Cybereason Endpoint Detection & Response vs Zscaler Client Connector comparison

Cybereason and Zscaler are both solutions in the Endpoint Detection and Response (EDR) category. Cybereason is ranked #32 with an average rating of 7.3, while Zscaler is ranked #33 with an average rating of 8.7. Cybereason holds a 1.1% mindshare in EDR, compared to Zscaler’s 0.5% mindshare. Additionally, 85% of Cybereason users are willing to recommend the solution, compared to 100% of Zscaler users who would recommend it.

Cybereason Endpoint Detecti...

Read 22 Cybereason Endpoint Detection & Response reviews

3,854 Views
2,467 Comparison Views

85% willing to recommend

Zscaler Client Connector

Read 5 Zscaler Client Connector reviews

571 Views
554 Comparison Views

100% willing to recommend

Cybereason Endpoint Detecti...

Zscaler Client Connector

Comparison Buyer's Guide

Download the report

Executive SummaryUpdated on Nov 2, 2025

Cybereason Endpoint Detection & Response and Zscaler Client Connector compete in the cybersecurity category, each offering unique benefits. While Cybereason is favored for its pricing and support, Zscaler stands out with its superior features, making it a worthy investment.

Features: Cybereason Endpoint Detection & Response offers comprehensive threat detection, advanced analytics, and real-time response capabilities. Zscaler Client Connector provides seamless integration with cloud services, a secure web gateway, and improved remote access security. Cybereason is geared towards endpoint intricacies, whereas Zscaler is focused on broader network control and scalability.

Ease of Deployment and Customer Service: Cybereason provides robust on-premise and hybrid deployment models, backed by strong customer service for smooth implementation. In contrast, Zscaler's primarily cloud-based approach allows agility and ease of scaling but may necessitate more initial customizations. Zscaler's customer service is efficient, though some clients may seek more extensive onboarding support. Cybereason's model fits organizations with complex infrastructures, while Zscaler caters to those prioritizing cloud transitions.

Pricing and ROI: Cybereason's pricing structure, while initially higher, offers appealing long-term benefits and a competitive ROI due to its advanced protection. Zscaler also provides a positive ROI, though its cloud-based SaaS model might involve ongoing costs. Despite differing pricing impacts, both solutions deliver substantial returns; Zscaler aligns tightly with its advanced features, while Cybereason offers returns through deep endpoint engagement.

To learn more, read our detailed Cybereason Endpoint Detection & Response vs. Zscaler Client Connector Report (Updated: December 2025).

Buyer's Guide

Cybereason Endpoint Detection & Response vs. Zscaler Client Connector

December 2025

Download the complete report

Helped 881,082 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Categories and Ranking

Cybereason Endpoint Detecti...

Ranking in Endpoint Detection and Response (EDR)

32nd

Average Rating

7.8

Reviews Sentiment

5.6

Number of Reviews

Ranking in other categories

Endpoint Protection Platform (EPP) (41st)

Zscaler Client Connector

Ranking in Endpoint Detection and Response (EDR)

33rd

Average Rating

8.6

Reviews Sentiment

5.6

Number of Reviews

Ranking in other categories

No ranking in other categories

Mindshare comparison

As of January 2026, in the Endpoint Detection and Response (EDR) category, the mindshare of Cybereason Endpoint Detection & Response is 1.1%, up from 1.1% compared to the previous year. The mindshare of Zscaler Client Connector is 0.5%, up from 0.1% compared to the previous year. It is calculated based on PeerSpot user engagement data.

Endpoint Detection and Response (EDR) Market Share Distribution
Product	Market Share (%)
Cybereason Endpoint Detection & Response	1.1%
Zscaler Client Connector	0.5%
Other	98.4%

Endpoint Detection and Response (EDR)

Featured Reviews

reviewer2642739

Security Delivery Analyst at a consultancy with 10,001+ employees

User-friendly platform and dashboards provide comprehensive insights

I would like to see improvements on the operational side, specifically in grouping. Currently, I can group sensors into a custom group and assign policies, but I feel it is a shame that I cannot create groups of groups with inheritance. This would be useful for organizing multiple sites or countries into a single group containing multiple sub-groups. Additionally, in the whitelisting case, if I want one policy to have specific whitelisting, but not all the machines in that policy to have it, I could use multiple groups belonging to the same parent group. It is a bit disappointing that whitelisting can only be done via policies and not for individual machines. If I need to whitelist for only one machine, I must create a specific policy. This poses a challenge with two thousand endpoints, making it nearly impossible to create two thousand different policies.

Read full review

Dimitrios Arvanitakis

IT Support Admin at Kuehne+Nagel

Client activity has been monitored efficiently through in-depth log analysis and traffic filtering

I use the Zscaler speed test, and it is very nice. We use some logs from Zscaler Client Connector to collect data and see what is happening, such as if there is an interruption or something. There is a specific tunnel version that we have to use because, depending on the internet provider, some of them have lower speed, so we have some issues. This is because of the provider, not from Zscaler. We use Office 365 services and Office applications, and because some connections are slow and they do not have full coverage from the internet provider, we have some issues. If the speed is slow for Zscaler Client Connector connection, then we have issues because if the speed is not good, then Zscaler Client Connector goes down. This may be because they put some policy. Of course, if you use Office 365 services such as Outlook, the minimum bandwidth is 5 megabits and more, so this causes issues if the users do not have a good remote connection. This depends on the companies and the users, so they need to fix it. This is not from us or our company. It is very useful, and the logs are very helpful. When we go to logs, we understand what is happening.

Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Pros

"The solution is efficient."

"What I like most about Cybereason Endpoint Detection & Response is the support because the support is good. The solution is also easy to use, and it has a dashboard. Everything is good, and there's no problem with it."

"They do a very good job of providing multi-stage visualizations of malicious operations that immediately show all attack details across all devices and users. Since it is MalOp-centric model, you can see if there has been a similar operation across multiple machines. If it is the same thing appearing on multiple machines, you see all the machines and users affected in one screen."

"What I find most valuable is the clarity of the platform."

"We didn't have the visibility that we now have. It has increased our visibility by a lot. So, we put a lot more time into really looking at our environment and what is happening throughout our different networks. It has increased our visibility by around fivefold."

"Their EDR solution, the ability to mitigate issues through their command line, is probably the best feature that we've had. We use that all the time. It's very useful for doing investigations."

"The initial setup was easy and straightforward."

"I haven't had any issues with the solution. Stability-wise, I rate the solution a ten out of ten."

More Cybereason Endpoint Detection & Response pros

"The solution operates in the background seamlessly without the user noticing."

"It is very useful, and the logs are very helpful; when we go to logs, we understand what is happening."

"The best features of Zscaler Client Connector are that it gives the client a much more transparent experience, as they don't have to worry about connecting to a VPN."

"The real-time analytics feature in Zscaler Client Connector is another valuable feature called Digital Experience, or ZDX, which can easily identify the root cause of issues accessing public or internal resources and provide good analysis so relevant teams can quickly resolve them, making it a very good tool that helps customers."

"It is very important to see what is happening between the user and the applications that we have, and to filter the traffic from outbound traffic and inside traffic."

"I'd rate the solution nine out of ten."

More Zscaler Client Connector pros

Cons

"I feel that the product lacks reporting features and needs improvement."

"Reporting could be a bit more granular so that we had the ability to check regions and countries. I just noticed that, for instance, if I look at our servers, it's either "contained" or it's "not contained". I don't have the option, for instance, to look at countries. It only allows me to look at users as one big group."

"Its Microsoft PowerShell protections still need some compatibility improvements. We have run across just a few. It is compatible with 90% of what we have in our network, but there is that 10% that we are still struggling with as far as compatibility with the type of PowerShell scripts needed to run our day-to-day business."

"What needs to improve in Cybereason Endpoint Detection & Response and what I'd like to see in its next release is a centralized dashboard that allows you to view what is there, similar to what's on Symantec Endpoint Protection Manager: a beautiful display and reporting. Cybereason Endpoint Detection & Response has to start with the compliance, the homepage, etc. Everything should be there and should be customizable. The options should be there. The tool is very good currently, but visibility for IT administrators is lacking and needs to be worked on."

"I feel it is a shame that I cannot create groups of groups with inheritance."

"We are in the process of removing it from many of our endpoint clients because it's not really showing enough value for them at the moment."

"Compared to our previous endpoint, we have a lot more false positives and a lot more duplication of alerts. So we're chasing more alerts."

"Cybereason does not have sandbox functionality."

More Cybereason Endpoint Detection & Response cons

"There is a hard learning curve for Zscaler Client Connector; their support isn't the greatest all the time."

"There is room for improvement regarding the price of Zscaler Client Connector, as it is one of the most expensive solutions available."

"If the speed is slow for Zscaler Client Connector connection, then we have issues because if the speed is not good, then Zscaler Client Connector goes down."

"The stability of Zscaler Client Connector needs improvement, as it often disconnects and reconnects."

"If the speed is slow for Zscaler Client Connector connection, then we have issues because if the speed is not good, then Zscaler Client Connector goes down."

"Zscaler Client Connector is not low in cost; it is definitely on the higher side."

"There is room for improvement regarding the price of Zscaler Client Connector, as it is one of the most expensive solutions available."

More Zscaler Client Connector cons

Pricing and Cost Advice

"We considered a few other solutions. Some were ridiculously overpriced, while others didn't have solutions for Mac endpoints. That was a deal-breaker because most of our organization is on Mac. It came down to two vendors: Cybereason and another. They had similar pitches and almost identical approaches, but in the end, Cybereason gave us the best value for our money."

"The pricing is manageable."

"This product is somewhat expensive and should be cheaper."

"Though it is not the cheapest solution but it fits our budget. We pay an annual licensing fee."

"I do not have experience with the licensing of the product."

"On a scale of one to ten, where one is cheap and ten is expensive, I rate the pricing an eight."

"I had to go through a third-party to purchase it, which I wasn't really pleased about."

"In terms of cost, this is a good choice for our needs."

More Cybereason Endpoint Detection & Response pricing and cost advice

Information not available

See which vendors are best for you

Use our free recommendation engine to learn which Endpoint Detection and Response (EDR) solutions are best for your needs.

See recommendations

881,082 professionals have used our research since 2012.

Top Industries

By visitors reading reviews

Financial Services Firm

12%

Computer Software Company

12%

Manufacturing Company

Outsourcing Company

Manufacturing Company

24%

Government

14%

Insurance Company

University

Company Size

By reviewers

Large Enterprise

Midsize Enterprise

Small Business

By reviewers
Company Size	Count
Small Business	5
Midsize Enterprise	4
Large Enterprise	13

No data available

Questions from the Community

What is your experience regarding pricing and costs for Cybereason Endpoint Detection & Response?

Comparison with other products showed it be cheaper than some larger competitors. Set up cost for us were cheaper as we already had users experienced with the product in other business units. Initi...

See all answers

What is your primary use case for Cybereason Endpoint Detection & Response?

My main use case for Cybereason Endpoint Detection & Response is mostly for incident response.

See all answers

What do you like most about Cybereason Endpoint Detection & Response?

The interface is user-friendly.

See all answers

What is your experience regarding pricing and costs for Zscaler Client Connector?

Zscaler Client Connector is notably costly, with pricing rated at five out of ten in terms of affordability, reflecting the premium pricing of the solution.

See all answers

What needs improvement with Zscaler Client Connector?

Zscaler continues to strengthen the Zscaler Client Connector by introducing new features and expanding the platform’s capabilities. Their roadmap is mature, and in many areas they are ahead of comp...

See all answers

What is your primary use case for Zscaler Client Connector?

I’m not working directly for Zscaler; I work with a partner organization as a Systems Integrator. Our work is not limited to Zscaler—we support multiple security and networking products. This inclu...

See all answers

Comparisons

CrowdStrike Falcon vs Cybereason Endpoint Detection & Response

Compared 11% of the time

SentinelOne Singularity Complete vs Cybereason Endpoint Detection & Response

Compared 7% of the time

Fortinet FortiEDR vs Cybereason Endpoint Detection & Response

Compared 4% of the time

Microsoft Defender for Endpoint vs Cybereason Endpoint Detection & Response

Compared 4% of the time

ESET Inspect vs Cybereason Endpoint Detection & Response

Compared 4% of the time

More Cybereason Endpoint Detection & Response Competitors

Microsoft Defender for Endpoint vs Zscaler Client Connector

Compared 24% of the time

Tanium vs Zscaler Client Connector

Compared 14% of the time

Trellix Endpoint Security Platform vs Zscaler Client Connector

Compared 12% of the time

SentinelOne Singularity Complete vs Zscaler Client Connector

Compared 8% of the time

Microsoft Defender XDR vs Zscaler Client Connector

Compared 6% of the time

More Zscaler Client Connector Competitors

Product Reports

Buyer's Guide

Cybereason Endpoint Detection & Response

January 2026

Cybereason Endpoint Detection & Response report

Download Cybereason Endpoint Detection & Response product report

Buyer's Guide

Zscaler Client Connector

January 2026

Download Zscaler Client Connector product report

Also Known As

Cybereason EDR, Cybereason Deep Detect & Respond

No data available

Overview

Cybereason's Endpoint Detection and Response platform detects in real-time both signature and non-signature-based attacks and accelerates incident investigation and response. Cybereason connects together individual pieces of evidence to form a complete picture of a malicious operation.

Cybereason

Zscaler Client Connector enhances network security by providing seamless access to applications, ensuring a safe and efficient digital experience. It is designed for businesses needing comprehensive protection and optimized resource access within a unified platform.

Organizations deploy Zscaler Client Connector to securely connect users to applications while maintaining robust data protection standards. It eliminates the need for traditional gateways by offering direct-to-cloud security, which enhances performance and reduces complexity. This solution is ideal for remote work environments where secure and efficient application access is required. It simplifies IT infrastructures, allowing businesses to scale without compromising security.

What are the key features of Zscaler Client Connector?

Zero Trust Access: Provides secure connectivity by validating user identities and context.
Cloud Firewall: Ensures robust protection by inspecting all traffic for potential threats.
Bandwidth Control: Manages network resources to optimize application performance.
Seamless User Experience: Integrates smoothly into existing environments with minimal disruption.
Comprehensive Visibility: Offers detailed analytics and reporting for informed decision-making.

What are the benefits users should expect?

Improved Security Posture: Strengthens defenses against cyber threats with advanced protocols.
Cost Efficiency: Reduces operational costs by streamlining IT management and reducing hardware dependencies.
Scalability: Easily adapts to organizational growth or changes in IT requirements.
Enhanced Productivity: Increases workflow efficiency by ensuring secure and rapid access to necessary applications.
Reduced Latency: Direct-to-cloud connectivity minimizes lag and improves user experience.

Zscaler Client Connector is widely adopted across industries such as finance, healthcare, and retail, where secure data transmission and compliance are critical. In finance, it supports secure transactions and data protection. For healthcare, it ensures HIPAA compliance, and in retail, it simplifies secure customer-facing services. Each industry benefits from tailored implementations that address specific security and connectivity challenges.

Zscaler

Sample Customers

Lockheed Martin, Spark Capital, DocuSign, Softbank Capital

Information Not Available

Buyer's Guide

Cybereason Endpoint Detection & Response vs. Zscaler Client Connector

December 2025

Free Report: Cybereason Endpoint Detection & Response vs. Zscaler Client Connector

Find out what your peers are saying about Cybereason Endpoint Detection & Response vs. Zscaler Client Connector and other solutions. Updated: December 2025.

DOWNLOAD NOW

881,082 professionals have used our research since 2012.

See our Cybereason Endpoint Detection & Response vs. Zscaler Client Connector report.

See our list of best Endpoint Detection and Response (EDR) vendors.

We monitor all Endpoint Detection and Response (EDR) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.