Item: VMware Carbon Black Endpoint
Rating: 9
Author: Verified User

Use Cases and Deployment Scope

Cb Defense is being used as endpoint protection and product visibility. It is used across two entire organizations we monitor. We previously used Kaspersky and Trend Micro enterprise endpoint protection products. We decided we wanted a product that wasn't pattern based and had next-gen AI capabilities. Through this process, we decided Cb Defense filled that need.

Pros and Cons

Cb Defense does a great job of monitoring the endpoint activities in great detail.
Defense is a cloud-based offering and has an easy to use centralized interface.
The alerts are very definable, and as such are easily refined to avoid getting too many extraneous alerts.
The Cb salespeople have been very accommodating to get to price points that we as an SMB (with tight budgets) could afford.

We have only needed support on a couple occasions (which is a positive), but they weren't able to really resolve either issue.
This brings me to my second con, which is that we have only used three sensor packages (the installed client) and have had issues crop up with two out of three.

Return on Investment

Like most security products, we keep layering on there isn't an ROI. We simply spend more and more.
The positive cost aspect of Cb Defense is that, compared to other endpoint protection we have paid for, you seem to get a lot of value for the money at only slightly higher costs.

Usability

The console of the product is very easy to use. It provides great detailed information about all aspects of things occurring on the endpoint. It was easy to deploy and set up. The centralized cloud-based interface has made it easy to add two domains and manage them under a single pane with multiple admins. The only reason I wouldn't give it a higher score is a little bit of lag between updated info from the clients and also the lack of accountability in the deployment process. You set the deployment up for multiple machines and can't easily see if it was successful and/or it takes a while to see if it succeeded or failed.

Support Rating

The support is easy to get to and quick to respond. The product works well, and it s fairly easy to manage without help from support. The only reason I marked them down from the overall rating was their inability to provide solutions to sensor (client package) issues we had on two separated occasions. It may just be bad luck on my part, as I did small scale deployments in both cases without issue and it wasn't until I did a broad release that issues showed up.

Alternatives Considered

Kaspersky Endpoint Security and Trend Micro InterScan VirusWall

We like the visibility in Defense. The other two products would alert on a potential issue, but details of what actually occurred to cause the alert weren't readily apparent. Defense provides all the detail of where/what/who was doing something that was alert worthy. It also appears to be much more configurable to take an aggressive blocking stance and make it manageable.

Other Software Used

Intermapper, FortiClient, FoxitPhantom PDF, VMware Workstation, Veeam Backup & Replication, Veeam ONE, ArcGIS, SketchUp, TeamViewer

Likelihood to Recommend

Cb defense seems to be well suited to provide a lot of detail about potential security issues with your endpoints. It aggressively stops potentially bad activities on the endpoints, and it is easy to configure to allow processes that are stopped but you wish to allow. This makes it easy for a small IT shop to manage without the use of a full-time security employee. Unfortunately, like all other advanced security products, it can be challenging (if you do want to get to the details) to wade through on a part-time basis.

Cb Defense Provides Next Gen Security with great visiblity into what is occuring on your EndPoints

Overall Satisfaction with Cb Defense