We compared CylancePROTECT and Microsoft Defender for Endpoint based on our user's reviews in several parameters.
In summary, CylancePROTECT is praised for its exceptional threat detection capabilities, customer service, positive ROI, and ease of use, while users highlight the need for improvements in detection capabilities and integration. On the other hand, Microsoft Defender for Endpoint stands out for its comprehensive threat protection, efficient system management, and incident response capabilities, with users also satisfied with customer service and ROI. Pricing, setup, and licensing are perceived positively for both products, with room for improvement in certain areas mentioned by users.
Features: CylancePROTECT stands out for its exceptional threat detection, zero-day attack prevention, easy implementation, low system impact, and comprehensive analytics. Microsoft Defender for Endpoint excels in comprehensive threat protection, real-time monitoring, efficient system management, user-friendly interface, seamless integration, and incident response capabilities.
Pricing and ROI: The setup cost for CylancePROTECT is described as minimal, straightforward, and hassle-free, while Microsoft Defender for Endpoint's setup process is deemed straightforward and doesn't require much effort., The ROI from CylancePROTECT was highly positive, delivering improved security measures, increased efficiency, and reduced costs. Users praised its user-friendly interface and fast deployment. On the other hand, Microsoft Defender for Endpoint was seen as positive with users expressing satisfaction with its performance, effectiveness in protecting against threats, ease of use, and real-time insights.
Room for Improvement: CylancePROTECT has room for improvement in detection capabilities, integration with other security tools, reporting and analytics functionalities, and user interface. Microsoft Defender for Endpoint also has areas for enhancement according to user feedback.
Deployment and customer support: Based on user feedback, the duration required to establish a new tech solution varies for both CylancePROTECT and Microsoft Defender for Endpoint. Some users for CylancePROTECT mentioned different timeframes for deployment and setup, while for Microsoft Defender for Endpoint, users also had different timeframes but emphasized the importance of context., The customer service for CylancePROTECT is praised for exceptional assistance, personalized guidance, and resolving issues promptly. Microsoft Defender for Endpoint provides helpful, efficient, and prompt support with effective solutions.
The summary above is based on 98 interviews we conducted recently with CylancePROTECT and Microsoft Defender for Endpoint users. To access the review's full transcripts, download our report.
"NGAV and EDR features are outstanding."
"I like FortiClient EMS. FortiEDR has a lot of great features like lockdown mode, remote wipes, and encryption. I can set malware outbreak policies and controls for detecting abnormalities. You can also simulate phishing attacks."
"The features that I have found most valuable are the ability to customize it and to reduce its size. It lets you run in a very small window in terms of memory and resources on legacy cash registers."
"The setup is pretty simple."
"The product detects and blocks threats and is more proactive than firewalls."
"Fortinet is very user-friendly for customers."
"We have FortiEDR installed on all our systems. This protects them from any threats."
"Having all monitoring, response, tracking, and mitigation tools in one dashboard provides our analysts and SOC team with a comprehensive view at a glance."
"Its setup is simple if you have a Windows device; it is executable."
"Centralized dashboard online which can be used for managing a huge product."
"Specifically for a Windows domain environment, the product can be customized and pushed via GPO or SCCM without issue."
"It handles situations that the other threat management tools wouldn't find. It has worked well covering the weaker sides of the other products that we're integrating."
"We are quite security-focused. Blackberry Protect as an endpoint solution for our service really delivers what we are expecting."
"In most cases, the solution's ability to detect in the MITRE framework, and its ability to be able to detect attacks in any one of seven or eight different areas of the life cycle of an attack is very useful."
"The most valuable features of CylancePROTECT are its powerful machine-learning capabilities and predictive intelligence."
"The solution’s AI is its most valuable feature."
"It is easy to use because it is already pre-installed in Windows 10. We don't have to do anything to configure it. You can also configure the firewall by using a group policy so that it can be easily adopted in an environment."
"Microsoft Defender is always running. It is doing its job, so it is fine. I don't have any issues with the way it was implemented or how we are running it. We have been upgrading IT throughout the years, but there have been no issues."
"Defender provides useful alerts and groups them. It sends an alert to your portal if it detects any malicious activity, and you can group multiple alerts to form an incident."
"The solution is highly scalable."
"It is a very advanced system based on AI. It has a very large database of places or sites on the internet where you should not go. It is continuously online."
"We have just started to implement it. It is useful for protection from malware and ransomware."
"The performance of Microsoft Defender for Endpoint has been a valuable feature."
"I like the real-time protection features. Windows Defender will detect if there's a threat like a Trojan or something like that but Kaspersky lets it run normally."
"Intelligence aspects need improvement"
"The solution's installation from a central installation server could be improved because the engineers had a little bit of trouble getting it installed from a central location."
"FortiEDR could add a separate scanning dashboard. In incident management, we prefer to remove the endpoint system from the environment and scan the system. We typically use Symantec for that, but if we want to use FortiEDR for that, then we need a scanning tab to clarify things."
"Making the portal mobile friendly would be helpful when I am out of office."
"The support needs improvement."
"We find the solution to be a bit expensive."
"I would like the solution to extend beyond endpoint protection and include other attack surfaces such as other network components."
"I haven't seen the use of AI in the solution."
"The product needs to continue to offer better alerts. In particular, around false positives. It needs to reduce them from happening."
"The solution’s technical support could be improved."
"Having worked with SentinelOne, Cylance is good, however, it probably needs to add a feature similar to SentinelOne's rollback functionality. With this feature, if you get infected, with a click, you can go back to the pre-infection state. If Cylance could add this functionality to their offering as well, that would be ideal."
"I'd like them to do software distribution too, but they said that that's architecturally not at the product line."
"The management console needs a little maturity in how it presents data and allows the administrator to drill down or search across systems."
"If they can add more features on top of their Persona feature that would be ideal."
"It could have integration with industrial base HMIS or Human Machine Interfaces Solutions. This is the industrial environment where you have a control center for all the automation that's happening, whether it is oil, gas, or chemical manufacturing. They often have to set up a computer at the back and watch the other stuff to get alerts. In these autonomous or on-premises environments, they often don't have access to email readily. Integration with other industrial solutions, such as HMIS, will allow them to communicate and get an alert that something has been found. This way, they can react to it sooner than having somebody watch the screen and keep checking the screen. Rockwell has its own suite. Similarly, Honeywell has its own suite. There's also an independent HMI/historian solution provider out there called VTSCADA. We actually get asked if we can get it to show up on a screen, which is difficult. Getting those alerts to work within an industrial environment would be a huge plus."
"The product must make the interface a little more user-friendly."
"Our team's knowledge of the solution needs to be improved, and Microsoft could do a better job conveying the necessary information to users. We could proactively use the tool more and explore capabilities we are not yet utilizing."
"There are likely some technical improvements or features that could be added, however, I cannot say, off the top of my head, what they would be."
"Microsoft Defender for Endpoint should include better automation that will make it faster to detect the latest threats happening across the world."
"It can get a bit laggy sometimes. Other than that, we don't have any issues. They constantly tweak it and fix it up based on users' feedback. It has improved a lot over the past four years. Defender for Endpoint never really used to be a good endpoint security solution, but over the past couple of years, Microsoft has invested heavily in it. So, it has come a long way in all aspects of endpoint security. If they want to make it better, they should just continue investing in the current path of what they've been doing over the past couple of years."
"The detection of viruses could be a little bit better."
"I would like the solution to be able to prevent unauthorized programs from installing and to block unauthorised URLs which is similar to web filtering product."
"Microsoft should improve support for third-party platforms, because not all functionality is available for all of them. It's a good product, but they should just extend the functionality for all platforms."
"Microsoft Defender for Endpoint can improve by providing more and different types of reports."
More Microsoft Defender for Endpoint Pricing and Cost Advice →
CylancePROTECT is ranked 23rd in Endpoint Protection Platform (EPP) with 41 reviews while Microsoft Defender for Endpoint is ranked 1st in Endpoint Protection Platform (EPP) with 182 reviews. CylancePROTECT is rated 8.0, while Microsoft Defender for Endpoint is rated 8.0. The top reviewer of CylancePROTECT writes "Ensures advanced AI-driven threat detection to provide robust endpoint security, effectively preventing both known and unknown threats with minimal impact on system performance". On the other hand, the top reviewer of Microsoft Defender for Endpoint writes "Eliminates the need to look at multiple dashboards by automatically providing one XDR dashboard to show the security score of each subscription". CylancePROTECT is most compared with CrowdStrike Falcon, SentinelOne Singularity Complete, Cortex XDR by Palo Alto Networks and VMware Carbon Black Endpoint, whereas Microsoft Defender for Endpoint is most compared with Symantec Endpoint Security, Intercept X Endpoint, CrowdStrike Falcon, SentinelOne Singularity Complete and Microsoft Intune. See our CylancePROTECT vs. Microsoft Defender for Endpoint report.
See our list of best Endpoint Protection Platform (EPP) vendors.
We monitor all Endpoint Protection Platform (EPP) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.