Cisco AMP for Endpoints Reviews

17 Ratings
<a href='' target='_blank' rel='nofollow noopener noreferrer'>trScore algorithm: Learn more.</a>
Score 8.8 out of 100

Do you work for this company? Manage this listing

Overall Rating

Reviewer's Company Size

Last Updated

By Topic




Job Type


Reviews (1-6 of 6)

Rik Aragoza | TrustRadius Reviewer
May 28, 2020

Internal Support Experience with Cisco AMP for Endpoints

Score 7 out of 10
Vetted Review
Verified User
Review Source
Day-to-day use, implementation, and deployment experience were awesome! Being in internal IT support, Cisco Advanced Malware Protection provides an additional layer of security with minimal to no effort in making sure that we have visibility and security with our endpoints. Maintenance and routine work were lessened due to the feature set that this application brought!
  • We utilize Cisco AMP on our ASA and our CES as well.
  • Using it everywhere gives us great visibility into where a file came from and what it does.
  • It provides complete protection for endpoints, from the point of entry and acts to prevent vulnerabilities.
  • In addition, it provides users with a view of possible blind spots which is cross-platform (Windows, Android, iOS, Linux, macOS) and can immediately perform isolation with only a few clicks!
  • Sometimes during whitelisting, other files from security tools get isolated even if it's not user intended.
  • Re-syncing policies also take some time, albeit in a straightforward process.
  • As with all security software, false-positives are still detected.
  • Hoping that once the library is expanded further, the false positives will be fewer.
For starters looking for endpoint security, or companies looking to upgrade those initial safe measures, Cisco Advanced Malware Protection is definitely worth a look to see if it would be compatible with their use-case. Even for bigger and most established companies, I think it's still worth considering all together.

It might not be appropriate for those who already have a long-term/standing security application that they go with as the migration or transition towards Cisco AMP might not be well suited.
Read Rik Aragoza's full review
Nicole McMillian | TrustRadius Reviewer
November 20, 2019


Score 8 out of 10
Vetted Review
Verified User
Review Source
AMP is being used across our organization on workstations and servers.
  • Detects malware and viruses on endpoints.
  • AMP shows a timeline associated with an event and if the malicious event has spread.
  • AMP quarantines but also does retroactive pullbacks of malicious attachments or downloads if they are later discovered to be bad.
  • I would like to see some emphasis put on being able to makes notes if there is an incident you are working on so other analysts do not have to open the incident or ask you if you have worked on the incident.
  • More clarity around files/downloads that are that they do not end up in your incidents but maybe another tab for incidents that AMP resolved without need for work by an analyst.
  • I would like to see silent upgrades. At this moment in order to upgrade you have to do a reboot, this is my biggest frustration.
AMP is a great addition to any organization. AMP is your eyes and ears, keeps you on the pulse of your organizations end point safety. The console is easy to use. AMP has helped us see immediate threats so that things do not go unnoticed in our environment and that is a huge win.
Read Nicole McMillian's full review
Jesus Franco | TrustRadius Reviewer
November 16, 2019

AMP, a good choice

Score 9 out of 10
Vetted Review
Review Source
AMP is being used across the whole organization and several costumers. We use it to block malware, provides visibility to what is running on our endpoints.
  • Detects and block malware on endpoints.
  • It provides good visibility and trajectory.
  • Easy to deploy.
  • The need for a reboot in upgrades.
  • The number of exclusions.
AMP is well suited for any organization, it helps to reduce risks on catching malware on endpoints.
Read Jesus Franco's full review
Scott Shipley | TrustRadius Reviewer
June 12, 2019

A realist review of AMP

Score 8 out of 10
Vetted Review
Verified User
Review Source
AMP is used globally across the entire organization. It provides great protection and visibility to what is executing on my servers and endpoints. Operationalizing the tool with our ITSM system allows for quicker remediation.
  • Provides good visibility to vulnerable software.
  • Device trajectory for applications is very useful when determining if an application should really be whitelisted.
  • It is very effective at mitigating command and control.
  • The tool needs a facility for submitting SHA-256 and samples via the web interface to report false positives. This is a very common issue and a quicker method for submitting these types of items must be addressed.
  • Reporting need to be reintroduced as it was available in earlier versions of the management portal.
  • The limited number of exclusions can be challenging depending on the environment.
AMP is great for providing endpoint visibility of your endpoints. However, it is not a catch-all for everything happening on your systems. Limited visibility to powershell execution is a weak point and would require further analysis.
Read Scott Shipley's full review
Elvin Thomas | TrustRadius Reviewer
October 02, 2019

Review of Cisco AMP

Score 10 out of 10
Vetted Review
Verified User
Review Source
It is being used across the entire organization. We use it to block malware attacks and other types of potential security attacks.
  • Easy to install/push to computers.
  • Runs in the background.
  • AMP helps drastically reduce investigation and remediation cycles.
  • More options for the end-user.
For us, Cisco AMP has been well suited for us to easily check for potential security breaches, malware, etc. I can't really think of any limitations.
Read Elvin Thomas's full review
Anonymous | TrustRadius Reviewer
November 19, 2019

Cisco Advanced Malware Protection (AMP) for Endpoints

Score 8 out of 10
Vetted Review
Verified User
Review Source
Cisco Advanced Malware Protection (AMP) is being used across our entire school district for endpoint protection. We have over 10K devices, that it protects from various antivirus and malware threats. Its is a very robust cloud managed solution.
  • It gives great visibility of all detected threats across our devices.
  • It is very easy to deploy and maintain.
  • The cloud UI is constantly being updated with new features.
  • I don't know if this is a bad feature but the engine is very sensitive it picks up a lot of things that are not always threats.
  • While AMP is a strong product it is not cheap.
  • Software upgrades usually require a reboot which can make it difficult with student devices.
While on the expensive side, Cisco Advanced Malware Protection (AMP) is a solid product that is very robust and can be customized a lot. It can also integrate with Cisco's threat grid, umbrella, firepower and other security solutions to give a more broad range of visibility.
Read this authenticated review

Feature Scorecard Summary

Anti-Exploit Technology (6)
Endpoint Detection and Response (EDR) (6)
Centralized Management (6)
Hybrid Deployment Support (5)
Infection Remediation (6)
Vulnerability Management (6)
Malware Detection (6)

About Cisco AMP for Endpoints

Cisco Advanced Malware Protection (AMP) for Endpoints is a combined endpoint protection platform (EPP) and endpoint detection and response (EDR) software, providing a total endpoint protection solution.
Categories:  Antivirus,  Endpoint Security

Cisco AMP for Endpoints Technical Details

Operating Systems: Unspecified
Mobile Application:No