Cybereason's Endpoint Detection and Response platform detects in real-time both signature and non-signature-based attacks and accelerates incident investigation and response. Cybereason connects together individual pieces of evidence to form a complete picture of a malicious operation.
The most valuable features of Cybereason Endpoint Detection & Response include its flexibility and ability to scale, the support provided, the coverage across different operating systems, the detailed information and context it provides for events, the file search and investigation features, and the ability to mitigate and isolate threats.
Users like the operation-centric approach to security, the adaptability to attacks, the threat hunting and investigation capabilities, the user-friendly dashboards, and the real-time visibility of malicious operations.
Improvements are needed in the technical support services. Additionally, a centralized dashboard with customizable options and improved visibility for IT administrators is desired. The triage area could be simpler and provide easier access to more detailed information.
Compatibility improvements for Microsoft PowerShell protections are necessary. The dashboards are minimal and lack valuable features. There is a higher number of false positives and duplication of alerts compared to the previous endpoint solution.
The high CPU and memory usage need to be addressed. More automation, such as policy management via the API, would be beneficial. The deployment process may be too complicated for smaller organizations. The solution can be confusing for end-users, and the reporting functionality needs improvement.
Cybereason Endpoint Detection & Response has provided significant benefits in that it consolidates all the information into a single interface, allowing teams to quickly assess the impact on machines and users. This enhanced visibility has prompted teams to extensively analyze their environment across different networks, resulting in an increase in visibility.
Cybereason Endpoint Detection & Response offers a transparent pricing structure without setup costs, ensuring a seamless integration for users. Pricing methods typically involve subscription-based models, accommodating per-endpoint or per-user licensing options. The pricing range is flexible, catering to organizations of varying sizes and security needs, delivering comprehensive endpoint security solutions.
The primary use case of Cybereason Endpoint Detection & Response is for threat detection and remediation, as well as endpoint protection. It is used to protect a diverse environment of different operating systems, including Macs, Windows, Linux, Android, and iOS.
The product provides traditional signature-based antivirus to all endpoints and additional protection through behavioral learning and predictions. It is also used for threat hunting and has been helpful in preventing imminent threats such as Apache and ransomware attacks.
The customer service and support of Cybereason Endpoint Detection & Response is mixed. Some customers find the support to be helpful and responsive, while others believe that it could be better. There have been instances where issues had to be escalated to engineering, resulting in longer resolution times.
The initial setup for Cybereason Endpoint Detection & Response was generally described as straightforward and easy. It didn't take too long to deploy, with some mentioning a few days or a month for deployment. The process involved installing the client and fine-tuning policies or groupings. However, for some, the deployment took longer due to considerations such as the size of the company or compatibility issues with certain systems.
Cybereason Endpoint Detection & Response is highly scalable and can easily accommodate company expansion. Adding additional licenses is seamless and there are no issues with scalability. Users have reported no problems with scaling even with a large number of endpoints.
The solution is considered fairly easy to scale once users become comfortable with it. It has been successfully rolled out globally to a significant number of users without any difficulties.
Cybereason Endpoint Detection & Response has been consistently reliable and stable. There have been no issues with bugs, glitches, crashes, or freezing. The overall performance has been good. However, some users have experienced downtime during system upgrades, indicating a need for improvement in cloud service stability.
Cybereason Endpoint Detection & Response was previously known as Cybereason EDR, Cybereason Deep Detect & Respond.
Lockheed Martin, Spark Capital, DocuSign, Softbank Capital