Cybereason Endpoint Detection & Response vs Sentinel comparison

The compared Cybereason and OpenText solutions aren't in the same category. Cybereason is ranked #34 in EDR , with an average rating of 8.3, and holds a 1.3% mindshare in the category. OpenText is ranked #16 in SIEM , with an average rating of 8.2, and holds a 3.3% mindshare. Additionally, 88% of Cybereason users are willing to recommend the solution, compared to 81% of OpenText users who would recommend it.

Cybereason Endpoint Detecti...

Read 20 Cybereason Endpoint Detection & Response reviews

3,543 Views
1,975 Comparison Views

88% willing to recommend

Sentinel

Read 16 Sentinel reviews

1,901 Views
2,067 Comparison Views

81% willing to recommend

Cybereason Endpoint Detecti...

Sentinel

Comparison Buyer's Guide

Download the report

Executive Summary

We performed a comparison between Cybereason Endpoint Detection & Response and Sentinel based on real PeerSpot user reviews.

Find out what your peers are saying about CrowdStrike, Microsoft, SentinelOne and others in Endpoint Detection and Response (EDR).

To learn more, read our detailed Endpoint Detection and Response (EDR) Report (Updated: December 2024).

Buyer's Guide

Endpoint Detection and Response (EDR)

December 2024

Download the complete report

Helped 824,067 peers since 2012

Categories and Ranking

Cybereason Endpoint Detecti...

Average Rating

8.0

Reviews Sentiment

7.8

Number of Reviews

Ranking in other categories

Endpoint Protection Platform (EPP) (42nd), Endpoint Detection and Response (EDR) (34th)

Sentinel

Average Rating

7.6

Reviews Sentiment

7.3

Number of Reviews

Ranking in other categories

Security Information and Event Management (SIEM) (16th)

Mindshare comparison

While both are Security Software solutions, they serve different purposes. Cybereason Endpoint Detection & Response is designed for Endpoint Detection and Response (EDR) and holds a mindshare of 1.3%, down 1.4% compared to last year.
Sentinel, on the other hand, focuses on Security Information and Event Management (SIEM), holds 3.3% mindshare, up 1.1% since last year.

Endpoint Detection and Response (EDR)

Security Information and Event Management (SIEM)

Featured Reviews

Chad Kliewer

Information Security Officer at PTCI

We can make more informed decisions on whether an action is malicious

The ease of use and dashboards are improving. We came in at a time when they were developing a new dashboard screen. Therefore, we have had some confusing times between the old and new dashboards. Knowing how the new one works, I have seen vast improvements with it. While the product is very good, there are still some areas for improvement. The initial triage area could be a bit simpler. They get into the weeds real fast; it gets very detailed very fast. I am still looking for an easier triage layer on top with the ability to dig deeper. They are improving on this because I have seen some improvements in the user interface that helps with this. Part of it was moving two different screens into one, merging the two together. It is very good, but it is very technically detailed and would be harder for an entry-level person to decipher. However, improvements are being made. It leverages indicators of behavior to help us remediate faster against attacks. Sometimes, I wish there was more detail on why they consider it malicious.

Read full review

JaideepSingh

Technology Specialist at a government with 51-200 employees

An automated solution that helped me detect threats in less than half the time it used to take

Sentinel gave us logs to tell us what's going right and wrong in your environment so we could secure the network. We also got multiple kinds of logs. By running some queries from the logs, we could find and fix the anomalies in the environment. Sentinel's threat visibility was great at telling us if we had something going on in our environment. We had to set up alerts in our environment based on the logs. If we had the right alerts set up, we got notified about threats and where security was lacking, so we could also take care of that. Sentinel's threat intelligence helped us prepare and take proactive steps for potential threats before they hit. Having preparation before a threat has helped our security operations. When I was using it, I used to keep going into my dashboards and looking for any threats on a weekly basis, or maybe two or three times a week. Based on that, we would recommend certain changes to the server and infrastructure teams to block or allow some ports. Sentinel's threat intelligence helped plan security against risks.

Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Pros

"They do a very good job of providing multi-stage visualizations of malicious operations that immediately show all attack details across all devices and users. Since it is MalOp-centric model, you can see if there has been a similar operation across multiple machines. If it is the same thing appearing on multiple machines, you see all the machines and users affected in one screen."

"The initial setup was easy and straightforward."

"The solution is efficient."

"The interface is user-friendly."

"What I like most about Cybereason Endpoint Detection & Response is the support because the support is good. The solution is also easy to use, and it has a dashboard. Everything is good, and there's no problem with it."

"Cybereason absolutely enables us to mitigate and isolate on the fly. Our managed detection response telemetry has dropped dramatically since we began using it. It's very top-of-mind. We were running some tabletop exercises and none of the detections were getting triggered by the managed security services provider. So we needed to find a solution that would trigger high-fidelity alerts. That was Cybereason and it dramatically changed our landscape from the detection and response perspective."

"We didn't have the visibility that we now have. It has increased our visibility by a lot. So, we put a lot more time into really looking at our environment and what is happening throughout our different networks. It has increased our visibility by around fivefold."

"The initial setup process is straightforward."

More Cybereason Endpoint Detection & Response pros

"The solution's Kusto Query Language (KQL) execution time is pretty good."

"Sentinel gave us logs to tell us what's going right and wrong in your environment so we could secure the network."

"It makes everything easier by automating some tasks and growing with our needs."

"We can do advanced hunting queries and modify SQL queries to get desired results based on the rules triggering over the console."

"The stability is phenomenal and we never had any issues with downtime or even had to restart."

"One of the most valuable features is the business intelligence engine. It's very important because it keeps track of everything that's happening and alerts us if something is different than expected. The first time I used it, I was shocked at how well it performed. Another valuable feature that I think makes this product worth the price you pay for it is that it connects to basically every system that provides some form of logging, and it's very easy to set up what triggers this."

"The native integration with out-of-the box format is hassle free and allows data to be used advantageously."

"The tool is simple to use."

More Sentinel pros

Cons

"I feel that the product lacks reporting features and needs improvement."

"The reporting feature needs improvement."

"Its Microsoft PowerShell protections still need some compatibility improvements. We have run across just a few. It is compatible with 90% of what we have in our network, but there is that 10% that we are still struggling with as far as compatibility with the type of PowerShell scripts needed to run our day-to-day business."

"There can be problems with the EDI."

"The integration with Microsoft solutions and Microsoft capabilities needs to be improved."

"It initially took some time to deploy."

"It should be more stable, and the sensor needs improvement in terms of connectivity."

"Reporting could be a bit more granular so that we had the ability to check regions and countries. I just noticed that, for instance, if I look at our servers, it's either "contained" or it's "not contained". I don't have the option, for instance, to look at countries. It only allows me to look at users as one big group."

More Cybereason Endpoint Detection & Response cons

"I would like to see a better reporting work structure on the dashboard."

"There are still a few vendor-specific devices for which Sentinel needs to work on integration, such as Netskope devices."

"The solution does not allow outsourced authorizations."

"You need a lot of Unix scripting knowledge in order to manage the tool, which is one of the main issues that we faced."

"There is no integration in the web-side of the tool."

"I rate Sentinel a six out of ten for scalability."

"The dashboard and customer view should be improved"

"This product's connection to certain types of cloud systems could be improved. We can do Microsoft, Google, and Amazon, but there are a lot of other things happening in the cloud that we do not connect well enough to. This product could be improved with better connection to cloud-based solutions."

More Sentinel cons

Pricing and Cost Advice

"I had to go through a third-party to purchase it, which I wasn't really pleased about."

"Though it is not the cheapest solution but it fits our budget. We pay an annual licensing fee."

"On a scale of one to ten, where one is cheap and ten is expensive, I rate the pricing an eight."

"In terms of pricing, it's a good solution."

"We considered a few other solutions. Some were ridiculously overpriced, while others didn't have solutions for Mac endpoints. That was a deal-breaker because most of our organization is on Mac. It came down to two vendors: Cybereason and another. They had similar pitches and almost identical approaches, but in the end, Cybereason gave us the best value for our money."

"The pricing is manageable."

"I do not have experience with the licensing of the product."

"In terms of cost, this is a good choice for our needs."

More Cybereason Endpoint Detection & Response pricing and cost advice

"We receive a pricing discount because of our ongoing partnership with Micro Focus."

"Sentinel is a subscription-based solution."

"The solution’s pricing is aligned with its competitors."

"We inquired about getting support from the vendor, Micro Focus, but the cost was very high."

"Sentinel is moderately priced."

"Sentinel's slightly on the expensive side."

See which vendors are best for you

Use our free recommendation engine to learn which Endpoint Detection and Response (EDR) solutions are best for your needs.

See recommendations

824,067 professionals have used our research since 2012.

Top Industries

By visitors reading reviews

Computer Software Company

20%

Financial Services Firm

Manufacturing Company

Government

Computer Software Company

16%

Financial Services Firm

11%

Manufacturing Company

Government

Company Size

By reviewers

Large Enterprise

Midsize Enterprise

Small Business

Questions from the Community

What is your experience regarding pricing and costs for Cybereason Endpoint Detection & Response?

Comparison with other products showed it be cheaper than some larger competitors. Set up cost for us were cheaper as we already had users experienced with the product in other business units. Initi...

See all answers

What is your primary use case for Cybereason Endpoint Detection & Response?

We use the product for enhancing security postures by leveraging behavioral analytics and security engines effectively minimizing false positives and detecting threats.

See all answers

What do you like most about Cybereason Endpoint Detection & Response?

The interface is user-friendly.

See all answers

What do you like most about NetIQ Sentinel?

The solution lets us get all the logs properly and regularly monitor customer infrastructure.

See all answers

What is your experience regarding pricing and costs for NetIQ Sentinel?

Sentinel is moderately priced.

See all answers

What needs improvement with NetIQ Sentinel?

There are still a few vendor-specific devices for which Sentinel needs to work on integration, such as Netskope devices. Also, we often face region-wise outages during operation due to product team...

See all answers

Comparisons

CrowdStrike Falcon vs Cybereason Endpoint Detection & Response

Compared 25% of the time

Darktrace vs Cybereason Endpoint Detection & Response

Compared 23% of the time

Microsoft Defender for Endpoint vs Cybereason Endpoint Detection & Response

Compared 10% of the time

SentinelOne Singularity Complete vs Cybereason Endpoint Detection & Response

Compared 8% of the time

Kaspersky Endpoint Security for Business vs Cybereason Endpoint Detection & Response

Compared 4% of the time

More Cybereason Endpoint Detection & Response Competitors

IBM Security QRadar vs Sentinel

Compared 24% of the time

Splunk Enterprise Security vs Sentinel

Compared 24% of the time

Google Chronicle Suite vs Sentinel

Compared 20% of the time

Wazuh vs Sentinel

Compared 18% of the time

Stellar Cyber Open XDR vs Sentinel

Compared 1% of the time

More Sentinel Competitors

Product Reports

Buyer's Guide

Cybereason Endpoint Detection & Response

December 2024

Cybereason Endpoint Detection & Response report

Download Cybereason Endpoint Detection & Response product report

Buyer's Guide

Sentinel

November 2024

Download Sentinel product report

Also Known As

Cybereason EDR, Cybereason Deep Detect & Respond

NetIQ Sentinel, Novell SIEM

Learn More

Video not available

Cybereason

OpenText

Overview

Cybereason's Endpoint Detection and Response platform detects in real-time both signature and non-signature-based attacks and accelerates incident investigation and response. Cybereason connects together individual pieces of evidence to form a complete picture of a malicious operation.

Sentinel is a full-featured Security Information and Event Management (SIEM) solution that simplifies the deployment, management and day-to-day use of SIEM, readily adapts to dynamic enterprise environments and delivers the true "actionable intelligence" security professionals need to quickly understand their threat posture and prioritize response.

Sample Customers

Lockheed Martin, Spark Capital, DocuSign, Softbank Capital

Faysal Bank, GaVI, Handelsbanken, ISC Mªnster, Lambeth Council, Swisscard, The Municipality of Siena, Tukes, University of Dayton, University of the Sunshine Coast

Buyer's Guide

Endpoint Detection and Response (EDR)

December 2024

Download Free Report

Find out what your peers are saying about CrowdStrike, Microsoft, SentinelOne and others in Endpoint Detection and Response (EDR). Updated: December 2024.

DOWNLOAD NOW

824,067 professionals have used our research since 2012.

We monitor all Endpoint Detection and Response (EDR) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.