CrowdStrike Falcon Complete MDR vs Cybereason Managed Detection & Response comparison

CrowdStrike and Cybereason are both solutions in the Managed Detection and Response (MDR) category. CrowdStrike is ranked #1 with an average rating of 8.6, while Cybereason is ranked #23 with an average rating of 8.0. CrowdStrike holds a 17.2% mindshare in MDR, compared to Cybereason’s 0.3% mindshare. Additionally, 100% of CrowdStrike users are willing to recommend the solution, compared to 100% of Cybereason users who would recommend it.

Comparison Buyer's Guide

Download the report

Executive Summary

We performed a comparison between CrowdStrike Falcon Complete MDR and Cybereason Managed Detection & Response based on real PeerSpot user reviews.

Find out what your peers are saying about CrowdStrike, Arctic Wolf Networks, Huntress and others in Managed Detection and Response (MDR).

To learn more, read our detailed Managed Detection and Response (MDR) Report (Updated: August 2024).

Buyer's Guide

Managed Detection and Response (MDR)

August 2024

Download the complete report

Helped 801,634 peers since 2012

Categories and Ranking

Binary Defense MDR

Mindshare comparison

As of September 2024, in the Managed Detection and Response (MDR) category, the mindshare of Binary Defense MDR is 0.5%, up from 0.4% compared to the previous year. The mindshare of CrowdStrike Falcon Complete MDR is 17.2%, up from 16.1% compared to the previous year. The mindshare of Cybereason Managed Detection & Response is 0.3%, down from 0.6% compared to the previous year. It is calculated based on PeerSpot user engagement data.

Managed Detection and Response (MDR)

Featured Reviews

Paul Farley

Corporate Vice President | Deputy Chief Information Security Officer at NCR Voyix

Jul 1, 2024

Saves money, helps reduce false positives, and has excellent customization capabilities

Sometimes, something may not install right; however, whenever we have challenges, they are very solution-oriented and ready to figure things out. While my understanding is that they're working on this, I would like to see some more of the quantification or reporting. They're working on better detecting the impact they're having and what they're working on. That's an area they should continue to focus on. Having those metrics will be valuable. They just need to continue to be focused on Open MDR, and on being open to many tools and being broadly compatible across tool sets if possible. That's unique, and it is a differentiator in the marketplace.

Read full review

Kunal Bhujbal

Associate Director at a consultancy with 11-50 employees

Feb 27, 2024

Uses AI-powered analytics, improves security posture, and automatically remediates threats

CrowdStrike's Falcon Complete service simplifies endpoint security by using a single sensor we install on our devices. Once installed, CrowdStrike's managed services take care of everything, including monitoring, threat detection, remediation, and alert management. Our customers only need to handle adding new users or groups. CrowdStrike Falcon Complete improves our ability to respond to and remediate cyber threats. CrowdStrike Falcon Complete boasts AI-powered analytics that hold significant promise. While I haven't used it personally, we'll be implementing it with a few clients. Once their quarterly reviews are completed, we should gain valuable feedback. The generative AI capabilities seem comprehensive, which is positive for our needs. The real-time threat-hunting capabilities stand out for us. Falcon Complete incident response feature works in the background where a team at the threat center reviews the detections and automatically remediates the threats. We're continually evolving our cybersecurity posture, and Falcon Complete has significantly improved our response time to cyber threats. We don't have an in-house SOC team so Falcon Complete has been crucial in helping with threat detection and resolution.

Read full review

Ivan Burke

Head of Research Development and Innovation at CSIR

Aug 21, 2023

A scalable tool with an easy initial setup phase useful to deal with incident response

My company's issue with the solution stems from the fact that for every client, we have to spin up a new Cybereason instance, so there is not a single Cybereason instance where you can manage all your clients. For every new client or every new case, my company has to spin up a new instance, because of which there is a new URL. My company has to invest in enrolling people again and add all your new IOCs back into each instance. There is no centralized way to manage multiple instances of Cybereason, which is probably the biggest issue that wouldn't allow onboarding someone new, causing a lot of effort in the initial setup, maybe through a whole different web interface at times.

Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Pros

"With Binary Defense, we don't just get an alert, but also a detailed rundown of why they're alerting us on it. They tell us what was executed, or the username, script, or IP. That way, we're not wasting time investigating."

"Our mean time to response has gone down. We're much faster with direct response and have more investigative capabilities than we did before."

"Binary Defense's most valuable feature is the 24/7 monitoring and threat hunting. Their team checks the latest breaches and how they're done."

"The biggest aspect for us is that they are able to conform to our environment and utilize our tools. That way, we still maintain ownership of all the data and access to the applications, and we never lose control of the ability to run the solution ourselves if we need to."

"The most valuable features are the SIEM and the ticketing function; the latter is very smooth and easy to read and understand. We don't have any issues looking at the ticketing information when we're trying to identify what's going on."

"The customization has been the most valuable aspect and was really the reason we ended up selecting Binary Defense. They worked with us to provide exactly the level of support, features, response, and collaboration we needed."

"Binary Defense is comprehensive. We see most of the questionable activity. Once you see things a couple of times and are familiar with the processes, you know what those are. The level of activity is definitely favorable."

"The most valuable part of Binary Defense is its team of cybersecurity analysts. Their analysts filter out the noise and only forward the critical threats that require a response instead of false positives."

More Binary Defense MDR pros

"It works as a security device and provides an extra layer of security to our devices and computers."

"CrowdStrike Falcon Complete has a very lightweight agent that provides signatureless detection protection from known and unknown malware or ransomware which is very useful."

"The AI and the group knowledge base that they get from having multiple clients in the cloud is very useful to us."

"It is a cloud-based solution. You can easily scale it."

"Two of the most valuable features of CrowdStrike Falcon Complete are the remote terminal and unlimited IoCs."

"It is very easy to manage the licenses centrally because these are cloud licenses. There is no need for manual data reports."

"Crowdstrike has better support than Carbon Black."

"The most valuable feature of Falcon Complete is that it is a full security operations center (SOC) as well as a SIEM solution, and it is fully managed. Their security teams are working 24/7 and analyzing everything happening on all endpoints. They also take care of the instant response, which includes disconnecting endpoints, taking over the endpoints and fixing them, and ransomware protection. All of these things are most valuable because it is very difficult to get all the resources in-house to do all of that yourself. So, if you can leverage the experience of a global corporation with the best reputation in the market, and it is fully managed, that's the best."

More CrowdStrike Falcon Complete MDR pros

"The most valuable feature of the solution is endpoint management...The solution's support team is quite good at giving us feedback if there is an issue."

Cons

"We found a couple of bugs in the user interface."

"I would like to get more reports from Binary Defense about what they're blocking."

"The current reporting system could benefit from improvement."

"We found that an earlier version of the agent had high memory usage and that was a bit concerning, but we raised the concern with their support team and they immediately replied that they had noticed the same thing and had a candidate fix already available... it totally fixed the issue."

"Binary Defense MDR could be even better with additional features, like automatic scans and file quarantine."

"While my understanding is that they're working on this, I would like to see some more of the quantification or reporting."

"It's hard to think of anything that they need to improve on, but just to point out something, I would like to see them provide advanced XDR."

"It's sometimes difficult to know when to engage Binary Defense or TrustedSec, their sister company. TrustedSec is more focused on offensive security, as opposed to the defensive security that the MDR solution provides. It would be awesome if there were a better bridge between that relationship for when we need to get more proactive services or when we need to do a penetration test."

More Binary Defense MDR cons

"They need to continuously integrate with other security tools such as CyberArk or Mimecast, to cover the entire IT infrastructure."

"An MDM, Mobile Device Manager, should be added in the next release."

"The technical support is good. However, the technical support is outsourced to India which causes some language barriers. I am not sure if this is still an issue, they might have allotted more suitable representatives."

"They are doing very well in continuously improving their product. The only thing is that it is completely cloud-based, and some customers don't really like that type of approach, but you can only provide such a solution when you have cloud-based intelligence. On the other end, we know that it is sometimes a breaking point for some of the customers. They could potentially have an on-prem or hybrid solution. Any antivirus needs to have its features updated. If there could be a relay between them, it would be helpful, but that's very hard to do. So, you either accept that approach and have the benefit with this little disadvantage."

"People should be able to obtain training at any point of the engagement so that if somebody who doesn't have the basic knowledge is getting thrown into it, they are able to get trained, and CrowdStrike is able to help them out. CrowdStrike is really doing what they're supposed to be doing, but it is like anything else where they have to keep up on their research and development, or they'll fall behind. This is a fast-paced environment, and I've seen that vendors that were really good three years ago are terrible now. CrowdStrike is trying to stay ahead of the bad guys. They have AI. I have not had a problem with them missing anything. If they missed something, they should just make sure that they don't miss it again and understand why they missed it. I don't know if they did."

"In a future release, it would be ideal if they could add reporting and action histories to their suite of features."

"The downside that we see with CrowdStrike is that it is not part of a broader ecosystem. It is an endpoint product. They don't sell firewalls or a broader cybersecurity ecosystem. Some of the behavioral detections could be more robust. It does a good job of stopping common tools and techniques, but when it comes to using Windows utilities, such as PowerShell, etc, it doesn't stop them. These are some of the things where we have been able to get past it. An argument there can be that these are administrative tools, not malware, so maybe it is not its job to stop it, but we see some of the competitive products doing a very good job of detecting behaviors as opposed to malware."

"We have also been using Cisco AMP for Endpoints for three years. We have received multiple detections in Cisco AMP for Endpoints, and we had to take some actions, whereas CrowdStrike has not detected anything critical since it has been implemented. Most of the incidents that it has detected are false positives. They should work on the false-positive issue. When it is implemented throughout the organization, it gets very difficult to check each false positive and investigate what is correct and what is not correct. It requires technical and manual intervention."

More CrowdStrike Falcon Complete MDR cons

"For every new client or every new case, my company has to spin up a new instance, because of which there is a new URL."

Pricing and Cost Advice

"Binary Defense has changed its pricing model from being primarily based on the volume of data to one based on escalations and incidents they handle."

"It's valued at the right price. Even with the number of endpoints we have, we don't feel that it's a lot more than any competitor. In fact, it might be less expensive when you look at the fact that you're getting a full flex SOC out of it along with the tools."

"Binary Defense MDR is priced competitively and may be slightly lower than CrowdStrike."

"After we acquired this platform, we met with a number of different vendors. Binary Defense came in with a proposal that was surprisingly affordable. In fact, we were able to recoup the cost of their services within a short period of time. This is because Binary Defense is able to provide the same level of security as a team of two or three in-house analysts but at a fraction of the cost. As a result, Binary Defense is saving us an estimated $250,000 to $300,000 per year."

"From the initial cost that Binary Defense came in with, we pared it down quite a bit over the course of 30 or 60 days. My leadership would say that their cost was high, but realistically, they were in line with the market."

"The pricing is very good. They are definitely competitive and they were lower at the time that we went with them."

"The pricing isn't that bad, it's very competitive. I don't feel that it's over-priced and I don't feel that it's under-priced."

"The pricing is on target. Working with their sales team on pricing negotiations was a pleasant process. They were very respectful of the constraints we had and I feel that we're paying a fair price."

More Binary Defense MDR pricing and cost advice

"Pricing is reasonable."

"Its price is very high. CrowdStrike Falcon Complete is 50% more expensive than Cisco AMP for Endpoints."

"The average price is approximately $500 per customer."

"CrowdStrike offers solutions with the same functionality for both large enterprises and small to medium organizations with competitive pricing."

"The licenses are sold per user."

"There is a license needed to use the solution. The price of the solution is fair."

"At approximately €60 per machine, per year, I think that it's a good price point."

"The price of this solution is expensive compared to others solutions."

More CrowdStrike Falcon Complete MDR pricing and cost advice

"Price-wise, Cybereason Managed Detection & Response is effective for larger companies, but if you have a small company with less than 1,000 employees, then it gets expensive."

See which vendors are best for you

Use our free recommendation engine to learn which Managed Detection and Response (MDR) solutions are best for your needs.

See recommendations

801,634 professionals have used our research since 2012.

Top Industries

By visitors reading reviews

Computer Software Company

18%

Healthcare Company

Financial Services Firm

Manufacturing Company

Computer Software Company

16%

Manufacturing Company

Financial Services Firm

Government

Computer Software Company

17%

Government

10%

Educational Organization

Manufacturing Company

Company Size

By reviewers

Large Enterprise

Midsize Enterprise

Small Business

No data available

Questions from the Community

What do you like most about Binary Defense MDR?

The most valuable feature is reviewing tickets and the notes added by technicians.

See all answers

What is your experience regarding pricing and costs for Binary Defense MDR?

The pricing is very competitive; it's on par with or below others. For those sensitive to pricing, I'd advise that th...

See all answers

What needs improvement with Binary Defense MDR?

Sometimes, something may not install right; however, whenever we have challenges, they are very solution-oriented and...

See all answers

What do you like most about CrowdStrike Falcon Complete?

It is a cloud-based solution. You can easily scale it.

See all answers

What is your experience regarding pricing and costs for CrowdStrike Falcon Complete?

CrowdStrike has a reasonable price. It's a good price, but if CrowdStrike offered coupons or discounts on a monthly o...

See all answers

What needs improvement with CrowdStrike Falcon Complete?

We find CrowdStrike Falcon Complete to have a steeper learning curve when it is deployed in certain industries such a...

See all answers

What do you like most about Cybereason Managed Detection & Response?

The most valuable feature of the solution is endpoint management...The solution's support team is quite good at givin...

See all answers

What is your experience regarding pricing and costs for Cybereason Managed Detection & Response?

I had compared the pricing of Cybereason Managed Detection & Response with the other products we deal with in our...

See all answers

What needs improvement with Cybereason Managed Detection & Response?

My company's issue with the solution stems from the fact that for every client, we have to spin up a new Cybereason i...

See all answers

Comparisons

Darktrace vs Binary Defense MDR

Compared 26% of the time

CrowdStrike Falcon vs Binary Defense MDR

Compared 22% of the time

SentinelOne Singularity Complete vs Binary Defense MDR

Compared 20% of the time

Arctic Wolf Managed Detection and Response vs Binary Defense MDR

Compared 18% of the time

Cortex XDR by Palo Alto Networks vs Binary Defense MDR

Compared 15% of the time

More Binary Defense MDR Competitors

Secureworks Taegis Managed XDR / MDR vs CrowdStrike Falcon Complete MDR

Compared 13% of the time

Huntress vs CrowdStrike Falcon Complete MDR

Compared 12% of the time

Arctic Wolf Managed Detection and Response vs CrowdStrike Falcon Complete MDR

Compared 11% of the time

Blackpoint Cyber MDR vs CrowdStrike Falcon Complete MDR

Compared 10% of the time

Sophos MDR vs CrowdStrike Falcon Complete MDR

Compared 9% of the time

More CrowdStrike Falcon Complete MDR Competitors

No data available

Product Reports

Buyer's Guide

Binary Defense MDR

September 2024

Download Binary Defense MDR product report

Buyer's Guide

CrowdStrike Falcon Complete MDR

September 2024

Download CrowdStrike Falcon Complete MDR product report

Buyer's Guide

Managed Detection and Response (MDR)

August 2024

Cybereason Managed Detection & Response report

Download Cybereason Managed Detection & Response product report

Also Known As

Binary Defense Vision, Binary Defense Managed Detection and Response, Binary Defense Managed Detection & Response

Falcon Complete

Cybereason MDR

Learn More

Binary Defense

CrowdStrike

Cybereason

Overview

Binary Defense provides a Managed Detection and Response service using an Open XDR strategy that detects and isolates threats early in the attack lifecycle. Expert security analysts in the Binary Defense Security Operations Center leverage an attacker’s mindset, monitoring your environments for security events 24x7x365 and acting as an extension of your security teams. When a security event occurs, Binary Defense analysts triage, disposition, and prioritize the event. Analysts conduct full kill chain analysis and supply tactical and strategic mitigation recommendations to your security team with the goal of increasing your organization’s security posture against the latest adversary threats.

Visit us online at https://www.binarydefense.com

CrowdStrike Falcon Complete MDR provides advanced endpoint protection through behavioral-based analysis, threat hunting, and zero-day attack prevention for devices, servers, clients, and mobile endpoints.

Organizations utilize CrowdStrike Falcon Complete MDR for comprehensive security management, including monitoring and detecting vulnerabilities, ransomware protection, and enhancing overall security postures. It replaces traditional antiviruses and seamlessly integrates with other security solutions to ensure proactive threat management.

What are the key features of CrowdStrike Falcon Complete MDR?

AI and Machine Learning Detection: Identifies sophisticated threats using advanced algorithms.
Comprehensive Threat Intelligence: Delivers in-depth threat data for informed decision-making.
Real-Time Updates: Ensures constant protection against emerging threats.
Scalable Deployment: Adapts to organizational growth and changes.
Responsive Threat Hunting: Proactively searches for potential threats in the environment.
Minimal CPU Usage: Operates efficiently without hampering performance.
User-Friendly Dashboards: Simplifies monitoring and management tasks.
Strong Integration: Works well with other security tools and platforms.
Proactive Monitoring: Continuously observes systems to preemptively address issues.
Extensive Forensic Capabilities: Offers deep insights into security incidents.
Lightweight Endpoint Agent: Ensures endpoints are protected without affecting performance.
Efficient Incident Response: Quickly addresses and mitigates security breaches.
Broad OS Support: Compatible with a wide range of operating systems.

What benefits or ROI should be considered?

Reduced Downtime: Minimizes disruptions through swift threat detection and response.
Enhanced Security Posture: Strengthens overall security through comprehensive protection measures.
Cost Savings: Lowers expenses by replacing multiple security tools with an integrated solution.
Scalability: Adapts to the growing and changing needs of the organization.
Proactive Threat Management: Identifies and mitigates threats before they cause significant damage.

In specific industries such as finance, healthcare, and education, CrowdStrike Falcon Complete MDR is implemented to ensure compliance with regulatory standards, protect sensitive data, and defend against sophisticated threats. These sectors benefit from CrowdStrike's robust endpoint protection mechanisms and detailed forensic capabilities, which help maintain security integrity and operational continuity.

Cybereason is the leader in endpoint protection, offering endpoint detection and response, next-generation antivirus, managed monitoring and IR services.

Founded by elite intelligence professionals born and bred in offense-first hunting, Cybereason gives enterprises the upper hand over cyber adversaries.

The Cybereason platform is powered by a custom-built in-memory graph, the only truly automated hunting engine anywhere. It detects behavioral patterns across every endpoint and surfaces malicious operations in an exceptionally user-friendly interface.

Sample Customers

Securitas USA, Black Hills Energy, Lincoln Electric,The J.M. Smuckers Company, New York Community Bank, State of Connecticut, NCR

Palm Beach State College, Mercedes-AMG, Pokemon, Telstra, Goldman Sachs, Zebra

CONNECTICUT WATER, BEAM SUNTORY, CADWALADER, WICKERSHAM & TAFT, RTI Surgical, HOSPITAL REVENUE CYCLE MANAGEMENT COMPANY, MCBEE ASSOCIATES, FORTUNE 500 BANK

Buyer's Guide

Managed Detection and Response (MDR)

August 2024

Download Free Report

Find out what your peers are saying about CrowdStrike, Arctic Wolf Networks, Huntress and others in Managed Detection and Response (MDR). Updated: August 2024.

DOWNLOAD NOW

801,634 professionals have used our research since 2012.

See our list of best Managed Detection and Response (MDR) vendors.

We monitor all Managed Detection and Response (MDR) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.