Try our new research platform with insights from 80,000+ expert users

BigFix vs ThreatLocker Zero Trust Endpoint Protection Platform comparison

HCLSoftware and ThreatLocker are both solutions in the Endpoint Protection Platform (EPP) category. HCLSoftware is ranked #23 with an average rating of 9.0, while ThreatLocker is ranked #7 with an average rating of 9.2. HCLSoftware holds a 1.1% mindshare in EPP, compared to ThreatLocker’s 0.8% mindshare. Additionally, 97% of HCLSoftware users are willing to recommend the solution, compared to 97% of ThreatLocker users who would recommend it.
BigFix
Read 97 BigFix reviews
  • 2,589 Views
  • 1,349 Comparison Views
97% willing to recommend
ThreatLocker Zero Trust End...
Read 39 ThreatLocker Zero Trust Endpoint Protection Platform reviews
  • 2,192 Views
  • 669 Comparison Views
97% willing to recommend
 

Comparison Buyer's Guide

Download the report
Executive SummaryUpdated on Jun 29, 2025

BigFix and ThreatLocker compete in the endpoint management and security category. ThreatLocker seems to have the upper hand due to its competitive pricing for comprehensive security features and ease of use.

Features: BigFix offers powerful asset management, patch management, and integration capabilities, providing extensive control and customizable reporting. Its strengths lie particularly in handling multiple platforms seamlessly. ThreatLocker provides application allowlisting, ringfencing, and selective elevation, focusing on zero trust protocols to minimize attack surfaces and offers an intuitive platform for users.

Room for Improvement: BigFix could enhance its web-based reporting and improve user-friendliness, especially in console design. Increasing automation and API integration is suggested by users. ThreatLocker could improve interface intuitiveness further and streamline policy management processes. Addressing network impacts during updates and offering more training options are areas needing attention.

Ease of Deployment and Customer Service: BigFix primarily supports on-premises deployments, with reliable technical support and a strong community. ThreatLocker supports versatile cloud deployments and is praised for its responsive support team, which is noted for effective problem resolution.

Pricing and ROI: BigFix is considered expensive, especially with add-ons, but provides a solid ROI through efficient compliance and patch management. ThreatLocker is viewed as reasonably priced, offering good value through its comprehensive security feature set, making it scalable and adaptable for various client needs.

DOWNLOAD THE COMPLETE REPORT
To learn more, read our detailed BigFix vs. ThreatLocker Zero Trust Endpoint Protection Platform Report (Updated: June 2025).
Buyer's Guide
BigFix vs. ThreatLocker Zero Trust Endpoint Protection Platform
June 2025
Download the complete report
Helped 860,168 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Categories and Ranking

BigFix
Ranking in Endpoint Protection Platform (EPP)
23rd
Average Rating
8.6
Reviews Sentiment
7.3
Number of Reviews
97
Ranking in other categories
Configuration Management (6th), Patch Management (2nd), Unified Endpoint Management (UEM) (4th)
ThreatLocker Zero Trust End...
Ranking in Endpoint Protection Platform (EPP)
7th
Average Rating
9.2
Reviews Sentiment
7.5
Number of Reviews
39
Ranking in other categories
Network Access Control (NAC) (5th), Advanced Threat Protection (ATP) (6th), Application Control (1st), ZTNA (3rd), Ransomware Protection (1st)
 

Mindshare comparison

As of July 2025, in the Endpoint Protection Platform (EPP) category, the mindshare of BigFix is 1.1%, up from 0.8% compared to the previous year. The mindshare of ThreatLocker Zero Trust Endpoint Protection Platform is 0.8%, up from 0.8% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Endpoint Protection Platform (EPP)
 

Featured Reviews

Bella Yakoby - PeerSpot reviewer
Offers third-party patching feature, good scalability, and enhance endpoint management capabilities
From the perspective of the team that's handling the environment, it's not so user-friendly compared to other solutions, the competitors. We hire new teams from time to time, and they are complaining, look, although BigFix is very robust and cross-platform, it's not so fun to work with. The user interface for the technical teams is not so advanced. It's not so intuitive compared to SCCM, compared to ManageEngine. And this is the fact that they have, with the teams, because they have the rejection. The look and feel of the system are old-fashioned. For new employees, it's less easy to find someone I don't need to educate on how to work with BigFix. Although it's easy, it's not as intuitive as the other solutions, and the functionality of the other solutions is less advanced. Let's summarize: The user interface has to be changed from the perspective of the teams that are managing the product. It's old school.
Read full review
Johnathan Bodily - PeerSpot reviewer
Ensures ransomware protection and reduces phishing chaos
The application control has been great so far, and while I am still exploring the network access controls, I unfortunately don't have access to one module I would love to have due to licensing restrictions. It's easy to use in regard to reducing attack surfaces. For me, it's a piece of cake. We can have something approved within 30 seconds, thanks to the mobile app. We haven't eliminated security solutions. We just add to it, and ThreatLocker has been a great addition. We also have Kaseya and ThreatLocker as a supplement to that. It's useful. They have overlap, and we look at the overlap as a good thing. It's helped your organization save on operational costs or expenses by ensuring that many fewer hours are spent dealing with ransomware nonsense. I cannot count the amount of hours that I personally have not had to put in to recovering an environment from a ransomware event. The last big one took us about three weeks to completely recover from. Since we've grouped ThreatLocker in, the management of that whole setup has gone down to just daily help desk tasks and general server maintenance instead of having the whole system on fire. There are probably thousands of hours of saved time between our teams. It's been great so far. ThreatLocker Zero Trust Endpoint Protection Platform's ability to block access to unauthorized applications is great. It's my biggest protection, the blocked applications. In a lot of cases, you go to install something yourself that you need for management, and it comes in and says, nope. And then I have to log into the portal and approve it. I get our other guys saying, hey, why are you trying to approve something? Any of the tools that I'm using on a day-to-day basis that haven't been in the environment during the whole learning mode initially, I could go through and set extensions and all that. So, while it's a headache on that end, the amount of saved time I can't even count. It is a little frustrating on my end since I like to go as quickly as I possibly can, and it slows me down. However, that's a really good thing. Depending on the site, it can save a lot of time and cut down headaches. It's likely saved a week's worth of time. It's cut down the amount of sever help desk tickets. Those have become minimal.
Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"I recommend BigFix to others."
"I’ve found patching to be the most valuable feature of the solution."
"What I like most is that it is a powerful solution."
"BigFix is a great product. The flexibility of putting together your own relevance and retrieving custom data from any one of your agents is a valuable feature. It is one of my favorite features because if a boss asks me, "How many of these devices do we have?", I can put together a report in two seconds."
"The most valuable features are patch management, software installation, and asset management."
"The product is less costly when compared to other solutions, and this is a good solid solution for what we have paid."
"DOWNLOADING-PATCHES; It has also helped to reduce network traffic when it comes to downloading patches. By only having to download the patch once to the central location and then utilizing the relay structure to then download the patch to a specific site and then everything gathering at local, it greatly reduces the bandwidth of multiple endpoints."
"We rely on BigFix as part of our consulting engagements. It's more efficient from a visibility and discovery standpoint on the initial phase, the consulting engagement. It also increases our efficiencies on the remediation phase of our engagements."
More BigFix pros
"The application control is highly valued by me."
"Feature-wise, the learning mode and the fact that it's blocking everything are the most valuable. I don't see why more companies don't use the type of product."
"While it can be frustrating at times, we appreciate the low-level security provided by the application whitelist."
"Allowlisting, in general, is valuable because it allows us to have a lot more granular control over what is executed on a desktop. We are also able to ringfence known vectors of attack through Office applications, email, browsers, etc."
"The unified alerts are useful."
"I would rate it a ten out of ten."
"The customer service is amazing."
"The control list is the best feature. For our company, it provides value to our customers since they can see we are improving our security."
More ThreatLocker Zero Trust Endpoint Protection Platform pros
 

Cons

"I'd like to see better API integration with BigFix. We have some tremendous API capability inside of CyFIR and the ability to take textual search results, for example, and bring that back into the BigFix dashboard. This would be of extreme interest to us and our customers."
"I would like to see the Self Service section made more user-friendly."
"They don't have a proper mobile device management capability. They're working on it, however, that's the one thing that needs improvement so that you can have full unified endpoint management."
"The remote software installation could be better."
"They need better integration."
"I'd like to see better integration, with the different applications within BigFix. Instead of sometimes feeling like four or five different applications, they need to be integrated a little better within themselves."
"For improvements, it would be good if BigFix supported more databases. Currently, it only supports DB2 and Microsoft SQL. Adding support for other databases like Oracle would be beneficial."
"Implementing a business solution with BigFix has some issues, primarily concerning the time required for distribution to clients if there are too many."
More BigFix cons
"The Cyber Hero certification exam could use a bit of love, but overall, I have been very satisfied with the platform."
"More visibility in the built-ins would be nice."
"We use other vendors for other components. I'd like one vendor to control all aspects of the business, including backup, EDR solutions, email monitoring, and control, rather than using multiple vendors."
"ThreatLocker's technical support process could be streamlined by reducing the number of steps required to reach a human agent."
"Scalability is challenging, not due to the platform. Scaling ThreatLocker Zero Trust Endpoint Protection Platform usage requires dedicated resources for maintenance."
"Some reporting areas need improvement. We need to generate more reports."
"I find that the learning mode is too accessible. Technicians sometimes default to it instead of manually building policy controls."
"ThreatLocker Allowlisting needs to improve its user interface and overall workflow."
More ThreatLocker Zero Trust Endpoint Protection Platform cons
 

Pricing and Cost Advice

"So, the pricing is slightly more expensive than the others. I have to keep buying licenses every time I add a new device."
"It might be about $23 a client."
"It is too costly. It is one of the best tools, but because of pricing, not all clients support it. Its licensing is on a yearly basis."
"You are charged per server and per workstation when using BigFix. ManageEngine is a lot cheaper than BigFix. There are some additional costs, such as support."
"The license is subscription-based."
"The cost is slightly high."
"The tool's price continues to go up. The cost per endpoint can vary, ranging from approximately 30 to 80 dollars per year. Compared to other products, pricing is in the middle. You need to buy an additional database license, but most users already have it."
"The price of BigFix could be lower. However, I am always seeking a lower price."
More BigFix pricing and cost advice
"Although the pricing seems good, there have been inconsistencies in contract negotiations."
"The price of ThreatLocker Allowlisting is reasonable in the market, but it is not fantastic."
"The price is very reasonable, and we have been able to integrate ThreatLocker with all of our clients."
"The pricing is pretty fair, considering other solutions. Licensing-wise, it did not take long."
"I believe ThreatLocker's pricing model is fair and flexible, allowing account managers to offer customized deals based on our specific needs."
"I do not know about the licensing and price as it comes bundled from our MSP. However, it seems fairly reasonable for us, which is why we chose it."
"I do not deal with pricing, but I assume it is cost-effective for us. We choose a solution based on functionality and affordability."
"Its price is fair. They have added some additional things to it beyond allowlisting. They are up-charging for them, but in terms of the value we get and the way it impacts us, we get a bang for our buck with ThreatLocker than a lot of our other security tools."
More ThreatLocker Zero Trust Endpoint Protection Platform pricing and cost advice
report
See which vendors are best for you
Use our free recommendation engine to learn which Endpoint Protection Platform (EPP) solutions are best for your needs.
See recommendations
860,168 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Educational Organization
23%
Financial Services Firm
12%
Government
9%
Computer Software Company
8%
Computer Software Company
35%
Retailer
8%
Manufacturing Company
5%
Financial Services Firm
5%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
 

Questions from the Community

What do you like most about BigFix?
The most valuable features of the solution are Windows patching and the hardware and software inventory.
See all answers
What is your experience regarding pricing and costs for BigFix?
The pricing is competitive, but not the most competitive.
See all answers
What needs improvement with BigFix?
While performing integration, we face many issues with IBM solution. We need detailed information about those issues that can help users to mitigate them. The problem was related to the hardware co...
See all answers
What do you like most about ThreatLocker Allowlisting?
The interface is clean and well-organized, making it simple to navigate and find what we need.
See all answers
What is your experience regarding pricing and costs for ThreatLocker Allowlisting?
Pricing, setup costs, and licensing have been pretty accessible and manageable. It was not too expensive to get started, especially at a small scale for a smaller MSP. It is very accessible, easy t...
See all answers
What needs improvement with ThreatLocker Allowlisting?
For the space that it's in, it's already there. I don't know of another product that compares to its level. Even recently, with the addition of the detect module is a very nice add-on to the packet...
See all answers
 

Comparisons

Microsoft Intune vs BigFix Logo
Microsoft Intune vs BigFix
Compared 12% of the time
Tanium vs BigFix Logo
Tanium vs BigFix
Compared 8% of the time
Microsoft Configuration Manager vs BigFix Logo
Microsoft Configuration Manager vs BigFix
Compared 8% of the time
Red Hat Ansible Automation Platform vs BigFix Logo
Red Hat Ansible Automation Platform vs BigFix
Compared 6% of the time
Red Hat Satellite vs BigFix Logo
Red Hat Satellite vs BigFix
Compared 4% of the time
More BigFix Competitors
CrowdStrike Falcon vs ThreatLocker Zero Trust Endpoint Protection Platform Logo
CrowdStrike Falcon vs ThreatLocker Zero Trust Endpoint Protection Platform
Compared 16% of the time
SentinelOne Singularity Complete vs ThreatLocker Zero Trust Endpoint Protection Platform Logo
SentinelOne Singularity Complete vs ThreatLocker Zero Trust Endpoint Protection Platform
Compared 15% of the time
Microsoft Defender for Endpoint vs ThreatLocker Zero Trust Endpoint Protection Platform Logo
Microsoft Defender for Endpoint vs ThreatLocker Zero Trust Endpoint Protection Platform
Compared 15% of the time
Ivanti Application Control vs ThreatLocker Zero Trust Endpoint Protection Platform Logo
Ivanti Application Control vs ThreatLocker Zero Trust Endpoint Protection Platform
Compared 7% of the time
Microsoft Defender for Office 365 vs ThreatLocker Zero Trust Endpoint Protection Platform Logo
Microsoft Defender for Office 365 vs ThreatLocker Zero Trust Endpoint Protection Platform
Compared 3% of the time
More ThreatLocker Zero Trust Endpoint Protection Platform Competitors
 

Product Reports

Buyer's Guide
BigFix
June 2025
BigFix reportDownload BigFix product report
Buyer's Guide
ThreatLocker Zero Trust Endpoint Protection Platform
June 2025
ThreatLocker Zero Trust Endpoint Protection Platform reportDownload ThreatLocker Zero Trust Endpoint Protection Platform product report
 

Also Known As

Tivoli Endpoint Manager
Protect, Allowlisting, Network Control, Ringfencing
 

Overview

HCL BigFix is a powerful patch management tool that enables organizations to simply control their patch management operations. It is designed so that IT security and operations teams can collaborate in the most effective way possible. Users that employ BigFix can find and fix issues with their endpoints faster than those that employ its competitors. It comes with thousands of security checks that can be deployed quickly and easily. These enable users to safeguard themselves from a wide variety of digital threats.

HCL BigFix Benefits

Some of the ways that organizations can benefit by choosing to deploy HCL BigFix include:

  • Total visibility and simplified control. BigFix provides users with total system visibility while simultaneously enabling administrators to easily manage their networks. It enables organizations to run all of their patch management operations from a single user interface. This UI contains all of BigFix’s system controls. It also contains all of an organization’s network data. Users will never have to search for the features or information that they need as everything is centrally located.
  • Maximum benefit for reduced overhead. BigFix enables businesses to integrate with more than 100 different operating systems. Users can utilize the operating system of their choice without multiplying their overhead costs. They can keep costs down while still achieving their goals. 
  • Flexibility. BigFix is highly flexible. Users can integrate it with the top vulnerability management solutions on the market. This enables users to maximize their protective coverage and minimize the amount of time that they have to spend resolving issues. 

BigFix Features

  • BigFix Insights. The BigFix insights feature gives users access to a powerful deep analysis tool. This tool enables organizations to gather data from all of their endpoints and compile them into reports that can aid administrators in their work. It can centralize an organization’s data and also enable it to import data from other sources so that it can make more informed decisions.
  • Task automation. BigFix has the ability to automate rudimentary tasks so that users can focus on tasks that require a greater level of attention. This can include tasks such as event remediation and data collection. This feature enables users to focus their attention on other more critical tasks.
  • Data loss prevention tool. This tool enables users to prevent critical data from being leaked or leaking accidentally. It creates policies that limit or prevent sensitive data from being transmitted. It also enforces the privacy protocols that are already in place. Organizations can leverage this tool to bolster the security protecting their data from malicious actors.
  • Web reputation tool. This tool proactively protects networks from malicious websites. It scans for potentially dangerous websites and opens a blocking page when one is detected. Users are also given the ability to set proxy server credentials for the system to recognize and authenticate. Users can use this to ensure that suspicious websites are unable to infect their networks.
  • Centralized UI. BigFix comes with a built-in UI that centralizes all of the solution’s features so that they can be accessed from a single location. It enables administrators to target specific portions of the network when issues arise without requiring them to take actions that will affect the entire network.

Reviews from Real Users

HCL BigFix is a highly effective solution that stands out when compared to most of its competitors. Two major advantages it offers are its auto-patching capability and its user-friendly tools.

Santhosh K., the chief executive officer of Catnip Infotech Private Limited, writes, “The second valuable feature is, BigFix also has an auto patch updating feature, where the latest patches, and what is required for my system are automatically downloaded and kept ready for me. The solution applies the patch and notifies me after applying the patch. BigFix also gives me a ping saying that I should reset my system within a certain period of time, while the patch is being applied. Let's say, the patch is being applied and if there's an issue, the solution can revoke the applied patch, and revert back to the old state.”


Benedikt S., an application administrator, says, “It's very straightforward. The usability is very close to everyday technical tools that you use as a systems administrator. So it's quite user-friendly.”

HCLSoftware

ThreatLocker Zero Trust Endpoint Protection Platform offers robust endpoint security through application control and allowlisting, safeguarding servers and workstations from unauthorized software execution.

ThreatLocker Zero Trust Endpoint Protection Platform provides extensive application control with features like ring-fencing and selective elevation, ensuring meticulous execution management. Offering learning mode and extensive support, it integrates threat detection and activity monitoring to enhance compliance, reduce costs, and bolster cybersecurity through alerts and approvals. Despite its strengths, there are areas for improvement in training flexibility, policy updates, and interface enhancements, along with challenges in handling non-digitally signed software. Deployed across environments, it works well with existing cybersecurity instruments for real-time threat prevention.

What are the top features of ThreatLocker?
  • Intuitive Interface: User-friendly design simplifies endpoint protection management.
  • Application Blocking: Prevents unauthorized applications from running.
  • Selective Elevation: Grants control over application permissions.
  • Ring-Fencing: Isolates applications to limit interactions.
  • Allowlisting: Ensures only trusted software can execute.
  • Learning Mode: Facilitates configuration by observing user behavior.
  • Real-Time Support: Access to assistance and training resources.
What benefits should reviewers seek?
  • Compliance: Meets regulatory standards.
  • Operational Cost Reduction: Consolidated alerts and approvals.
  • Enhanced Cybersecurity: Prevention of unauthorized applications.
  • Regulatory Alignment: Helps ensure adherence to legal requirements.

ThreatLocker Zero Trust Endpoint Protection Platform is widely implemented to safeguard IT infrastructures against unauthorized access and application use. In sectors where data security is paramount, this platform enables users to prevent unauthorized software installations and control device applications, ensuring real-time threat prevention and compliance with industry regulations.

ThreatLocker
 

Sample Customers

US Foods, Penn State, St Vincent's Health US Foods, Sabadell Bank, SunTrust, Australia Sydney, Stemac, Capgemini, WNS Global Services, Jebsen & Jessen, CenterBeam, Strauss, Christian Hospital Centre, Brit Insurance, Career Education Corporation
Information Not Available
Buyer's Guide
BigFix vs. ThreatLocker Zero Trust Endpoint Protection Platform
June 2025
Free Report: BigFix vs. ThreatLocker Zero Trust Endpoint Protection Platform
Find out what your peers are saying about BigFix vs. ThreatLocker Zero Trust Endpoint Protection Platform and other solutions. Updated: June 2025.
DOWNLOAD NOW
860,168 professionals have used our research since 2012.
See our BigFix vs. ThreatLocker Zero Trust Endpoint Protection Platform report.
See our list of best Endpoint Protection Platform (EPP) vendors.

We monitor all Endpoint Protection Platform (EPP) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.