Try our new research platform with insights from 80,000+ expert users

Cisco Secure Endpoint vs Kaspersky Endpoint Detection and Response comparison

Cisco and Kaspersky are both solutions in the Endpoint Detection and Response (EDR) category. Cisco is ranked #12 with an average rating of 8.3, while Kaspersky is ranked #21 with an average rating of 8.0. Cisco holds a 1.6% mindshare in EDR, compared to Kaspersky’s 1.8% mindshare. Additionally, 96% of Cisco users are willing to recommend the solution, compared to 93% of Kaspersky users who would recommend it.
Cisco Secure Endpoint
Read 49 Cisco Secure Endpoint reviews
  • 4,291 Views
  • 2,722 Comparison Views
96% willing to recommend
Kaspersky Endpoint Detectio...
Read 17 Kaspersky Endpoint Detection and Response reviews
  • 1,445 Views
  • 1,280 Comparison Views
93% willing to recommend
 

Comparison Buyer's Guide

Download the report
Executive SummaryUpdated on Sep 9, 2024

Cisco Secure Endpoint and Kaspersky Endpoint Detection and Response compete in endpoint security. Kaspersky is preferred for its robust features, while Cisco is noted for its better customer service and deployment efficiency.

Features: Cisco Secure Endpoint users commend its advanced threat protection, seamless integration capabilities, and overall deployment efficiency. Kaspersky Endpoint Detection and Response is notable for its comprehensive detection abilities, detailed analytics, and superior detection features.

Room for Improvement: Cisco users suggest enhancements in performance speed, reporting features, and integration with third-party applications. Kaspersky users want better third-party application integration, an enhanced alert system, and improvements in customer support responsiveness.

Ease of Deployment and Customer Service: Cisco Secure Endpoint is highlighted for its ease of deployment and excellent customer support. Kaspersky Endpoint Detection and Response has a more complex deployment process and less responsive support compared to Cisco.

Pricing and ROI: Cisco Secure Endpoint users find the pricing competitive with a good ROI. Kaspersky users acknowledge the product's higher cost but feel the extensive features justify the price. Cisco is cost-effective, whereas Kaspersky offers substantial benefits for the higher investment.

DOWNLOAD THE COMPLETE REPORT
To learn more, read our detailed Cisco Secure Endpoint vs. Kaspersky Endpoint Detection and Response Report (Updated: April 2025).
Buyer's Guide
Cisco Secure Endpoint vs. Kaspersky Endpoint Detection and Response
April 2025
Download the complete report
Helped 848,396 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Categories and Ranking

Cisco Secure Endpoint
Ranking in Endpoint Detection and Response (EDR)
12th
Average Rating
8.6
Reviews Sentiment
7.2
Number of Reviews
49
Ranking in other categories
Endpoint Protection Platform (EPP) (13th), Cisco Security Portfolio (5th)
Kaspersky Endpoint Detectio...
Ranking in Endpoint Detection and Response (EDR)
21st
Average Rating
8.0
Reviews Sentiment
7.4
Number of Reviews
17
Ranking in other categories
No ranking in other categories
 

Mindshare comparison

As of April 2025, in the Endpoint Detection and Response (EDR) category, the mindshare of Cisco Secure Endpoint is 1.6%, down from 2.1% compared to the previous year. The mindshare of Kaspersky Endpoint Detection and Response is 1.8%, up from 0.1% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Endpoint Detection and Response (EDR)
 

Featured Reviews

Mark Broughton - PeerSpot reviewer
Tighter integration with Umbrella and Firepower gave us eye-opening information
We were using a third-party help desk. One of the ways that they were fixing problems was to delete the client and then add the client back if there was an issue where the client had stopped communicating. Any improvement in the client communicating back to the server would be good, particularly for machines that are offline for a couple of weeks. A lot of our guys were working on a rotation where the machine might be offline for that long. They were also terrible about rebooting their machines, so those network connections didn't necessarily get refreshed. So, anything that could improve that communication would be good. Also, an easier way to do deduplication of machines, or be alerted to the fact that there's more than one instance of a machine, would be useful. If you could say, "Okay, we've got these two machines. This one says it's not reporting and this one says it's been reporting. Obviously, somebody did a reinstall," it would help. That way you could get a more accurate device count, so you're not having an inflated number. Not that Cisco was going to come down on you and say, "Oh, you're using too many licenses," right away. But to have a much more accurate license usage count by being able to better dedupe the records would be good. I also sent over a couple of other ideas to our technical rep. A lot of that had to do with the reporting options. It would be really nice to be able to do a lot more in the reporting. You can't really drill down into the reports that are there. The reporting and the need for the documentation to be updated and current would be my two biggest areas of complaint. Also, there was one section when I was playing with the automation where it was asking for the endpoint type rather than the machine name. If I could have just put in the machine name, that would have been great. So there are some opportunities, when it comes to searching, to have more options. If I wanted to search, for example, by a Mac address because, for some reason, I thought there was a duplication and I didn't have the machine name, how could I pull it up with the Mac address? When you're getting to that level, you're really starting to get into the ticky tacky. I would definitely put the reporting and documentation way ahead of that.
Read full review
FarkhundAbbas - PeerSpot reviewer
Provides the ability to send detected malware to Kaspersky's sandbox environment for behavioral analysis
Kaspersky's support team is not that much supportive. If we need any help from them, they do not provide a good solution, and it takes too long to resolve the issue. This is the main thing because some cases are easy and need urgent resolution. However, when we create a support ticket, it takes three days to get it planned, and we have urgent requirements. So, the ticketing process needs improvement.
Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"It provides real-time visibility and control over endpoints, allowing its users to promptly respond to any security incidents and remediate any vulnerabilities."
"It used to take us a month to find out that something is infected, we now know that same day, as soon it is infected."
"Definitely, the best feature for Cisco Secure Endpoint is the integration with Talos. On the backend, Talos checks all the signatures, all the malware, and for any attacks going on around the world... Because Secure Endpoint has a connection to it, we get protected by it right then and there."
"The solution makes it possible to see a threat once and block it everywhere across all endpoints and the entire security platform. It has the ability to block right down to the file and application level across all devices based on policies, such as, blacklisting and whitelisting of software and applications. This is good. Its strength is the ability to identify threats very quickly, then lock them and the network down and block the threats across the organization and all devices, which is what you want. You don't want to be spending time working out how to block something. You want to block something very quickly, letting that flow through to all the devices and avoiding the same scenario on different operating systems."
"appreciate the File Trajectory feature, as it's excellent for an analyst or mobile analyst. I can track everything that happens on our server from my PC or device. Integration with SecureX is a welcome feature because it connects Cisco's integrated security portfolio with our complete infrastructure. Sandboxing is helpful, and integration with the Cisco environment is excellent as we use many of their products, and that's very valuable for us."
"The VPN is most valuable. It's the best thing in the market today. We can use two-factor authentication with another platform, and we can authenticate with two-factor."
"There are several valuable features including strong prevention and exceptional reporting capabilities."
"It is a very stable program."
More Cisco Secure Endpoint pros
"The tool is easy to use."
"From my point of view, one of the best aspects of Kaspersky Endpoint Detection and Response is its high detection rate, which surpasses many other solutions. Its valuable features include behavior detection, threat prevention, device control, adaptive anomaly control, and centralized protection detection."
"It is a secure solution with a lot of IT management features."
"The most valuable aspect of the product is its consolidated features."
"Kaspersky EDR is far superior to other products. It gives detailed information about malware, geolocation, and more. Also, the agent itself is very lightweight compared to other products. The packages and updates were quite small in size, just a few KBs."
"We have a concept of working from home. Most endpoints are not in the domain. It is our first line of defense. While we had Kaspersky deployed, it gave good insight into the upcoming challenge or threat."
"Stability-wise, I rate the solution a ten out of ten."
"It downloads essential security patches that are valuable for my PC."
More Kaspersky Endpoint Detection and Response pros
 

Cons

"The integration of the Cisco products for security could be better in the sense that not everything is integrated, and they aren't working together. In addition, not all products are multi-tenant, so you can't separate different customer environments from each other, which makes it a little bit hard for a managed service provider to deliver services to the customers."
"...the greatest value of all, would be to make the security into a single pane of glass. Whilst these products are largely integrated from a Talos perspective, they're not integrated from a portal perspective. For example, we have to look at an Umbrella portal and a separate AMP portal. We also have to look at a separate portal for the firewalls. If I could wave a magic wand and have one thing, I would put all the Cisco products into one, simple management portal."
"An easier way to do deduplication of machines, or be alerted to the fact that there's more than one instance of a machine, would be useful... That way you could get a more accurate device count, so you're not having an inflated number."
"The Linux agent is a simple offline classic agent, and it doesn't support Secure Boot, which is important to have on a Linux machine. The Linux agent has conflicts with other solutions, including the Exploit Prevention system found in Windows servers. We didn't find a fix during troubleshooting, and Cisco couldn't offer one either. Eventually, we had to shut down the Exploit Prevention system. We didn't like that as we always want a solution that can fit smoothly into the setup without causing problems, especially where security is concerned. The tool also caused CPU spikes on our production machine, and we were seriously considering moving to another product."
"In Orbital, there are tons of prebuilt queries, but there is not a lot of information in lay terms. There isn't enough information to help us with what we're looking for and why we are looking for it with this query. There are probably a dozen queries in there that really focus on what I need to focus on, but they are not always easy to find the first time through."
"One of the things that Cisco Secure Endpoint really needs is that it's not just Secure Endpoint, it's a point product, and I think we really need to move into solution-based selling, designing, and architecting. So that we're not worried about putting things on endpoints and selling 'x' amount of endpoints, but to provide a solution that covers all of the remote access and sell them as solutions that cover multiple things."
"Due to the complexity of the technology that is used and its advanced threat detection capabilities, it is possible to encounter many delays in operation."
"Maybe there is room for improvement in some of the automated remediation. We have other tools in place that AMP feeds into that allow for that to happen, so I look at it as one seamless solution. But if you're buying AMP all by itself, I don't know if it can remove malicious software after the fact or if it requires the other tools that we use to do some of that."
More Cisco Secure Endpoint cons
"There is room for improvement in the support."
"One of the main areas where the tool could improve is its integration capabilities. For example, I find it challenging to integrate it with other solutions. It would be helpful if the tool could make it more open to integration with other tools."
"It needs improvement in communication between the network and endpoint, as well as between endpoint and server."
"Kaspersky Endpoint Detection and Response is expensive. It should improve its stability."
"Kaspersky is not an XDR solution. With an XDR solution, we could gain some more time."
"The solution must provide better security."
"Kaspersky Endpoint Detection and Response lacks configuration options."
"Incorporating an AI protection tool with the capability to detect and prevent zero-day threats, particularly those with a five-star rating in terms of severity would be beneficial."
More Kaspersky Endpoint Detection and Response cons
 

Pricing and Cost Advice

"The costs of 50 licenses of AMP for three years is around $9,360."
"The price is very fair to the customer."
"Its price is fair for us."
"We had faced some license issues, but it has been improved. At the beginning of the implementation, we faced a lot of licensing issues, but now, we have EA licensing, which gives us an opportunity to grow."
"The pricing and licensing are reasonable. The cost of AMP for Endpoints is inline with all the other software that has a monthly endpoint cost. It might be a little bit higher than other antivirus type products, but we're only talking about a dollar a month per user. I don't see that cost as being an issue if it's going to give us the confidence and security that we're looking for. We have had a lot of success and happiness with what we're using, so there's no point in changing."
"The visibility that we have into the endpoint and the forensics that we're able to collect give us value for the price. This is not an overly expensive solution, considering all the things that are provided. You get great performance and value for the cost."
"Cisco's pricing is reasonable. We also do not need to opt for niche players, which would have charged us significantly more than Cisco for ecosystem solutions. We are highly satisfied with the pricing structure of Cisco's solutions they are reasonable."
"It is an expensive solution."
More Cisco Secure Endpoint pricing and cost advice
"The solution is not cheap, but it is not expensive."
"I rate the product price a five on a scale of one to ten, where one is low price and ten is high price."
"I was satisfied with the pricing of Kaspersky."
"I would say that their pricing is generally competitive and attractive."
"Yearly payments are to be made toward the licensing costs of the solution."
"The tool's pricing was high during the last renewal."
"The pricing falls within the average range."
"It is cost-effective in terms of services and features compared to other more expensive EDR solutions like CrowdStrike and Trend Micro."
More Kaspersky Endpoint Detection and Response pricing and cost advice
report
See which vendors are best for you
Use our free recommendation engine to learn which Endpoint Detection and Response (EDR) solutions are best for your needs.
See recommendations
848,396 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Computer Software Company
18%
Government
9%
Financial Services Firm
9%
Manufacturing Company
8%
Financial Services Firm
11%
Comms Service Provider
10%
Retailer
10%
Manufacturing Company
8%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
 

Questions from the Community

What do you like most about Cisco Secure Endpoint?
The product's initial setup phase was very simple.
See all answers
What is your experience regarding pricing and costs for Cisco Secure Endpoint?
Cisco is aggressive in pricing, making it competitive and sometimes even cheaper than other good products like CrowdStrike, Microsoft Defender, or SentinelOne.
See all answers
What needs improvement with Cisco Secure Endpoint?
Cisco Secure Endpoint lacks features like DLP which other vendors offer. XDR is new, so integration capabilities with third-party tools need improvement. The forensic capabilities need enhancement,...
See all answers
What do you like most about Kaspersky Endpoint Detection and Response?
Kaspersky EDR offers automated response capabilities, enhancing efficiency by enabling quick investigation and response to potential threats on Android devices.
See all answers
What is your experience regarding pricing and costs for Kaspersky Endpoint Detection and Response?
Kaspersky has a better price than other marketplace solutions. Due to this, they are growing significantly. I like the price. I'd rate it nine out of ten.
See all answers
What needs improvement with Kaspersky Endpoint Detection and Response?
Cortex is better in the security features, yet Cortex doesn't have IT management features like Kaspersky. Kaspersky is not an XDR solution. With an XDR solution, we could gain some more time.
See all answers
 

Comparisons

Microsoft Defender for Endpoint vs Cisco Secure Endpoint Logo
Microsoft Defender for Endpoint vs Cisco Secure Endpoint
Compared 15% of the time
CrowdStrike Falcon vs Cisco Secure Endpoint Logo
CrowdStrike Falcon vs Cisco Secure Endpoint
Compared 12% of the time
SentinelOne Singularity Complete vs Cisco Secure Endpoint Logo
SentinelOne Singularity Complete vs Cisco Secure Endpoint
Compared 6% of the time
Cortex XDR by Palo Alto Networks vs Cisco Secure Endpoint Logo
Cortex XDR by Palo Alto Networks vs Cisco Secure Endpoint
Compared 5% of the time
Check Point Harmony Endpoint vs Cisco Secure Endpoint Logo
Check Point Harmony Endpoint vs Cisco Secure Endpoint
Compared 4% of the time
More Cisco Secure Endpoint Competitors
CrowdStrike Falcon vs Kaspersky Endpoint Detection and Response Logo
CrowdStrike Falcon vs Kaspersky Endpoint Detection and Response
Compared 83% of the time
Sangfor Endpoint Secure vs Kaspersky Endpoint Detection and Response Logo
Sangfor Endpoint Secure vs Kaspersky Endpoint Detection and Response
Compared 7% of the time
ESET EDR/XDR vs Kaspersky Endpoint Detection and Response Logo
ESET EDR/XDR vs Kaspersky Endpoint Detection and Response
Compared 4% of the time
Microsoft Defender XDR vs Kaspersky Endpoint Detection and Response Logo
Microsoft Defender XDR vs Kaspersky Endpoint Detection and Response
Compared 2% of the time
WatchGuard EPDR vs Kaspersky Endpoint Detection and Response Logo
WatchGuard EPDR vs Kaspersky Endpoint Detection and Response
Compared 2% of the time
More Kaspersky Endpoint Detection and Response Competitors
 

Product Reports

Buyer's Guide
Cisco Secure Endpoint
April 2025
Cisco Secure Endpoint reportDownload Cisco Secure Endpoint product report
Buyer's Guide
Kaspersky Endpoint Detection and Response
April 2025
Kaspersky Endpoint Detection and Response reportDownload Kaspersky Endpoint Detection and Response product report
 

Also Known As

Cisco AMP for Endpoints
No data available
 

Overview

Cisco Secure Endpoint is a comprehensive endpoint security solution that natively includes open and extensible extended detection and response (XDR) and advanced endpoint detection and response (EDR) capabilities. Secure Endpoint offers relentless breach protection that enables you to be confident, be bold, and be fearless with one of the industry’s most trusted endpoint security solutions. It protects your hybrid workforce, helps you stay resilient, and secures what’s next with simple, comprehensive endpoint security powered by unique insights from 300,000 security customers and deep visibility from the networking leader.

Cisco Secure Endpoint was formerly known as Cisco AMP for Endpoints.

Reviews from Real Users

Cisco Secure Endpoint stands out among its competitors for a number of reasons. Two major ones are its ability to enable developers to easily secure their endpoints with one single operation using its management console and its advanced alerting techniques.

Tim C., an IT manager at Van Der Meer Consulting, writes, "The solution makes it possible to see a threat once and block it everywhere across all endpoints and the entire security platform. It has the ability to block right down to the file and application level across all devices based on policies, such as, blacklisting and whitelisting of software and applications. This is good. Its strength is the ability to identify threats very quickly, then lock them and the network down and block the threats across the organization and all devices, which is what you want. You don't want to be spending time working out how to block something. You want to block something very quickly, letting that flow through to all the devices and avoiding the same scenario on different operating systems."

Wouter H., a technical team lead network & security at Missing Piece BV, notes, "Any alert that we get is an actionable alert. Immediately, there is information that we can just click through, see the point in time, what happened, what caused it, and what automatic actions were taken. We can then choose to take any manual actions, if we want, or start our investigation. We're no longer looking at digging into information or wading through hundreds of incidents. There's a list which says where the status is assigned, e.g., under investigation or investigation finished. That is all in the console. It has taken away a lot of the administration, which we would normally be doing, and integrated it into the console for us."

Cisco

Kaspersky Endpoint Detection and Response provides robust malware detection, endpoint security, integration with SIEM, control of USB devices, and behavior analysis, deployed on servers, mobile devices, and laptops.

Kaspersky Endpoint Detection and Response aids organizations in scanning environments, blocking sites, handling data transfers, and offering visibility into quarantine systems. Utilizing features such as encryption, machine learning analysis, caching, and automation, Kaspersky ensures enhanced security. The unified agent incorporates antivirus and EDR functionalities, centralizes management, and provides sandbox analysis alongside early-stage threat detection. Automated response capabilities improve efficiency, and the tool's lightweight nature maintains device performance despite high detection rates and advanced threat prevention mechanisms.

What are some of the key features?
  • Detailed malware information – Provides in-depth data on detected threats
  • Quick policy application – Enables fast implementation of security policies
  • Customizable reporting – Allows tailored reports to suit specific needs
  • Centralized management – Simplifies control over all endpoints
  • Sandbox analysis – Inspects suspicious files in an isolated environment
  • Early-stage threat detection – Identifies threats before they cause harm
  • Unified agent – Combines antivirus and EDR functionalities for comprehensive protection
  • Automated response – Enhances efficiency by automating threat responses
What are the benefits and ROI users should look for?
  • Enhanced security – Through advanced threat detection and prevention
  • Increased efficiency – Via automated responses to threats
  • Comprehensive protection – With the integration of antivirus and EDR features
  • Centralized control – Eases management of multiple endpoints
  • Reduced impact on device performance – Thanks to the tool's lightweight nature

In industries like finance, healthcare, and retail, Kaspersky Endpoint Detection and Response can be implemented to protect sensitive data and critical systems against advanced threats. Financial institutions may leverage its high detection rates and behavior analysis to secure transactions and customer information. Healthcare organizations can utilize its sandbox analysis and early-stage threat detection to protect patient data. Retail businesses benefit from the enhanced security and efficient automated responses, ensuring customer data remains safe during transactions.

Kaspersky
 

Sample Customers

Heritage Bank, Mobile County Schools, NHL University, Thunder Bay Regional, Yokogawa Electric, Sam Houston State University, First Financial Bank
Information Not Available
Buyer's Guide
Cisco Secure Endpoint vs. Kaspersky Endpoint Detection and Response
April 2025
Free Report: Cisco Secure Endpoint vs. Kaspersky Endpoint Detection and Response
Find out what your peers are saying about Cisco Secure Endpoint vs. Kaspersky Endpoint Detection and Response and other solutions. Updated: April 2025.
DOWNLOAD NOW
848,396 professionals have used our research since 2012.
See our Cisco Secure Endpoint vs. Kaspersky Endpoint Detection and Response report.
See our list of best Endpoint Detection and Response (EDR) vendors.

We monitor all Endpoint Detection and Response (EDR) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.