Cybereason Endpoint Detection & Response vs Symantec Endpoint Security comparison

Cybereason and Broadcom are both solutions in the Endpoint Protection Platform (EPP) category. Cybereason is ranked #35 with an average rating of 8.2, while Broadcom is ranked #12 with an average rating of 7.7. Cybereason holds a 0.9% mindshare in EPP, compared to Broadcom’s 4.0% mindshare. Additionally, 89% of Cybereason users are willing to recommend the solution, compared to 80% of Broadcom users who would recommend it.

Cybereason Endpoint Detecti...

Read 21 Cybereason Endpoint Detection & Response reviews

3,671 Views
2,049 Comparison Views

89% willing to recommend

Symantec Endpoint Security

Read 144 Symantec Endpoint Security reviews

10,450 Views
8,921 Comparison Views

80% willing to recommend

Cybereason Endpoint Detecti...

Symantec Endpoint Security

Comparison Buyer's Guide

Download the report

Executive SummaryUpdated on Sep 9, 2024

Symantec Endpoint Security and Cybereason Endpoint Detection & Response compete in the endpoint security solutions category. Users generally prefer Cybereason for its advanced threat detection capabilities and overall performance, although Symantec is noted for its comprehensive feature set and reliable protection.

Features: Symantec Endpoint Security is noted for malware protection, device management, and an integrated firewall. Cybereason stands out with advanced threat detection, real-time analytics, and comprehensive incident response.

Room for Improvement: Symantec users report issues with system resource utilization and occasional false positives. Cybereason users suggest enhancements in report customization and integration with other security tools.

Ease of Deployment and Customer Service: Symantec is praised for its straightforward deployment and strong customer service support. Cybereason receives positive feedback for its deployment process though some users find the initial setup complex. Cybereason’s customer support is well-regarded but seen as less responsive compared to Symantec.

Pricing and ROI: Symantec is considered more cost-effective with a better initial setup cost. Cybereason, despite a higher price point, is valued for its advanced features and potential for higher operational returns.

To learn more, read our detailed Cybereason Endpoint Detection & Response vs. Symantec Endpoint Security Report (Updated: April 2025).

Buyer's Guide

Cybereason Endpoint Detection & Response vs. Symantec Endpoint Security

April 2025

Download the complete report

Helped 847,862 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Categories and Ranking

Cybereason Endpoint Detecti...

Ranking in Endpoint Protection Platform (EPP)

35th

Average Rating

8.0

Reviews Sentiment

7.9

Number of Reviews

Ranking in other categories

Endpoint Detection and Response (EDR) (25th)

Symantec Endpoint Security

Ranking in Endpoint Protection Platform (EPP)

12th

Average Rating

7.6

Reviews Sentiment

7.3

Number of Reviews

144

Ranking in other categories

No ranking in other categories

Mindshare comparison

As of April 2025, in the Endpoint Protection Platform (EPP) category, the mindshare of Cybereason Endpoint Detection & Response is 0.9%, down from 1.2% compared to the previous year. The mindshare of Symantec Endpoint Security is 4.0%, down from 4.9% compared to the previous year. It is calculated based on PeerSpot user engagement data.

Endpoint Protection Platform (EPP)

Featured Reviews

Chad Kliewer

Information Security Officer at PTCI

We can make more informed decisions on whether an action is malicious

The ease of use and dashboards are improving. We came in at a time when they were developing a new dashboard screen. Therefore, we have had some confusing times between the old and new dashboards. Knowing how the new one works, I have seen vast improvements with it. While the product is very good, there are still some areas for improvement. The initial triage area could be a bit simpler. They get into the weeds real fast; it gets very detailed very fast. I am still looking for an easier triage layer on top with the ability to dig deeper. They are improving on this because I have seen some improvements in the user interface that helps with this. Part of it was moving two different screens into one, merging the two together. It is very good, but it is very technically detailed and would be harder for an entry-level person to decipher. However, improvements are being made. It leverages indicators of behavior to help us remediate faster against attacks. Sometimes, I wish there was more detail on why they consider it malicious.

Read full review

Hakeem_Abdulkareem

Head, Security Technology & Engineering at a financial services firm with 10,001+ employees

The solution has given us visibility into compliance within our whole system and helped us ensure everything is updated

Symantec's application security module needs some improvement. You need to create a lot of fingerprints for application security. For instance, let's say I have different brands of ATMs in my environment, like Wincor and NCR. I use GRG to deploy an application control to whitelist some applications. I have to get the exact image of the different models of ATMs. When I tested in the past, some machines would not connect to the server without that. Only the approved software on the ATM should run. Anything outside that should not even come up at all. We did this so that an outside person doesn't introduce malicious software to the ATM. That's the essence of locking down with application control. Using Symantec for application control has been hectic, so I use Carbon Black to do the lockdown. Checking that data security will work fine with Carbon Black. Carbon Black worked fine. Setting up approval in Carbon Black works differently than Symantec. In Symantec, we first need the fingerprints of the applications running underneath. Before setting up Carbon Black, you first install the agent, allowing it to learn the environment. It will analyze all the software's behavior and provide recommendations for what should be allowed. It's more straightforward, whereas configuring application control in Symantec is a bit cumbersome.

Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Pros

"The most valuable feature is the capability of the command used by the machine so that we see the kind of performance that is running."

"The initial setup is not overly complicated."

"The initial setup was straightforward."

"What I find most valuable is the clarity of the platform."

"Immediately we can pick up the computers in the network if any malicious operation that is triggered."

"The initial setup process is straightforward."

"It gives all the information in a clear response."

"They do a very good job of providing multi-stage visualizations of malicious operations that immediately show all attack details across all devices and users. Since it is MalOp-centric model, you can see if there has been a similar operation across multiple machines. If it is the same thing appearing on multiple machines, you see all the machines and users affected in one screen."

More Cybereason Endpoint Detection & Response pros

"Symantec have everything – documentation, videos, data sheets."

"Managing SEP is very easy, and also troubleshooting part is easily managed."

"Symantec is very user-friendly, the interface and functions are very simple for everyone to understand. Additionally, it's a very robust system."

"Its response time is the most valuable. It is very quick."

"The solution can be scaled to handle different threats."

"The solution is easy to use"

"Its ease of use in deploying it and regular updates are most valuable."

"Device control is most valuable. Symantec is providing all such features in the basic plan, whereas when we last checked, such a feature was not available in the basic plan of Malwarebytes."

More Symantec Endpoint Security pros

Cons

"There is room for improvement in the product features related to device control, particularly USB management."

"I would like to see improvements on the operational side, specifically in grouping."

"The integration with Microsoft solutions and Microsoft capabilities needs to be improved."

"They need to improve their technical support services."

"While the product is very good, there are still some areas for improvement. The initial triage area could be a bit simpler. They get into the weeds real fast; it gets very detailed very fast. I am still looking for an easier triage layer on top with the ability to dig deeper."

"Ad hoc higher-level reporting to senior management can be improved or can be implemented. That's definitely an area of improvement that they need to focus on."

"There can be problems with the EDI."

"The product's reporting isn't great."

More Cybereason Endpoint Detection & Response cons

"Symantec End-point production doesn't support the EDR function."

"My personal opinion is that Symantec has too many WS.Reputation.1 detections, which could cause important computers to malfunction."

"Every time an OS comes out, I have to upgrade the Symantec product. They don't know how to patch it. If they would produce a patch instead of uninstalling or installing over the current version and rebooting I'd be a lot happier with the product."

"I rate Symantec Endpoint Security a four out of ten. This rating stems primarily from the subpar user interface, which significantly delays my response time when managing firewall rules or investigating issues."

"We are not satisfied with the technical support."

"The solution could improve by having a better graphical interface."

"They provide the updates of the client, and those clients need a reboot after the upgrade, which is something we don't like. We don't like to reboot the server after the upgrade because we have live applications. If we do a reboot, it can impact the business as well."

"The technical support could improve because when you reach level one support there is a lot of delays."

More Symantec Endpoint Security cons

Pricing and Cost Advice

"In terms of cost, this is a good choice for our needs."

"Though it is not the cheapest solution but it fits our budget. We pay an annual licensing fee."

"In terms of pricing, it's a good solution."

"I had to go through a third-party to purchase it, which I wasn't really pleased about."

"The pricing is manageable."

"This product is somewhat expensive and should be cheaper."

"We considered a few other solutions. Some were ridiculously overpriced, while others didn't have solutions for Mac endpoints. That was a deal-breaker because most of our organization is on Mac. It came down to two vendors: Cybereason and another. They had similar pitches and almost identical approaches, but in the end, Cybereason gave us the best value for our money."

"On a scale of one to ten, where one is cheap and ten is expensive, I rate the pricing an eight."

More Cybereason Endpoint Detection & Response pricing and cost advice

"When comparing this solution to others in the current market it is expensive."

"They're on the reasonable side. They are at mid-level. They're not too expensive as compared to their competitors. They're also not too cheap. In terms of price structure, hopefully, they could do a subscription."

"Symantec Endpoint Security's pricing is okay. It is cheaper compared to other products."

"It provides a good solution at a good price."

"Symantec is expensive."

"There is a yearly license."

"The pricing is pretty much at the market standard... Symantec is not that cheap and it's not that expensive compared to CrowdStrike. I would put them in the 'middle block.'"

"It's pretty awesome price-wise. That's why we give it to most of our clients. It isn't very expensive. Compared to Cisco AMP, which is very expensive, its price is okay. It's also cheaper than Malwarebytes."

More Symantec Endpoint Security pricing and cost advice

See which vendors are best for you

Use our free recommendation engine to learn which Endpoint Protection Platform (EPP) solutions are best for your needs.

See recommendations

847,862 professionals have used our research since 2012.

Top Industries

By visitors reading reviews

Computer Software Company

17%

Financial Services Firm

11%

Manufacturing Company

Government

Computer Software Company

15%

Financial Services Firm

12%

Manufacturing Company

10%

Government

Company Size

By reviewers

Large Enterprise

Midsize Enterprise

Small Business

Questions from the Community

What is your experience regarding pricing and costs for Cybereason Endpoint Detection & Response?

Comparison with other products showed it be cheaper than some larger competitors. Set up cost for us were cheaper as we already had users experienced with the product in other business units. Initi...

See all answers

What is your primary use case for Cybereason Endpoint Detection & Response?

We use it to improve detection in the whole industrial sector. We are a big energy company. Across multiple endpoints, we deploy the EDR to secure all, improve detection, and also attempt to automa...

See all answers

What do you like most about Cybereason Endpoint Detection & Response?

The interface is user-friendly.

See all answers

Which is better - Cortex XDR or Symantec End-User Endpoint Security?

Aqua Security is easy to use and very manageable. Its main focus is on Kubernetes and Docker. Security is a very valuable feature and their speed of integration is very good. The initial setup was ...

See all answers

Which offers better endpoint security - Symantec or Microsoft Defender?

We use Symantec because we do not use MS Enterprise products, but in my opinion, Microsoft Defender is a superior solution. Microsoft Defender for Endpoint is a cloud-delivered endpoint security s...

See all answers

What do you like most about Symantec End-User Endpoint Security?

Symantec have everything – documentation, videos, data sheets.

See all answers

Comparisons

Darktrace vs Cybereason Endpoint Detection & Response

Compared 28% of the time

CrowdStrike Falcon vs Cybereason Endpoint Detection & Response

Compared 18% of the time

Microsoft Defender for Endpoint vs Cybereason Endpoint Detection & Response

Compared 10% of the time

SentinelOne Singularity Complete vs Cybereason Endpoint Detection & Response

Compared 9% of the time

Trellix Endpoint Security vs Cybereason Endpoint Detection & Response

Compared 2% of the time

More Cybereason Endpoint Detection & Response Competitors

Microsoft Defender for Endpoint vs Symantec Endpoint Security

Compared 18% of the time

CrowdStrike Falcon vs Symantec Endpoint Security

Compared 18% of the time

Trend Micro Deep Security vs Symantec Endpoint Security

Compared 8% of the time

Kaspersky Endpoint Security for Business vs Symantec Endpoint Security

Compared 6% of the time

Cortex XDR by Palo Alto Networks vs Symantec Endpoint Security

Compared 4% of the time

More Symantec Endpoint Security Competitors

Product Reports

Buyer's Guide

Cybereason Endpoint Detection & Response

April 2025

Cybereason Endpoint Detection & Response report

Download Cybereason Endpoint Detection & Response product report

Buyer's Guide

Symantec Endpoint Security

March 2025

Download Symantec Endpoint Security product report

Also Known As

Cybereason EDR, Cybereason Deep Detect & Respond

Symantec EPP, Symantec Endpoint Protection (SEP)

Overview

Cybereason's Endpoint Detection and Response platform detects in real-time both signature and non-signature-based attacks and accelerates incident investigation and response. Cybereason connects together individual pieces of evidence to form a complete picture of a malicious operation.

Cybereason

Symantec Endpoint Security is a robust and reliable product that provides complete protection against viruses, malware, Trojans, and malicious files. It offers application and device control, ease of use in deploying and updating, a central control console, stability, scalability, auto-discovery capabilities, patch management, endpoint detection and response capabilities, intrusion detection module.

The Symantec Global Intelligence Network (GIN) provides threat intelligence and detection across endpoints, email, and web traffic. It has helped organizations reduce downtime, increase productivity, and improve security posture. Symantec Endpoint Security is easy to use, has a flexible administration, and offers more value than expected.

Broadcom

Sample Customers

Lockheed Martin, Spark Capital, DocuSign, Softbank Capital

Audio Visual Dynamics, Red Deer Advocate, Asia Pacific Telecom Co. Ltd., Kibbutz Ein Gedi, and AMETEK, Inc.

Buyer's Guide

Cybereason Endpoint Detection & Response vs. Symantec Endpoint Security

April 2025

Free Report: Cybereason Endpoint Detection & Response vs. Symantec Endpoint Security

Find out what your peers are saying about Cybereason Endpoint Detection & Response vs. Symantec Endpoint Security and other solutions. Updated: April 2025.

DOWNLOAD NOW

847,862 professionals have used our research since 2012.

See our Cybereason Endpoint Detection & Response vs. Symantec Endpoint Security report.

See our list of best Endpoint Protection Platform (EPP) vendors.

We monitor all Endpoint Protection Platform (EPP) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.