivirus software, endpoint security includes endpoint protection platforms (EPP) as well as endpoint detection and remediation (EDR) software.

Endpoint security software has become increasingly crucial as Bring Your Own Device (BOYD) policies have become the norm for many businesses. Under BOYD policies, employees can use their personal devices, most commonly smartphones or laptops, for doing professional work or accessing business systems. Each of these personal devices are an endpoint that could be a vulnerability to the business.

Endpoint security software can help mitigate the risks that BOYD poses. It allows administrators to centrally manage the business’s endpoint vulnerabilities using a variety of tools at scale. This centralization is far more preferable than trusting each endpoint owner individually.

Vendors providing total endpoint protection software generally offer basic antivirus as well as higher tier applications providing additional security and remediation features for businesses. The specific advanced features offered will vary by each product.

Machine learning in particular has taken a key role in modern endpoint security. Machine learning methods allow endpoint security products to adapt to new threats more quickly than humans could manually achieve. This improved efficiency has made machine learning a mainstay in most leading endpoint security software.

Features of Endpoint Security Software

Endpoint security software offers the following features:

  • Traditional endpoint scanning and antivirus /antimalware capabilities
  • Scheduled or continuous monitoring of files and connected devices
  • Lock down or restricted access of endpoints by administrator
  • Restrict endpoint users from accessing various websites and applications
  • Integrated firewall
  • Policy-based configuration and compliance controls
  • Automated updates

Endpoint Security Comparison

Comparing endpoint security software “apples-to-apples” can be difficult. Consider these factors when comparing different products:

  1. Mobile Device Support: Mobile devices come with their own unique security challenges and requirements vs. more traditional computers. Consider how well each product support mobile device protection. An additional factor would be how unobtrusive the software is, which can make a big difference in adoption when trying to implement the software in BOYD environments.
  2. Policy Management: How easily can administrators establish, manage, and customize security policies for different groups of devices, down to individual devices? Consider not only whether each product can do so, but also how easy to manage those processes are, since centralized management is such a core benefit of endpoint security software in the first place.
  3. Hosted vs. On-Premise Software: Consider whether it is better for the business to deploy the software on an on-premise server vs. having the software provider host the product. Hosted solutions let businesses outsource the continual updates and improvements necessary to maintain effective security. In contrast, on-premise solutions allow in-house IT administrators to have a higher level of control at the cost of additional maintenance requirements.

Start an endpoint security comparison here

Pricing Information

Simple antivirus and threat detection software is relatively inexpensive, with a device per year pricing model. These simple tools can range in price from free to several hundred Dollars depending on the number of devices supported. More complex endpoint protection platforms including remediation can cost more.

Endpoint Security Software Best Of Awards

The following endpoint security software offer award-winning customer relationships, feature sets, and value for price. Learn more about our Best Of Awards methodology here.

Best Endpoint Security Software Products

Related Categories

Frequently Asked Questions

What does endpoint security software do?

Endpoint security software protects endpoint devices, such as mobile devices and laptops, from malware and cyberattacks by installing agents directly on the endpoint itself.

What is included in endpoint security software?

Endpoint security software can include several different security methods. Some of the most common technologies include firewalls, antivirus, and IP blocking.

Who uses endpoint security software?

Endpoint security software is most commonly used by midsize and larger organizations. The software is usually managed by IT administrators.

What are the benefits of endpoint security software?

Endpoint security software enables centrally-managed, controlled, and monitored security across a range of devices.

How much does endpoint security software cost?

Most leading products range from $30-100/year per device, although pricing will vary dramatically depending on the package and features that are purchased, as well as the number of devices being protected.