Cybereason Endpoint Detection & Response Reviews

Name: Cybereason Endpoint Detection & Response
Brand: Cybereason
Rating: 4.0 (21 reviews)

4.0 out of 5

21 reviews
88% willing to recommend

1,427 followers

What is Cybereason Endpoint Detection & Response?

Cybereason's Endpoint Detection and Response platform detects in real-time both signature and non-signature-based attacks and accelerates incident investigation and response. Cybereason connects together individual pieces of evidence to form a complete picture of a malicious operation.

Get the Cybereason Endpoint Detection & Response Buyer's Guide and find out what your peers are saying about Cybereason Endpoint Detection & Response, CrowdStrike Falcon, Microsoft Defender for Endpoint and more!

Cybereason Endpoint Detection & Response is the #35 ranked solution in EDR tools and #41 ranked solution in endpoint security software. PeerSpot users give Cybereason Endpoint Detection & Response an average rating of 8.0 out of 10. Cybereason Endpoint Detection & Response is most commonly compared to CrowdStrike Falcon: Cybereason Endpoint Detection & Response vs CrowdStrike Falcon. Cybereason Endpoint Detection & Response is popular among the large enterprise segment, accounting for 52% of users researching this solution on PeerSpot. The top industry researching this solution are professionals from a computer software company, accounting for 19% of all views.

Buyer's Guide

Cybereason Endpoint Detection & Response

January 2025

Get the report

Helped 831,020 peers since 2012

Featured reviews

Chad Kliewer

Information Security Officer at PTCI

The ease of use and dashboards are improving. We came in at a time when they were developing a new dashboard screen. Therefore, we have had some confusing times between the old and new dashboards. Knowing how the new one works, I have seen vast improvements with it. While the product is very good, there are still some areas for improvement. The initial triage area could be a bit simpler. They get into the weeds real fast; it gets very detailed very fast. I am still looking for an easier triage layer on top with the ability to dig deeper. They are improving on this because I have seen some improvements in the user interface that helps with this. Part of it was moving two different screens into one, merging the two together. It is very good, but it is very technically detailed and would be harder for an entry-level person to decipher. However, improvements are being made. It leverages indicators of behavior to help us remediate faster against attacks. Sometimes, I wish there was more detail on why they consider it malicious.

Read full review

AtulChaurasia

Operational Technical Security at Metro Bank

The initial setup process is straightforward. We have to install the agent, create a package, and deploy it on servers. It has a prebuilt console managed by the cloud team of Cybereason. We don't have to worry about the console and concentrate on endpoint implementation. It takes ten days to deploy it on 10,000 devices.

Read full review

DanielHernandez

Information Security Analyst at a comms service provider with 51-200 employees

I have found their file search really useful as well as their investigation feature. Outside of the management console, their defenders platform is incredibly useful with great content for learning about their features and how the software operates. Cybereason helps us to mitigate and isolate on the fly. If a malware has been identified, we get various options to mitigate, depending on what we believe is the best option for that specific malware type. We can quarantine the file or isolate the whole asset from being able to talk to the network. It helps us reach our goals of threat hunting as far as incident response goes, since timing is of the essence. It is very important for us to have that ability to do it with one click, and not have to reach out to the system owner before we can take action. All the information that they have in the Cybereason XDR platform helps a lot. You can see all their dashboards, etc. Overall, I would rate it as 8.5 to 9 out of 10 for ease of use. It didn't take us too long to figure out their platform.

Read full review

Cybereason Endpoint Detection & Response mindshare

Product category:

As of January 2025, the mindshare of Cybereason Endpoint Detection & Response in the Endpoint Detection and Response (EDR) category stands at 1.3%, down from 1.4% compared to the previous year, according to calculations based on PeerSpot user engagement data.

Endpoint Detection and Response (EDR)

PeerAnalyst reports

Type	Title	Date
Category	Endpoint Detection and Response (EDR)	Jan 17, 2025	Download
Product	Reviews, tips, and advice from real users	Jan 17, 2025	Download
Comparison	Cybereason Endpoint Detection & Response vs CrowdStrike Falcon	Jan 17, 2025	Download
Comparison	Cybereason Endpoint Detection & Response vs Microsoft Defender for Endpoint	Jan 17, 2025	Download
Comparison	Cybereason Endpoint Detection & Response vs SentinelOne Singularity Complete	Jan 17, 2025	Download

Title	Rating	Mindshare	Recommending
CrowdStrike Falcon	4.3	16.9%	97%	122 interviews Add to research
Microsoft Defender for Endpoint	4.0	12.3%	94%	190 interviews Add to research

Valuable Features

Cybereason Endpoint Detection & Response excels with its AI-driven threat analysis, real-time attack visualization, and adaptable fuzzy logic rules. Its ability to detect anomalies swiftly, reduce false positives, and automate threat responses enhances security efficacy. Users value its user-friendly dashboard, cross-operating system compatibility, and lightweight operation without disrupting workflows. The solution's comprehensive reporting, high-fidelity alerts, and intuitive threat-hunting interface empower teams to manage security effectively across multiple platforms.

"What I find most valuable is the clarity of the platform."
"What I find most valuable is the clarity of the platform. It is very straightforward."
"The initial setup was straightforward."

Room for Improvement

Cybereason Endpoint Detection & Response requires improvements in technical support, stability, and integration, particularly with Microsoft solutions. Users note challenges with deployment complexity, high resource demands, and limited reporting capabilities. The lack of a comprehensive dashboard and intuitive user interface complicates usability and triage processes. Compatibility issues with Linux, Micro OS, and PowerShell present additional difficulties. Improved automation and customized grouping options would enhance functionality and efficiency, specifically in policy management and endpoint grouping.

"I feel it is a shame that I cannot create groups of groups with inheritance."
"I would like to see improvements on the operational side, specifically in grouping."
"There is room for improvement in the product features related to device control, particularly USB management."

ROI

Cybereason Endpoint Detection & Response alerts when a computer contacts a malicious host, cutting it off from the network and increasing security visibility fivefold. It assists teams by centralizing information, which helps manage threats efficiently. Users appreciate the increased visibility and believe they will see positive return on investment in 12 to 24 months. Cybersecurity teams have been able to clean environments by removing malicious software and reduce time responding to threats by at least 50%.

Pricing

Enterprise buyers find Cybereason Endpoint Detection & Response's pricing to be endpoint-based and generally competitive, although some consider it expensive. Standard licensing includes comprehensive features, often without additional charges. While some appreciate its cost-effectiveness compared to larger competitors, others recommend verifying feature functionality. Setup costs vary; those with existing user expertise reported lower expenses. There might be opportunities for flexible pricing negotiations, but it's crucial to ensure the product meets specific organizational needs.

"Though it is not the cheapest solution but it fits our budget. We pay an annual licensing fee."
"The pricing is manageable."
"On a scale of one to ten, where one is cheap and ten is expensive, I rate the pricing an eight."

Popular Use Cases

Organizations primarily use Cybereason Endpoint Detection & Response for endpoint protection, threat detection, and monitoring across various operating systems such as Windows, Mac, Linux, Android, and iOS. It is valued for its threat hunting capabilities, behavioral analytics, and ability to flag malware and other attacks. Many utilize its dashboard for incident tracking and remediation, with deployment occurring across diverse environments, securing thousands of endpoints for enhanced security postures.

Service and Support

Cybereason Endpoint Detection & Response customer service is generally well-regarded. Users note that support is knowledgeable, responsive, and helpful, though improvements in responsiveness and resolution times are desired. Some have experienced delayed responses requiring escalation to engineering. Overall satisfaction is high, with ratings frequently between 7 and 9 out of 10. Users appreciate the team's competence and the understanding of business needs, indicating a need for more proactive communication on feature updates and progress.

Deployment

Many describe Cybereason Endpoint Detection & Response's initial setup as straightforward, often requiring dedicated packages tailored to infrastructure needs. Deployment times varied, with some completing in weeks and others taking months. Assistance from vendors and support resources facilitated the process. While some faced issues, these were generally resolved quickly. Organizations managed deployment efficiently regardless of endpoint numbers and used tools and manual methods. Scalability allowed for easy expansion.

Scalability

Cybereason Endpoint Detection & Response proves highly scalable, supporting deployments ranging from thousands to over 200,000 devices. Its intuitive scalability expands easily with additional services like detection or disk space, accommodating complex company structures effortlessly. Users experience minimal disruption even when scaling rapidly, reporting efficient performance without degradation. Maintenance is straightforward, involving periodic upgrades to sensors and policy tweaks. Its flexibility suits various organizational sizes and global expansions, consistently managing numerous endpoints and enabling seamless user access.

Stability

Cybereason Endpoint Detection & Response exhibits strong stability, praised by users for maintaining uptime and protection. While some encountered integration issues and downtime during upgrades, many report its reliability with minimal bugs or crashes. Organizations highlight better performance compared to previous systems, noting fewer glitches and improved computing speed. Some users faced negligible stability problems and found immediate resolutions. Cybereason advises awaiting updates for enhanced versions to maintain consistent reliability.

These insights are based on the in-depth reviews provided by peers to help you make a better buying decision.

Download our Cybereason Endpoint Detection & Response Buyer's Guide for additional reliable information.