I would rate CyberArk Endpoint Privilege Manager nine out of ten. I recommend colleagues consider CyberArk Endpoint Privilege Manager. CyberArk offers flexible deployment options and is willing to negotiate to meet budgetary needs. Even with limited funding, organizations can start with a smaller deployment and expand it later based on their needs and budget availability. Following the implementation of CyberArk Endpoint Privilege Manager, ongoing monitoring of new applications is crucial. This monitoring is essential for evaluating and configuring the system's policy, a manual process that must align with the organization's evolving application requirements. Continuous observation ensures the policy functions effectively and meets security standards. I recommend gathering all applications and administrative rights information before implementing CyberArk Endpoint Privilege Manager. Using a centralized management tool for deployment facilitates the process.
I would advise others to explore CyberArk and its comprehensive components, as it offers significant learning opportunities and career growth prospects. For those constrained by budget, I suggest prioritizing privileged accounts for evaluation and assessing the prerequisites needed for implementation. I would rate CyberArk Endpoint Privilege Manager an eight out of ten.
Global Security Systems Consultant at a insurance company with 10,001+ employees
Real User
Top 5
2024-12-09T15:55:00Z
Dec 9, 2024
I rate CyberArk Endpoint Privilege Manager a nine out of ten. CyberArk provides a more seamless and user-friendly experience. Previously, we had to log in to a separate window and use a special command to elevate privileges. With CyberArk Endpoint Privilege Manager, we click to run as administrator, and it automatically recognizes our role and elevates permissions without any extra steps. This streamlined process makes it a more intuitive and efficient solution. The only maintenance we need to do is update the agents on the end-user systems. CyberArk Endpoint Privilege Manager is entirely cloud-based, so no further upkeep is required. For end users, CyberArk Endpoint Privilege Manager is a native product. It integrates seamlessly, making administrative tasks intuitive.
I advise those who want to use CyberArk EPM to get a good consultant. They need to analyze their environment and generate reports. There should be many whiteboarding sessions and discussions to develop steps for policy creation. A lot of paperwork needs to be done before starting to use it. Overall, I'd rate CyberArk EPM as nine out of ten. It's a very good product.
I am aware of CyberArk's PAM part and CyberArk Identity. I find the solution to be more effective since it is better than its competitors. The brand value offered by the product is very good. There are no application control capabilities offered by the tool, but I know that enforcing privilege access control is pretty fast. The product is reliable and stable. The solution's brand value is good. The solution is better than the products offered by its competitors. My company is aware of the fact that CyberArk offers integration with other security tools in the market, but we have not dealt with such a complex implementation yet. I rate the tool an eight out of ten.
CyberArk Consultant at a tech services company with 11-50 employees
Reseller
Top 10
2024-02-26T15:50:02Z
Feb 26, 2024
EPM is not specifically designed for threat protection. While it does a decent job in this area, it generates many false positives. As a result, the primary function of EPM in terms of threat detection is to send events to the security team for further investigation. As a consultant working with organizations, I've deployed application control features like those offered by CyberArk Endpoint Privilege Manager (EPM) across various environments. Without such controls, organizations would face increased vulnerability to attacks, as granting local admin rights exposes systems to potential security breaches. I rate it an eight. However, there are areas where improvements could be made. For example, addressing the issue of false positives in events, especially concerning ransomware events, would enhance the platform's usability. Additionally, it requires EPM and PAM solutions to reset passwords for local accounts on workstations. Other products allow this with just the EPM component, whereas CyberArk requires integrating two separate products.
Learn what your peers think about CyberArk Endpoint Privilege Manager. Get advice and tips from experienced pros sharing their opinions. Updated: April 2025.
Once you start integrating this solution with your existing technologies and implementing new processes for accessing targets by administrators, you can see significant progress within two to three months, covering around eighty to ninety percent of your technology integration. With strong engagement, you can expect a substantial return on investment in that timeframe.As for rating the solution, I would give a solid ten.
Enterprise Architect - Information Security at EasyJet
Real User
2023-03-17T13:38:03Z
Mar 17, 2023
Just make sure all applications and services that need to be migrated can move over. A lot of planning is required. I'd rate the solution eight out of ten.
I'm on the Partner Portal. I'm Defender-certified and using CyberArk's various services for the installation as well as the managed services. I work with a system integrator. I have not used the C3M Cloud Control, Enterprise Password Vault yet. We have deployed to multiple customers. With CyberArk, there are different certifications, including, Trustee, Defender, Sentry, CCD, and Guardian. Right now, we have around two hundred who are Guardian-certified and around 150 resources who are CCD-certified, CyberArk Certified Delivery Managers. The rest are the operational resources who are certified on Defender. For those considering the solution, I'd advise them first to consider what their use case will be. However, CyberArk is a great deployment option and the first I'd recommend, depending on the budget. Holistically, if you have a big enterprise, such as a financial enterprise or healthcare system, where you have got a vast amount of host machines with a combination of Windows, Unix, and your firewall, CyberArk would be the best-suited product that you should deploy in your enterprise to secure your endpoints. I'd rate the solution nine out of ten. The core testing they perform is great. They also regularly release patches to help enhance security. The ease of communication with the customer is great, and the alerts and notifications they have on offer are very helpful.
I've used CyberArk Privileged Access Manager and One Identity Safeguard. I also have experience with CyberArk Endpoint Privilege Manager, One Identity Safeguard for Privileged Passwords, and One Identity Safeguard for Privileged Sessions. CyberArk Endpoint Privilege Manager is cloud-based, but its agent is on-premises. The on-premise version is no longer supported, but it will still be supported if you're an old customer with an on-premise version. However, by 2024, CyberArk will no longer support the on-premises version of CyberArk Endpoint Privilege Manager. Right now, there's no CyberArk Endpoint Privilege Manager within my company. I created quotes for customers to try the solution, but it's expensive. I just gathered my colleagues to simulate my use cases, and that's it. What I'd tell others about CyberArk Endpoint Privilege Manager is that if you have the budget, you definitely should get it. The solution is excellent, and it's as if you're insured because CyberArk Endpoint Privilege Manager provides security. This is the advice I'd give anyone trying to implement CyberArk Endpoint Privilege Manager. I'm rating the solution as seven out of ten because there's room for improvement in the Linux version, and the pricing needs to be more flexible. My company is a CyberArk partner.
Anyone who's trying to get the EPM implemented before purchasing the solution should have their internal policy sorted out. Make sure you have the right application groups and user groups defined and the policies for them defined. You cannot acquire the solution, purchase it, and then start building it. You will lose the license period, and sometimes not being ready means the implementation will fail. I'd rate the solution eight out of ten. It still leverages a lot of group policy manager features of Windows infrastructure, and the group policy manager is a little complicated. It's still a good solution, however.
Professional Services Manager at PT Korelasi Persada Indonesia
Real User
2022-07-31T13:35:52Z
Jul 31, 2022
My advice to others is that CyberArk Endpoint Privilege Manager is not for small to medium enterprises. It is best suited for medium to large enterprises because it is not cheap. When you want to implement the password manager and your CyberArk Endpoint Privilege Manager, you have to know what you are doing and what kind of a policy you want to implement in detail, otherwise, you will have no leverage in using the solution. I rate CyberArk Endpoint Privilege Manager a nine out of ten.
IT Security Service Specialist at a manufacturing company with 10,001+ employees
Real User
2021-06-30T14:37:14Z
Jun 30, 2021
I would advise poential users to instantly look for a solution in the cloud if they want to go with CyberArk. Don't get the on-premise version. I'm not satisfied with the EPM, and I'm just looking to see if there's any other solution that we can get. This is also because CyberArk is ending support for on-premise solutions in 2023. So, in our case, we will have to move to the cloud, and the cloud is much more expensive than just using the solution we have right now. On a scale from one to ten, I would give CyberArk Endpoint Privilege Manager a six.
Network Security & Data Management Admin at Digitaltrack
Real User
Top 5
2021-03-29T18:38:06Z
Mar 29, 2021
We are resellers and an implementor of the solution. I'd rate the solution at a nine out of ten. Product-wise we don't face that many issues, and basic integration of users and assigning them the rules and other stuff like that is, compared to other options, very straightforward.
Enterprise Architect at a tech services company with 11-50 employees
Real User
2020-10-22T13:37:00Z
Oct 22, 2020
I basically am trying to drive their digital transformation and do the overall build a mass data network for their data strategy. Building out different APIs and different things. Building out a blockchain security framework to allow HIPAA compliance where you can go in at the portability of their data to pull in and out without creating an issue with the payers. I would recommend this solution depending on what the business needs are. I'm a big proponent for keeping things simple and trying to avoid unneeded complexity. The company demanded certain things and only wanted to do it one way, and the way they wanted to do is what we got stuck with. The API mobilities are there, they exist and they are okay, but as a framework and in total is worrisome because it's not a stateless application. It doesn't appear to be moving forward. It's still a type of software-oriented architecture instead of moving to microservices, where it could be stateless. If it were stateless, and it failed during a password change, you would see it as a failure and go back to the original password. I think that they have a lot of work to do to get there. I would rate this solution an eight out of ten.
Enterprise Cyber Security Advisor at a energy/utilities company with 5,001-10,000 employees
Real User
2019-12-15T09:11:00Z
Dec 15, 2019
If you're going to implement Endpoint Privilege Manager, don't just give everybody EPM and think you're done with it. Spend the time, engineer it, think about it from a project perspective, and deploy it with the concept of least privilege. Really spend the time to make sure it's deployed correctly and all the processes are established so it's smooth sailing from there on in. Overall, I would rate this product at 8.5 out of 10. The product does exactly what we need it to do. However, we do need a little bit more action and response time with regards to support. In terms of the effect working with CyberArk has had on my career, it has really put my name on the map with regards to the whole CSO world and IT security, as well as from our company-wide, holistic perspective. People come to me; they know me as the person who will solve problems. Usually, things are very difficult, but at the end of the day, we'll find a solution and implement it. From that perspective, it's giving me a lot more opportunities.
Tech Support at a tech services company with 11-50 employees
Real User
2019-03-03T11:30:00Z
Mar 3, 2019
This is the number one product for privilege account security. I suggest getting the best help available when it comes time to implement and deploy this solution. Once this is complete, everything else will fall into place. I would rate this product eight out of ten. It is very good, but there is always room for improvement.
CyberArk Endpoint Privilege Manager, a critical and foundational endpoint control addresses the underlying weaknesses of endpoint defenses against a privileged attacker and helps enterprises defend against these attacks through removing local admin rights, enforcing least privilege, and implementing foundational endpoint security controls across all Windows, macOS and Linux endpoints from hybrid to cloud environments.
Click here for a free 30 day trial: CyberArk Endpoint Privilege...
I would rate CyberArk Endpoint Privilege Manager nine out of ten. I recommend colleagues consider CyberArk Endpoint Privilege Manager. CyberArk offers flexible deployment options and is willing to negotiate to meet budgetary needs. Even with limited funding, organizations can start with a smaller deployment and expand it later based on their needs and budget availability. Following the implementation of CyberArk Endpoint Privilege Manager, ongoing monitoring of new applications is crucial. This monitoring is essential for evaluating and configuring the system's policy, a manual process that must align with the organization's evolving application requirements. Continuous observation ensures the policy functions effectively and meets security standards. I recommend gathering all applications and administrative rights information before implementing CyberArk Endpoint Privilege Manager. Using a centralized management tool for deployment facilitates the process.
I would advise others to explore CyberArk and its comprehensive components, as it offers significant learning opportunities and career growth prospects. For those constrained by budget, I suggest prioritizing privileged accounts for evaluation and assessing the prerequisites needed for implementation. I would rate CyberArk Endpoint Privilege Manager an eight out of ten.
I rate CyberArk Endpoint Privilege Manager a nine out of ten. CyberArk provides a more seamless and user-friendly experience. Previously, we had to log in to a separate window and use a special command to elevate privileges. With CyberArk Endpoint Privilege Manager, we click to run as administrator, and it automatically recognizes our role and elevates permissions without any extra steps. This streamlined process makes it a more intuitive and efficient solution. The only maintenance we need to do is update the agents on the end-user systems. CyberArk Endpoint Privilege Manager is entirely cloud-based, so no further upkeep is required. For end users, CyberArk Endpoint Privilege Manager is a native product. It integrates seamlessly, making administrative tasks intuitive.
I advise those who want to use CyberArk EPM to get a good consultant. They need to analyze their environment and generate reports. There should be many whiteboarding sessions and discussions to develop steps for policy creation. A lot of paperwork needs to be done before starting to use it. Overall, I'd rate CyberArk EPM as nine out of ten. It's a very good product.
I am aware of CyberArk's PAM part and CyberArk Identity. I find the solution to be more effective since it is better than its competitors. The brand value offered by the product is very good. There are no application control capabilities offered by the tool, but I know that enforcing privilege access control is pretty fast. The product is reliable and stable. The solution's brand value is good. The solution is better than the products offered by its competitors. My company is aware of the fact that CyberArk offers integration with other security tools in the market, but we have not dealt with such a complex implementation yet. I rate the tool an eight out of ten.
EPM is not specifically designed for threat protection. While it does a decent job in this area, it generates many false positives. As a result, the primary function of EPM in terms of threat detection is to send events to the security team for further investigation. As a consultant working with organizations, I've deployed application control features like those offered by CyberArk Endpoint Privilege Manager (EPM) across various environments. Without such controls, organizations would face increased vulnerability to attacks, as granting local admin rights exposes systems to potential security breaches. I rate it an eight. However, there are areas where improvements could be made. For example, addressing the issue of false positives in events, especially concerning ransomware events, would enhance the platform's usability. Additionally, it requires EPM and PAM solutions to reset passwords for local accounts on workstations. Other products allow this with just the EPM component, whereas CyberArk requires integrating two separate products.
Once you start integrating this solution with your existing technologies and implementing new processes for accessing targets by administrators, you can see significant progress within two to three months, covering around eighty to ninety percent of your technology integration. With strong engagement, you can expect a substantial return on investment in that timeframe.As for rating the solution, I would give a solid ten.
Overall, I would rate CyberArk Endpoint Privilege Manager as an eight out of ten.
I rate CyberArk Endpoint Privilege Manager an eight out of ten.
I rate the solution a seven out of ten.
I would rate the product an eight out of ten. The tool's performance is good. It is an enterprise product.
Just make sure all applications and services that need to be migrated can move over. A lot of planning is required. I'd rate the solution eight out of ten.
I'm on the Partner Portal. I'm Defender-certified and using CyberArk's various services for the installation as well as the managed services. I work with a system integrator. I have not used the C3M Cloud Control, Enterprise Password Vault yet. We have deployed to multiple customers. With CyberArk, there are different certifications, including, Trustee, Defender, Sentry, CCD, and Guardian. Right now, we have around two hundred who are Guardian-certified and around 150 resources who are CCD-certified, CyberArk Certified Delivery Managers. The rest are the operational resources who are certified on Defender. For those considering the solution, I'd advise them first to consider what their use case will be. However, CyberArk is a great deployment option and the first I'd recommend, depending on the budget. Holistically, if you have a big enterprise, such as a financial enterprise or healthcare system, where you have got a vast amount of host machines with a combination of Windows, Unix, and your firewall, CyberArk would be the best-suited product that you should deploy in your enterprise to secure your endpoints. I'd rate the solution nine out of ten. The core testing they perform is great. They also regularly release patches to help enhance security. The ease of communication with the customer is great, and the alerts and notifications they have on offer are very helpful.
I've used CyberArk Privileged Access Manager and One Identity Safeguard. I also have experience with CyberArk Endpoint Privilege Manager, One Identity Safeguard for Privileged Passwords, and One Identity Safeguard for Privileged Sessions. CyberArk Endpoint Privilege Manager is cloud-based, but its agent is on-premises. The on-premise version is no longer supported, but it will still be supported if you're an old customer with an on-premise version. However, by 2024, CyberArk will no longer support the on-premises version of CyberArk Endpoint Privilege Manager. Right now, there's no CyberArk Endpoint Privilege Manager within my company. I created quotes for customers to try the solution, but it's expensive. I just gathered my colleagues to simulate my use cases, and that's it. What I'd tell others about CyberArk Endpoint Privilege Manager is that if you have the budget, you definitely should get it. The solution is excellent, and it's as if you're insured because CyberArk Endpoint Privilege Manager provides security. This is the advice I'd give anyone trying to implement CyberArk Endpoint Privilege Manager. I'm rating the solution as seven out of ten because there's room for improvement in the Linux version, and the pricing needs to be more flexible. My company is a CyberArk partner.
I rate CyberArk Endpoint Privilege Manager an eight out of ten.
Anyone who's trying to get the EPM implemented before purchasing the solution should have their internal policy sorted out. Make sure you have the right application groups and user groups defined and the policies for them defined. You cannot acquire the solution, purchase it, and then start building it. You will lose the license period, and sometimes not being ready means the implementation will fail. I'd rate the solution eight out of ten. It still leverages a lot of group policy manager features of Windows infrastructure, and the group policy manager is a little complicated. It's still a good solution, however.
My advice to others is that CyberArk Endpoint Privilege Manager is not for small to medium enterprises. It is best suited for medium to large enterprises because it is not cheap. When you want to implement the password manager and your CyberArk Endpoint Privilege Manager, you have to know what you are doing and what kind of a policy you want to implement in detail, otherwise, you will have no leverage in using the solution. I rate CyberArk Endpoint Privilege Manager a nine out of ten.
I would give this solution a rating of eight out of ten.
I would advise poential users to instantly look for a solution in the cloud if they want to go with CyberArk. Don't get the on-premise version. I'm not satisfied with the EPM, and I'm just looking to see if there's any other solution that we can get. This is also because CyberArk is ending support for on-premise solutions in 2023. So, in our case, we will have to move to the cloud, and the cloud is much more expensive than just using the solution we have right now. On a scale from one to ten, I would give CyberArk Endpoint Privilege Manager a six.
We are resellers and an implementor of the solution. I'd rate the solution at a nine out of ten. Product-wise we don't face that many issues, and basic integration of users and assigning them the rules and other stuff like that is, compared to other options, very straightforward.
I basically am trying to drive their digital transformation and do the overall build a mass data network for their data strategy. Building out different APIs and different things. Building out a blockchain security framework to allow HIPAA compliance where you can go in at the portability of their data to pull in and out without creating an issue with the payers. I would recommend this solution depending on what the business needs are. I'm a big proponent for keeping things simple and trying to avoid unneeded complexity. The company demanded certain things and only wanted to do it one way, and the way they wanted to do is what we got stuck with. The API mobilities are there, they exist and they are okay, but as a framework and in total is worrisome because it's not a stateless application. It doesn't appear to be moving forward. It's still a type of software-oriented architecture instead of moving to microservices, where it could be stateless. If it were stateless, and it failed during a password change, you would see it as a failure and go back to the original password. I think that they have a lot of work to do to get there. I would rate this solution an eight out of ten.
If you're going to implement Endpoint Privilege Manager, don't just give everybody EPM and think you're done with it. Spend the time, engineer it, think about it from a project perspective, and deploy it with the concept of least privilege. Really spend the time to make sure it's deployed correctly and all the processes are established so it's smooth sailing from there on in. Overall, I would rate this product at 8.5 out of 10. The product does exactly what we need it to do. However, we do need a little bit more action and response time with regards to support. In terms of the effect working with CyberArk has had on my career, it has really put my name on the map with regards to the whole CSO world and IT security, as well as from our company-wide, holistic perspective. People come to me; they know me as the person who will solve problems. Usually, things are very difficult, but at the end of the day, we'll find a solution and implement it. From that perspective, it's giving me a lot more opportunities.
I would rate this product an eight out of 10.
This is the number one product for privilege account security. I suggest getting the best help available when it comes time to implement and deploy this solution. Once this is complete, everything else will fall into place. I would rate this product eight out of ten. It is very good, but there is always room for improvement.