We compared Tanium and CrowdStrike Falcon based on our user's reviews in several parameters.
Tanium and CrowdStrike Falcon offer robust endpoint security solutions with unique strengths. Tanium provides comprehensive visibility, strong security measures, and powerful analytics capabilities, while praised for its customer service but faces concerns over pricing and performance. On the other hand, CrowdStrike Falcon is commended for its threat detection, reliable protection, and seamless integration, with reasonable pricing and positive ROI, but users call for improvements in user interface, reporting, and integration options.
Features: Tanium's valuable features include comprehensive visibility into endpoints, effective security measures, efficient endpoint management, and powerful analytics. In comparison, CrowdStrike Falcon excels in robust threat detection, advanced machine learning technology, and proactive threat hunting capabilities.
Pricing and ROI: Tanium's setup cost is higher compared to other products in the market, requiring additional resources and time. Users find the licensing complex and require negotiation. On the other hand, CrowdStrike Falcon's setup cost is straightforward and hassle-free, requiring minimal effort. Users appreciate the flexible and customizable licensing options., Tanium's ROI is highlighted by improved efficiency, cost savings, and increased productivity through streamlined IT operations, enhanced security measures, and centralized management. Meanwhile, CrowdStrike Falcon delivers positive results with enhanced cybersecurity capabilities, cost savings, and increased productivity through real-time monitoring and user-friendly interface.
Room for Improvement: Tanium users have highlighted the need for better system performance, improved documentation, and more customization options. In comparison, users of CrowdStrike Falcon have suggested enhancing the user interface, reporting capabilities, integration options, and addressing detection issues and customer support efficiency.
Deployment and customer support: The user reviews show that the duration required to establish a new tech solution varies for both Tanium and CrowdStrike Falcon. Tanium users reported spending three months on deployment and an additional week on setup, while some CrowdStrike Falcon users mentioned needing a week for setup and deployment. It is important to carefully evaluate the context in which these terms are used to determine if they refer to the same period or should be evaluated separately., The customer service for Tanium product is highly praised by users, who appreciate the helpful and responsive assistance provided by the knowledgeable and professional support staff. On the other hand, users also found the customer service for CrowdStrike Falcon to be responsive, knowledgeable, and reliable.
The summary above is based on 60 interviews we conducted recently with Tanium and CrowdStrike Falcon users. To access the review's full transcripts, download our report.
"I like FortiClient EMS. FortiEDR has a lot of great features like lockdown mode, remote wipes, and encryption. I can set malware outbreak policies and controls for detecting abnormalities. You can also simulate phishing attacks."
"Exceptions are easy to create and the interface is easy to follow with a nice appearance."
"Having all monitoring, response, tracking, and mitigation tools in one dashboard provides our analysts and SOC team with a comprehensive view at a glance."
"The setup is pretty simple."
"Fortinet FortiEDR made our clients feel secure and more at ease, knowing that they had an EDR solution that would close the gap in their security posture."
"Additionally, when it comes to EDR, there are more tools available to assist with client work."
"The most valuable feature is the analysis, because of the beta structure."
"It is a scalable solution...The initial setup of Fortinet FortiEDR was straightforward."
"CrowdStrike Falcon's most valuable features are the lightweight agent which has absolutely zero performance issues. There is no performance deterioration on the laptop on the network. It is a signature-less antivirus and anti-malware solution, it doesn't depend on signatures which better protects the systems."
"The features we showcase to potential customers are prevention, malware protection, zero-day protection, and application scripting. Vulnerability assessment is another valuable feature."
"We have seen a reduction to the performance hit to our operating systems."
"The most valuable feature is its threat analysis."
"Since we deployed CrowdStrike, the network has become much calmer, and we now understand the sources of infections, which helps us prevent them from spreading."
"It's very easy to set up."
"CrowdStrike Falcon is a very light solution. It does not use too much processor or RAM."
"The ability to execute real-time response, or, that you can connect to the agent and see exactly what processes are operating, is the most important feature of this solution."
"I like the fact that you can create patching campaigns depending on the area of your network that you want to address first. I like the ability it has to make several campaigns that work in parallel."
"The interrogation piece was the most valuable feature because it was very detailed."
"Tanium's most valuable features are patch management, inventory, and distribution software."
"Tanium’s linear-chain architecture is valuable."
"Tanium has made the process of detecting threats more proactive with its detection. So, the process is easier and more efficient."
"The security features are very valuable."
"The product is granular and can build complex roles compared to other EDR vendors."
"I'm not so familiar with the tool but I like the interaction of the console to the picture. Patching is the primary model I have been focusing on for the last couple of weeks. So I have created a proof of concept environment and have been checking the available features."
"The support needs improvement."
"I haven't seen the use of AI in the solution."
"FortiEDR could add a separate scanning dashboard. In incident management, we prefer to remove the endpoint system from the environment and scan the system. We typically use Symantec for that, but if we want to use FortiEDR for that, then we need a scanning tab to clarify things."
"We find the solution to be a bit expensive."
"I think cloud security and SASE are areas of concern in the product where improvements are required. The tool's cloud version has to be improved in terms of the security it offers."
"It takes about two business days for initial support, which is too slow in urgent situations."
"The solution's installation from a central installation server could be improved because the engineers had a little bit of trouble getting it installed from a central location."
"To improve Fortinet, we need to see more features and technology areas at the endpoint level introduced."
"Dashboard creation is one of the areas for improvement in CrowdStrike Falcon. Sometimes, management asks for a custom dashboard, so my team has to collect data from CrowdStrike Falcon, integrate that in Splunk, then create the dashboard in Splunk. The Splunk dashboard is more elaborate, so the CrowdStrike Falcon dashboard needs improvement. Another area for improvement in the tool is the malware detection report, as it needs to be more detailed and include some graphics so that if you want to present that data in a nutshell, it's easier to do. For example, the report should consist of some graphical representation that shows a month's worth of data. In terms of an additional feature I'd like CrowdStrike Falcon to have, it's the device posture assessment feature that detects the device posture within the network. Whichever device connects to the corporate network, my company should be able to analyze the device posture. Then there should be communication with the network, which means that as soon as a device connects, CrowdStrike Falcon can assess the device posture, detect its corporate asset, and decide whether it should be allowed on the network."
"The biggest issue with Falcon as a standalone product is it doesn't have very much reporting."
"Forensic controls have room for improvement."
"The malware analysis could be improved, as that's what we use the solution for the most and that change would make it a better EDR tool."
"An improvement would be to extend support to legacy and unsupported servers."
"I would love to see more investment in Insight because CrowdStrike have an opportunity to potentially displace some of the vulnerability management vendors with the visibility they can see over time. I want to see them continue to evolve, e.g., what other things can they disrupt which are operational things we have to continue to do as an organization."
"I would like to see equal support across all versions. Aside from that, I would say most of the features are there."
"CrowdStrike Falcon could improve the logs by making them free to the API."
"I would like to have more integrations and custom plugins to input. Integration is always a big deal in a lot of different environments."
"The most painful thing is the interface. It's a bit unclear sometimes."
"The solution can give a lot of false positives."
"The reporting could be improved."
"The solution needs to improve the reporting and tracking capabilities."
"The performance could improve in future releases. We have had performance issues in specialized web environments, but overall I think the problems are less than 2% of the computer systems being used."
"The main issues are the network connection because different customers have issues with their networks. It's difficult implementing this type of solution because the network is the main feature in the architecture for these types of solutions. Tanium could improve by creating some network optimization."
"The solution lacks mobility."
CrowdStrike Falcon is ranked 3rd in Endpoint Protection Platform (EPP) with 107 reviews while Tanium is ranked 36th in Endpoint Protection Platform (EPP) with 15 reviews. CrowdStrike Falcon is rated 8.8, while Tanium is rated 7.4. The top reviewer of CrowdStrike Falcon writes "Easy to set up with good behavior-based analysis but needs a single-click recovery option". On the other hand, the top reviewer of Tanium writes "Useful tool for vulnerability management and deploying applications, needing improvement in its OS upgrade". CrowdStrike Falcon is most compared with Microsoft Defender XDR, Darktrace, Microsoft Defender for Endpoint, Trend Micro Deep Security and Cortex XDR by Palo Alto Networks, whereas Tanium is most compared with Microsoft Defender for Endpoint, Microsoft Configuration Manager, Qualys VMDR, ServiceNow Discovery and Tenable Security Center. See our CrowdStrike Falcon vs. Tanium report.
See our list of best Endpoint Protection Platform (EPP) vendors and best Endpoint Detection and Response (EDR) vendors.
We monitor all Endpoint Protection Platform (EPP) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.