Cisco Secure Endpoint vs Morphisec comparison

Cisco and Morphisec are both solutions in the Endpoint Protection Platform (EPP) category. Cisco is ranked #35 with an average rating of 8.7, while Morphisec is ranked #52. Cisco holds a 1.3% mindshare in EPP, compared to Morphisec’s 0.6% mindshare. Additionally, 96% of Cisco users are willing to recommend the solution, compared to 100% of Morphisec users who would recommend it.

Cisco Secure Endpoint

Read 49 Cisco Secure Endpoint reviews

4,994 Views
3,196 Comparison Views

96% willing to recommend

Morphisec

Read 21 Morphisec reviews

2,659 Views
1,143 Comparison Views

100% willing to recommend

Cisco Secure Endpoint

Morphisec

Comparison Buyer's Guide

Download the report

Executive SummaryUpdated on Sep 9, 2024

Cisco Secure Endpoint and Morphisec are leading endpoint security solutions. Cisco Secure Endpoint appears to have the upper hand due to its comprehensive support and pricing, while Morphisec is notable for its advanced features.

Features: Cisco Secure Endpoint offers robust security features such as advanced threat detection, remediation, and integration with other Cisco security products. Morphisec provides proactive prevention capabilities, a lightweight agent, and minimal impact on system performance.

Room for Improvement:Cisco Secure Endpoint could benefit from performance optimization, a more intuitive setup process, and enhanced user interface. Morphisec needs improvement in reporting capabilities, greater configuration flexibility, and better customer support documentation.

Ease of Deployment and Customer Service:Cisco Secure Endpoint is noted for straightforward deployment, though its configuration process is complex, with highly rated customer support. Morphisec offers easy deployment and minimal system disruption, but customer service receives mixed reviews compared to Cisco.

Pricing and ROI:Cisco Secure Endpoint is cost-effective with a good return on investment, though initial setup costs can be high. Morphisec is more expensive but users believe its superior features justify the cost and provide solid ROI.

To learn more, read our detailed Cisco Secure Endpoint vs. Morphisec Report (Updated: January 2026).

Buyer's Guide

Cisco Secure Endpoint vs. Morphisec

January 2026

Download the complete report

Helped 881,733 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Categories and Ranking

Cisco Secure Endpoint

Ranking in Endpoint Protection Platform (EPP)

35th

Ranking in Endpoint Detection and Response (EDR)

27th

Average Rating

8.6

Reviews Sentiment

7.2

Number of Reviews

Ranking in other categories

Cisco Security Portfolio (6th)

Morphisec

Ranking in Endpoint Protection Platform (EPP)

52nd

Ranking in Endpoint Detection and Response (EDR)

60th

Average Rating

9.2

Reviews Sentiment

7.4

Number of Reviews

Ranking in other categories

Vulnerability Management (54th), Advanced Threat Protection (ATP) (32nd), Cloud Workload Protection Platforms (CWPP) (34th), Threat Deception Platforms (20th)

Mindshare comparison

As of February 2026, in the Endpoint Protection Platform (EPP) category, the mindshare of Cisco Secure Endpoint is 1.3%, down from 1.5% compared to the previous year. The mindshare of Morphisec is 0.6%, up from 0.4% compared to the previous year. It is calculated based on PeerSpot user engagement data.

Endpoint Protection Platform (EPP) Market Share Distribution
Product	Market Share (%)
Cisco Secure Endpoint	1.3%
Morphisec	0.6%
Other	98.1%

Endpoint Protection Platform (EPP)

Featured Reviews

JavedHashmi

Chief Technology Officer at Future Point Technologies

Reliable threat protection is achieved while integration and analysis capabilities need refinement

Cisco Secure Endpoint is very good in machine learning, which allows it to secure offline contents even if not connected to the internet. We haven't encountered a single breach after it's deployed. It controls USB devices and has a separate antivirus solution called Tetra, providing security even for real-time, day-zero attacks through its strong Talos threat intelligence platform.

Read full review

reviewer1739325

CISO at a media company with 10,001+ employees

Easy to deploy and configure, stable, and has good support

The weakest point of this product is how difficult it is to understand the reasons for an alert. This is a problem because it is hard to determine whether an attack is real or not. It blocks the behavior automatically but it is quite difficult to check the reason for this, and it is something that we are discussing with Morphisec. We need to have better reporting features that are able to produce KPIs that we can show to management. Improved analytics reports would help us to understand what type of attack it is and how it was able to reach a particular computer.

Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Pros

"Integration is a key selling factor for Cisco security products. We have a Cisco Enterprise Agreement with access to Cisco Email Security, Cisco Firepower, Cisco Stealthwatch, Cisco Talos, Cisco Threat Grid, Cisco Umbrella, and also third-party solutions. This is key to our security and maximizing operations. Because we do have the Email Security appliance and it is integrated with Threat Response, we have everything tied together. Additionally, we are using the Cisco SecureX platform, as we were a beta test for that new solution. With SecureX, we are able to pull all those applications into one pane for visibility and maintenance. This greatly maximizes our security operations."

"I'm only using the AMP (advanced malware protection) which is protecting my file system from all the malicious things that might happen. It should protect all kinds of things that might happen on the servers, things that I cannot see."

"It is extensive in terms of providing visibility and insights into threats. It allows for research into a threat, and you can chart your progress on how you're resolving it."

"For the initial first level of support, we provide it from our side. If there's escalation required, we use Cisco tech for the AMP. And again, they are perfect. I mean, one of the best, compared to any other vendors."

"Any alert that we get is an actionable alert. Immediately, there is information that we can just click through, see the point in time, what happened, what caused it, and what automatic actions were taken. We can then choose to take any manual actions, if we want, or start our investigation. We're no longer looking at digging into information or wading through hundreds of incidents. There's a list which says where the status is assigned, e.g., under investigation or investigation finished. That is all in the console. It has taken away a lot of the administration, which we would normally be doing, and integrated it into the console for us."

"The visibility and insight this solution gives you into threats is pretty granular. It has constant monitoring. You can get onto the device trajectory to look at a threat, but you can also see what happened prior to the threat. You can see what happened after the threat. You can see what other applications were incorporated into the execution of the threat. For example, you have the event, but you see that the event was launched by Google Chrome, which was launched by something else. Then, after the event, something else was launched by whatever the threat was. Therefore, it gives you great detail, a timeline, and continuity of events leading up to whatever the incident is, and then, after. This helps you understand and nail down what the threat is and how to fix it."

"With Cisco Secure Endpoint, we now have visibility over what is happening on the endpoint side."

"The most valuable feature is its threat protection and data privacy, including its cyber attack and data protection, as we need to cover and protect data on user devices."

More Cisco Secure Endpoint pros

"Since using Morphisec we have seen a downturn in attacks because Morphisec protects us versus Defenders and whatnot that are signature-based. I know we have not had any issues with ransomware or other zero-day attacks that we've seen with machines that, all of a sudden, have become before we instituted the product. Now the machine had to be re-imaged and there was a loss of data because something was on the machine. You couldn't really determine what was on the machine because nothing was picking it up. The products we were using weren't picking it up."

"All the alerts are on the dashboard, which is quite simple and useful for us. You can easily check all the alerts that are being blocked or allowed, or whatever the action is. You can easily see that and you can take the necessary actions. You can add a PowerShell extension or any activities for blocking at your network level or for endpoints."

"We don't have to do anything as a user or as an admin. It does everything by default with its coding and inbuilt AI-based intelligence. We don't have to instruct it about what to do. It automatically takes corrective actions and quarantines or deletes a virus, malware, etc. That is the best part that I like about it."

"I really like the integration with Microsoft Defender. In addition to having third-party endpoint protection, we're also enabling Defender... I like the reporting that we get from Defender, when it comes in. I like that it's one console showing both Morphisec and Defender where it provides me with full visibility into security events from Defender and Morphisec."

"Morphisec's in-memory protection is probably the most valuable feature because it stops malicious activity from occurring. If something tries to install or act as a sleeper agent, Morphisec will detect and stop it."

"Morphisec makes it very easy for IT teams of any size to prevent breaches of critical systems because of the design of their tool. When we evaluated Morphisec, the CIO and I sat and listened. What attracted us to them is the fact that it stops activity at the point of detection. That saves a lot of time because now we are not investigating and trying to trace down what to turn off. We have already prevented it, which makes it very much safer and more secure."

"We have seen it successfully block attacks that a traditional antivirus did not pick up."

"Morphisec Guard enables us to see at a glance whether our users have device control and disk encryption enabled properly. This is important because we are a global company operating with multiple entities. Previously, we didn't have that visibility. Now, we have visibility so we can pinpoint some locations where there are machines that are not really protected, offline, etc. It gives us visibility, which is good."

More Morphisec pros

Cons

"The one challenge that I see is the use of multiple endpoint protection platforms. For instance, we have AMP, but we also have Microsoft Windows Defender, System Center Endpoint Protection, and Microsoft Malware Protection Engine deployed. So, we have a bunch of different things that do the same thing. What winds up happening is, e.g., if I get an alert for a potential incident or malware and want to pull the file, I'll go to fetch the file to analyze it. But, one of these other programs has already gotten it, so the file has already been quarantined by another endpoint protection system. AMP doesn't realize that and the file fetch fails, then you're left wondering what's going on."

"Integration and dashboard are areas with certain shortcomings in Cisco Secure Endpoint."

"This product has issues with the number of false positives that it reports."

"The solution needs more in-depth analytics."

"Logging could be better in terms of sending more logs to Cisco Firepower or Cisco ASA. That's an area where it could be made better."

"I would recommend that the solution offer more availability in terms of the product portfolio and integration with third-party products."

"It is not very stable because we have new versions four times a year, which fixes bugs. We had some problems with some deployments."

"I would like to see integration with Cisco Analytics."

More Cisco Secure Endpoint cons

"Morphisec is a venture startup. They are still early in their growth stage. They need to get mature on their customer support and on how they interface with system tools. For example, they need to get multifactor in place and an API for the major multi-factor systems, e.g., Okta, Duo, Ping, and Microsoft. They don't have them built in yet. They are working on them. It is just not there yet. Also, their stability, customer support, and processes need improvement, which is just part of maturity."

"We sometimes have to depend on the support team to know what action we should take. If the solution for an alert can be built into the report that we are getting, it will save time, and the interaction with support would be less. At times, corrective action is required, but at times, we don't need to take any action. It would be good if we get to know in the report that a particular infection doesn't require any action. It will save us time and effort."

"Sometimes it generates false positive alerts. They need to continue working on that. They have provided solutions for it and have fixed issues with updated versions. The service is quite good but they need to work on it more so that there are no false positive alerts."

"Automating reports needs improvement. I would like to have better reporting capabilities within it or automated reporting to be a little bit more dynamic. That's something I know they're working on. We literally are in the process. We started the process a week and a half ago of going to their latest version, so I've not seen their latest one up and running yet."

"We have discovered some bugs in the new releases that they've had to fix, so I would like to see more testing and QA on their side before they release."

"The only area that really needs improvement is the reporting functionality. Gathering the detailed information that is in the system for an executive, or for me as a director, could be better. Some of the interface and reporting aspects are a little bit dated. They're working on it."

"It would be nice if they could integrate Morphisec with other traditional antivirus solutions beyond Microsoft Defender. That is probably my biggest gripe."

"If anything, tech support might be their weakest link. The process of getting someone involved sometimes takes a little time. It seems to me that they should have all the data they need to let me know whether an alert is legitimate or not, but they tend to need a lot of information from me to get to the bottom of something. It usually takes a little longer than I would expect."

More Morphisec cons

Pricing and Cost Advice

"Our company was very happy with the price of Cisco AMP. It was about a third of what we were paying for System Center Endpoint Protection."

"The solution's price is about the same as that of Palo Alto solutions."

"We had faced some license issues, but it has been improved. At the beginning of the implementation, we faced a lot of licensing issues, but now, we have EA licensing, which gives us an opportunity to grow."

"The costs of 50 licenses of AMP for three years is around $9,360."

"Because we do see the value of what it's bringing, I think they have priced it well."

"The price is very fair to the customer."

"The pricing and licensing of the security solutions of Cisco are very good in comparison with the competitors, but sometimes, it's difficult to see all the discounts and other kinds of things. So, you have to be careful, but the pricing is good."

"The price is very good."

More Cisco Secure Endpoint pricing and cost advice

"The pricing is definitely fair for what it does."

"Our licensing is tied into our contract. Because we have a long-term contract, our pricing is a little bit lower. It is per year, so we don't get charged per endpoint, but we do have a cap. Our cap is 80 endpoints. If we were to go over 80, when we renewed our contract, which is not until three years are over. Then, they would reevaluate, and say, "Well, you have more than 80 devices active right now. This is going to be the price change." They know that we are installing and replacing computers, so the numbers will be all over the place depending on whether you archive or don't archive, which is the reason why we just have to keep up on that stuff."

"It does not have multi-tenants. If South Africa wants to show only the machines that they have, they need their own cloud incidence. It is not possible to have that in a single cloud incidence with multiple tenants in it, instead you need to have multiple cloud incidences. Then, if you have that, it will be more expensive. However, they are going to change that, which is good."

"We are still using a separate tool. I know for our 600 or I think we're actually licensed for up to 700 users, it runs me 23 or $24,000 a year. When you're talking to that many users plus servers being protected, that's well worth the investment for that dollar amount."

"It is priced correctly for what it does. They end up doing a good deal of discounting, but I think it is priced appropriately."

"Licenses are per endpoint, and that's true for the cloud version as well. The only difference is that there is a little extra charge for the cloud version."

"Compared to their competitors, the price of Morphisec is not that high. You can easily deploy it on a large-scale or small-scale network."

"Morphisec is reasonably priced because our parent company's other subsidiaries use different products like CrowdStrike. CrowdStrike is four or five times more expensive than Morphisec. The competitive pricing saves us money in our overall security stack."

More Morphisec pricing and cost advice

See which vendors are best for you

Use our free recommendation engine to learn which Endpoint Protection Platform (EPP) solutions are best for your needs.

See recommendations

881,733 professionals have used our research since 2012.

Top Industries

By visitors reading reviews

Computer Software Company

12%

Manufacturing Company

10%

Government

Healthcare Company

Outsourcing Company

17%

Manufacturing Company

10%

Financial Services Firm

Computer Software Company

Company Size

By reviewers

Large Enterprise

Midsize Enterprise

Small Business

By reviewers
Company Size	Count
Small Business	21
Midsize Enterprise	14
Large Enterprise	21

By reviewers
Company Size	Count
Small Business	5
Midsize Enterprise	8
Large Enterprise	8

Questions from the Community

What do you like most about Cisco Secure Endpoint?

The product's initial setup phase was very simple.

See all answers

What is your experience regarding pricing and costs for Cisco Secure Endpoint?

Cisco is aggressive in pricing, making it competitive and sometimes even cheaper than other good products like CrowdStrike, Microsoft Defender, or SentinelOne.

See all answers

What needs improvement with Cisco Secure Endpoint?

Cisco Secure Endpoint lacks features like DLP which other vendors offer. XDR is new, so integration capabilities with third-party tools need improvement. The forensic capabilities need enhancement,...

See all answers

Ask a question

Earn 20 points

Comparisons

Microsoft Defender for Endpoint vs Cisco Secure Endpoint

Compared 8% of the time

CrowdStrike Falcon vs Cisco Secure Endpoint

Compared 6% of the time

SentinelOne Singularity Complete vs Cisco Secure Endpoint

Compared 5% of the time

Symantec Endpoint Security vs Cisco Secure Endpoint

Compared 4% of the time

BlackBerry Cylance Cybersecurity vs Cisco Secure Endpoint

Compared 4% of the time

More Cisco Secure Endpoint Competitors

Halcyon vs Morphisec

Compared 11% of the time

CrowdStrike Falcon vs Morphisec

Compared 8% of the time

Deep Instinct Prevention Platform vs Morphisec

Compared 7% of the time

FortiCNAPP vs Morphisec

Compared 6% of the time

Virsec Security Platform vs Morphisec

Compared 3% of the time

More Morphisec Competitors

Product Reports

Buyer's Guide

Cisco Secure Endpoint

February 2026

Download Cisco Secure Endpoint product report

Buyer's Guide

Morphisec

January 2026

Download Morphisec product report

Also Known As

Cisco AMP for Endpoints

Morphisec, Morphisec Moving Target Defense

Overview

Cisco Secure Endpoint is a comprehensive endpoint security solution that natively includes open and extensible extended detection and response (XDR) and advanced endpoint detection and response (EDR) capabilities. Secure Endpoint offers relentless breach protection that enables you to be confident, be bold, and be fearless with one of the industry’s most trusted endpoint security solutions. It protects your hybrid workforce, helps you stay resilient, and secures what’s next with simple, comprehensive endpoint security powered by unique insights from 300,000 security customers and deep visibility from the networking leader.

Cisco Secure Endpoint was formerly known as Cisco AMP for Endpoints.

Reviews from Real Users

Cisco Secure Endpoint stands out among its competitors for a number of reasons. Two major ones are its ability to enable developers to easily secure their endpoints with one single operation using its management console and its advanced alerting techniques.

Tim C., an IT manager at Van Der Meer Consulting, writes, "The solution makes it possible to see a threat once and block it everywhere across all endpoints and the entire security platform. It has the ability to block right down to the file and application level across all devices based on policies, such as, blacklisting and whitelisting of software and applications. This is good. Its strength is the ability to identify threats very quickly, then lock them and the network down and block the threats across the organization and all devices, which is what you want. You don't want to be spending time working out how to block something. You want to block something very quickly, letting that flow through to all the devices and avoiding the same scenario on different operating systems."

Wouter H., a technical team lead network & security at Missing Piece BV, notes, "Any alert that we get is an actionable alert. Immediately, there is information that we can just click through, see the point in time, what happened, what caused it, and what automatic actions were taken. We can then choose to take any manual actions, if we want, or start our investigation. We're no longer looking at digging into information or wading through hundreds of incidents. There's a list which says where the status is assigned, e.g., under investigation or investigation finished. That is all in the console. It has taken away a lot of the administration, which we would normally be doing, and integrated it into the console for us."

Cisco

Morphisec delivers signatureless endpoint-specific protection, effectively blocking zero-day threats and ransomware without affecting performance, making it a preferred choice for enhancing security strategies.

Morphisec empowers users by providing comprehensive protection against advanced threats with its innovative signatureless and in-memory security features. Its seamless integration with Microsoft Defender ensures complete visibility and automatic threat blocking through a unified dashboard. The Moving Target Defense technology enhances deployment efficiency while its lightweight design maintains system performance. Despite some challenges in cloud deployment and feature updates, users find value in its ease of use and minimal administrative effort.

What are the key features of Morphisec?

Signatureless Protection: Blocks threats without relying on signatures, ensuring up-to-date defense.
In-Memory Protection: Prevents attacks targeting system memory to safeguard endpoints.
Zero-Day Threat Blocking: Offers proactive defense against undiscovered threats.
Unified Dashboard: Provides comprehensive security event visibility and integration with Microsoft Defender.
Lightweight Design: Ensures smooth operation without system performance issues.

What benefits can users expect when evaluating Morphisec?

Enhanced Security: Strengthens defense layers against ransomware and memory attacks.
Seamless Integration: Works alongside existing antivirus solutions like Microsoft Defender.
Minimal Administration: Requires low maintenance due to its set-and-forget nature.
Automatic Updates: Keeps protection current without manual intervention.
Broad Coverage: Suitable for desktops, servers, and cloud platforms.

In industries with high security needs, deploying Morphisec adds a robust defense against advanced threats. Its compatibility with antivirus solutions and cloud platforms makes it adaptable to diverse environments, ensuring effective threat mitigation and detection.

Morphisec

Sample Customers

Heritage Bank, Mobile County Schools, NHL University, Thunder Bay Regional, Yokogawa Electric, Sam Houston State University, First Financial Bank

Lenovo/Motorola, TruGreen, Covenant Health, Citizens Medical Center

Buyer's Guide

Cisco Secure Endpoint vs. Morphisec

January 2026

Free Report: Cisco Secure Endpoint vs. Morphisec

Find out what your peers are saying about Cisco Secure Endpoint vs. Morphisec and other solutions. Updated: January 2026.

DOWNLOAD NOW

881,733 professionals have used our research since 2012.

See our Cisco Secure Endpoint vs. Morphisec report.

See our list of best Endpoint Protection Platform (EPP) vendors and best Endpoint Detection and Response (EDR) vendors.

We monitor all Endpoint Protection Platform (EPP) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.