We performed a comparison between Kaspersky Endpoint Security for Business and SentinelOne based on our users’ reviews in four categories. After reading all of the collected data, you can find our conclusion below.
Comparison Results: Based on our users’ reviews, SentinelOne is a stronger, more secure solution. SentinelOne offers a deeper and more robust level of security. Additionally, SentinelOne provides consistent protection across Windows, Linux, and macOS. It can also support legacy infrastructures as well as many newer environments. The single-pane feature helps protect numerous endpoints with a lean team, saving time and money and improving TCO and ROI. Users are also happier with SentinelOne’s pricing.
"The product's initial setup phase is very easy."
"Forensics is a valuable feature of Fortinet FortiEDR."
"Ability to get forensics details and also memory exfiltration."
"The setup is pretty simple."
"It is stable and scalable."
"We have FortiEDR installed on all our systems. This protects them from any threats."
"The price is low and quite competitive with others."
"I get alerts when scripts are detected in the environment."
"find some of the most valuable features to be the anti-malware, encryption, and the EDR launching service."
"The blocking feature is the most valuable feature."
"Antivirus, including anti-spam, trojan, and worm detection and prevention. Kaspersky has a comprehensive virus definition update which is very helpful for threat prevention."
"Using dashboards, it is very easy to manage."
"The security and vulnerability assessment features are valuable."
"It offers very good security protection."
"Deployment and centralized management are essential for us because of the number of loads that we have along with the number of geographic locations where we are based."
"I think that all the features are valuable for our environment."
"SentinelOne has helped us to improve our security by fine-tuning our current use cases and creating new ones."
"It delivers the type of security which we were hoping for, since we have a lot of different endpoint users utilizing different types of software. We have people who only use Office software, like email, Word, and PDFs. Then, we have people who use some applications that other people wrote. We also write applications in-house using people who develop software. Therefore, we have some machines using very high-end developer software for mechanical development, electronic development, and software development. Those users are used to managing their PC on their own. The centralize platform allows us to differentiate between those three groups of people. We have overall control and can oversee the security levels at all the endpoints. They have not yet been blocked in any way when performing the functions"
"The most valuable feature is the ability to drill down into individual sequences of processes."
"The detection rate for Sentinel One has been excellent and we have been able to resolve many potential threats with zero client impact. The ability to deploy via our RMM allows us to quickly secure new clients and provides peace of mind."
"I find the application inventory feature to be extremely useful."
"The most valuable features are forensic investigation and ransomware prevention."
"What I like best about SentinelOne Singularity Complete is its web-based admin interface, which allows me to go into the platform, look at the entire organization, particularly all of the sentinels or endpoints, and manage everything from there."
"The most useful feature of all is deep visibility."
"The only minor concern is occasional interference with desired programs."
"They can include the automation for the realtime updates. We have a network infrastructure with remote sites. Whenever they send updates, they are not automated. We have to go into the console and push those updates. I wish it was more automated. The update file is currently around 31 MB. It could be smaller."
"We'd like to see more one-to-one product presentations for the distribution channels."
"FortiEDR could add a separate scanning dashboard. In incident management, we prefer to remove the endpoint system from the environment and scan the system. We typically use Symantec for that, but if we want to use FortiEDR for that, then we need a scanning tab to clarify things."
"The amount of usage, the number of details we get, or the number of options that can be tweaked is limited in comparison to that with other EDR solutions"
"To improve Fortinet, we need to see more features and technology areas at the endpoint level introduced."
"ZTNA can improve latency."
"There's room for improvement in the quick response time and technical support for integration issues, especially when dealing with multiple vendors."
"We have zero-day detection of malware but it cannot detect other types of unknown intrusions."
"There are quite a number of areas for improvement. The first area for improvement is that I find this solution to be very resource intensive when you're running a particular task, even a mere scanning task, even though it's running in the background. When you go to inspect the resources you realize it makes the machine very slow. It takes up a lot of resources even though there are no particular scanning tasks scheduled to run. That's one of the issues."
"The process for upgrades is very slow."
"The GUI mode in the product is an area with certain shortcomings since it looks old with the graphics provided by Kaspersky."
"From time to time, some users loose connection via the Network Agent."
"The performance of our machines tended to slow down under Kaspersky. That definitely needs to be addressed. I remember I had a pretty good Dell Notebook, and this product slowed it down quite a bit."
"The product needs to incorporate training programs or webinars for users. The solution needs to improve its support as well. It also needs to detect ransomware."
"This product could be improved by integration with Linux. The one limitation this product has is that it's not compatible with and doesn't offer protection for Linux servers. It could also be easier to configure."
"I would like to see something a little more sophisticated than simply being able to mark a false positive as safe or there's usually just one or two options in certain areas and they're a little rudimentary at this stage."
"The role-based access is in dire need of improvement. We actually discussed this on a roadmap call and were informed that it was coming, but then it was delayed. It limits the roles that you can have in the platform, and we require several custom roles. We work with a lot of third-parties whom we rely on for some of our IT services. Part of those are an external SOC function where they are over-provisioned in the solution because there isn't anything relevant for the level of work that they do."
"We are now using an external monitoring tool to monitor the services of SentinelOne, because apparently they don't have any solution for that. When the SentinelOne agent is down, you can go to the interface and see a mark on SentinelOne that something is not correct or the server needs to be rebooted, but you will not get an alert. You will not be warned that there is an issue with the SentinelOne agent. I have found that a little bit disturbing, because then we need to use a third-party monitoring tool to make sure that all services of SentinelOne are up and running."
"The solution needs better reporting on new threats and malware. The reporting is present, but I can't find the information easily."
"The way Singularity Complete handles blocking external mass storage is annoying because it is so difficult to unblock single endpoints."
"SentinelOne is causing a problem with the data service that causes one of our applications to crash randomly. We're still looking for a permanent fix, but we have implemented a temporary workaround that excludes that application from the scan."
"It's good on Linux, and Windows is pretty good except that the Windows agents sometimes ask for a lot of resources on the endpoints. That could be in the fine-tuning for scanning. In Mac, they are complaining about the same problems, that it's using a lot of resources, but that could also be that we have to configure what it is scanning and what it should not scan. Currently it scans everything."
"SentinelOne needs to provide more documentation for administrators and analytics."
More Kaspersky Endpoint Security for Business Pricing and Cost Advice →
More SentinelOne Singularity Complete Pricing and Cost Advice →
Kaspersky Endpoint Security for Business is ranked 11th in Endpoint Detection and Response (EDR) with 111 reviews while SentinelOne Singularity Complete is ranked 2nd in Endpoint Detection and Response (EDR) with 177 reviews. Kaspersky Endpoint Security for Business is rated 8.0, while SentinelOne Singularity Complete is rated 8.8. The top reviewer of Kaspersky Endpoint Security for Business writes "Easy to setup, stable and good security use cases". On the other hand, the top reviewer of SentinelOne Singularity Complete writes "Provides peace of mind and is good at ingesting data and correlating". Kaspersky Endpoint Security for Business is most compared with Microsoft Defender for Endpoint, Fortinet FortiClient, CrowdStrike Falcon, ESET Endpoint Protection Platform and Trend Vision One Endpoint Security, whereas SentinelOne Singularity Complete is most compared with Microsoft Defender for Endpoint, Darktrace, CrowdStrike Falcon, ThreatLocker Protect and Check Point Harmony Endpoint. See our Kaspersky Endpoint Security for Business vs. SentinelOne Singularity Complete report.
See our list of best Endpoint Detection and Response (EDR) vendors and best Endpoint Protection Platform (EPP) vendors.
We monitor all Endpoint Detection and Response (EDR) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.