Cisco Secure Endpoint is a comprehensive, cloud-managed endpoint security solution designed to protect devices from advanced malware and cyber threats throughout the entire attack lifecycle—before, during, and after an attack. It offers powerful prevention capabilities to identify and stop threats before they compromise your systems, using multifaceted techniques including risk-based vulnerability management and posture assessments. The solution provides deep visibility and advanced detection…
N/A
ThreatLocker
Score 9.5 out of 10
N/A
ThreatLocker Inc. is a security platform used to stop misuse and vulnerable software as well as control application elevation, storage and network traffic.
N/A
Pricing
Cisco Secure Endpoint
ThreatLocker
Editions & Modules
No answers on this topic
No answers on this topic
Offerings
Pricing Offerings
Cisco Secure Endpoint
ThreatLocker
Free Trial
No
Yes
Free/Freemium Version
No
No
Premium Consulting/Integration Services
No
No
Entry-level Setup Fee
No setup fee
No setup fee
Additional Details
—
Contact vendor for pricing information.
More Pricing Information
Community Pulse
Cisco Secure Endpoint
ThreatLocker
Considered Both Products
Cisco Secure Endpoint
Verified User
Anonymous
Chose Cisco Secure Endpoint
Webroot Antivirus + Internet Security Complete (SecureAnywhere) and Veem
Cisco Secure Endpoint is easier to deploy and use versus Trend Micro Deep Security. The interface is less intuitive (possibly subjective) when compared to Cisco Secure Endpoint, which required more training for support staff. Also the integration is not as good with Trend. …
Cisco Secure Endpoint provides better overall support and detection compared to other products used. Strong visibility and a strong range of tools when researching an issue to find either information or resolution. Dashboards are also a lot cleaner than most products and easier …
Best tool if you have a heavy Cisco product suite for Intergrations. Send data to our SIEM (QRADAR) well and is easy to deploy with our SCCM. The groups and polices are helpful to customize protection for different endpoint needs.
Huntress is evaluating endpoints from a different perspective. SentinelOne would be an alternative product. Cisco Secure Endpoint always shows up reasonably close to SentinelOne in overall protection. SentinelOne does offer a SOC option which dramatically adds to the …
We were using McAfee but the performance was not good and it consume a high memory. Cisco secure endpoint is very advanced and very lightweight for organizations. The configuration and management are very easy and centralized.
The integration with all the other Cisco platforms made AMP a clear front-runner. Crowdstrike and Sophos had no integration at all and Palo Alto required their firewalls be deployed. Again, as a Cisco Security customer, it made complete sense to leverage their AMP technology.
Compared to Malwarebytes Enterprise, AMP is significantly harder to configure, update, implement, use. The overall burden that AMP puts on the IT department is rather high.
Cisco Secure Endpoint is an advanced EDR solution that is highly effective and scalable. Our experience previously with MalwareBytes and Microsoft Defender was not horrible, but these products were not as effective and did not integrate well with our other security products to …
Cisco Advanced Malware Protection (AMP) for Endpoints is one of a wide spectrum of Cisco security products and is the first step that can bring you to start using Cisco AnyConnect and Cisco ISE to integrate with them.
Being all products of a similar nature, Cisco Advance Malware Protection stands out for its simplicity, low resource consumption, reporting, work dashboards and integration with the rest of the already installed suit.
Those are the most notable aspects, although the rest of the …
AMP is far superior to Symantec in my opinion. It is much more robust and customizable. It is much easier to manage systems and to spot trouble areas. Deploying and upgrading clients is much simpler. It is a much more lightweight client on the desktop. Overall a much better …
When looking for a Malware Protection for Endpoints, AMP was our first and only choice. We like the fact that Cisco has a whole line of security software that can work together and so our goal has been to use the Cisco Suite that includes Umbrella, Firepower, AMP. We are very …
Prior to buying ThreatLocker, we evaluated Tanium's whitelisting module. We felt that ThreatLocker's method of baselining existing applications and comparing them to known IoC's made for an easier implementation. To be fair, this was solely based on demonstrations by each …
The pricing is what matters the most on this. We went with ThreatLocker mostly because of their pricing and as time has gone on, we have completely fallen in love with the tool. The vendor support is miles better than all other tools I have used and being able to freely …
I honestly have not seen many other programs like Threatlocker so I do not have any to compare to. Auto-Elevate may be the closest, however I did not evaluate them as part of my decision. Threatlocker does do a great job at onboarding which made deploying, setting up, and …
We chose Threatlocker because it is unique in that it specializes in a specific area, whereas other products offer a broader range of capabilities. It blocks software from running and provides us with all the necessary information for this purpose in an easy-to-use graphical …
Cisco Secure Endpoint is well suited for keeping track of the many different and points that we have in our organization. All of these devices can easily be monitored with Cisco Secure Endpoint. It can monitor our servers and our desktops and laptops in our environment. It isn’t as appropriate for our student devices. However, those aren’t as critical since they are just Chromebooks.
If you want to know what is running in your environment and what it is trying to access, you should be able to take preemptive measures to prevent and protect yourself from it. ThreatLocker is the system for you! It will replace almost any EDR requirement, although I recommend you partner it with Windows Defender.
ThreaLocker has done its job and has prevented malware from executing. It has stopped an encryption process once already. It has kept a user from going to a bad website. He tried twice and was wondering why he was getting an error message from ThreatLocker and ESET both.
AMP is very difficult to use compared to other products we've seen. It's hard to understand why there are so many different logins for the various products that supposedly integrate with AMP. We had weekly phone calls for months to implement the product yet none of the IT department really enjoys using this product or feels comfortable with the accuracy of detections. The number of false positives is high.
The console is very user friendly and is frequently updated based on user requests. It is well laid out and many of the areas allow the ability to pivot from one area to another without having navigate the entire menu tree. Much of what you do is to query activities on a given PC and the application allows you to save frequently run queries.
In terms of technical support for Cisco Secure Endpoint, the support has been pretty good. All the cases I submitted were solved in a reasonable time frame, and it was a good experience. However, I find that not as many vendors have the expertise I would expect.
You can email, call or do online chat with tech support. I love their online chat. They are quick and friendly. Also, if you need to show them something, you can give the chat technician permission from your Chat box to allow the tech access to your computer. They also can pull out your admin console on their side. They can look at your "Unified Audit" log and see the same thing that you can. They have a good KnowledgeBase that you can look for answers. They have what is called "ThreatLocker University" where you can go through tutorials and take tests.
The owners and co-founders work with you through Zoom Meetings. They walk you through how to use and setup ThreatLocker. They also have webinars. You also can go through ThreatLocker University online training.
Using ThreatLocker University online training is very easy and informative. You take online tests to see how well you learned the material. It is great!
ThreatLocker is a family ran business. The owners, co-founders work with you to ensure you are up and running as quickly as possible. They went to ensure your success with ThreatLocker.
Other products we use were, I think, well, nothing like Cisco Endpoint. There was Microsoft Defender. I think Sophos and CrowdStrike. I think the visibility and the security. We haven't had any issues with the system. Once it's been implemented, it works fine. The enhancements that come into play, we're benefiting from them. We're benefiting from the Telos threat intel, which is really good as well
We chose Threatlocker because it is unique in that it specializes in a specific area, whereas other products offer a broader range of capabilities. It blocks software from running and provides us with all the necessary information for this purpose in an easy-to-use graphical user interface (GUI), which is all we need for our use case.
ThreatLocker is very easy to add new ThreatLocker agents on computers and servers. It is very easy to do. You can install an agent on a computer or server in about 2 minutes or less.
Applications that are new to the environment can be blocked even if they are wanted. Which can cause strain on the environment if not properly tuned or prepped.
We have this deployed onto around 7700 endpoints at this moment with less than 0.01% of issues with the agent or its functionality being noted. It's incredibly stable and the Vendor support further helps if it does break, and they can usually fix it without 15 mins.
We have had this tool on customers, and it has single handedly stopped Ransomware attacks by itself when the customers previous EDR failed to catch threat actor attacks. I can remember 3 separate instances where someone did something to cause an attack and ThreatLocker brought it to a screeching halt due to the application control and built-in ringfencing it provides.