Try our new research platform with insights from 80,000+ expert users

Symantec Endpoint Detection and Response vs VMware Carbon Black Endpoint comparison

Broadcom and VMware are both solutions in the Endpoint Detection and Response (EDR) category. Broadcom is ranked #28 with an average rating of 7.4, while VMware is ranked #20 with an average rating of 7.9. Broadcom holds a 0.5% mindshare in EDR, compared to VMware’s 1.7% mindshare. Additionally, 86% of Broadcom users are willing to recommend the solution, compared to 88% of VMware users who would recommend it.
Symantec Endpoint Detection...
Read 30 Symantec Endpoint Detection and Response reviews
  • 1,149 Views
  • 331 Comparison Views
86% willing to recommend
VMware Carbon Black Endpoint
Read 63 VMware Carbon Black Endpoint reviews
  • 4,431 Views
  • 672 Comparison Views
88% willing to recommend
 

Comparison Buyer's Guide

Download the report
Executive SummaryUpdated on Sep 9, 2024

VMware Carbon Black Endpoint and Symantec Endpoint Detection and Response are two prominent endpoint protection solutions. Users prefer VMware Carbon Black's pricing and customer service but favor Symantec's feature set and comprehensive protection.

Features: VMware Carbon Black Endpoint offers real-time threat detection, strong integration capabilities, and effective malware mitigation. Symantec Endpoint Detection and Response provides advanced machine learning, in-depth analytics, and robust protection features.

Room for Improvement: VMware Carbon Black Endpoint could improve reports, dashboard customization, and user interface simplicity. Symantec Endpoint Detection and Response needs better alert accuracy, reduced configuration complexity, and enhanced user experience.

Ease of Deployment and Customer Service: VMware Carbon Black Endpoint is noted for straightforward deployment and responsive customer service. Symantec Endpoint Detection and Response deployment is more intricate, though customer support is reliable.

Pricing and ROI: VMware Carbon Black Endpoint is cost-effective with good ROI. Symantec Endpoint Detection and Response, despite higher costs, offers strong value due to its extensive features, justifying its premium pricing.

DOWNLOAD THE COMPLETE REPORT
To learn more, read our detailed Symantec Endpoint Detection and Response vs. VMware Carbon Black Endpoint Report (Updated: June 2025).
Buyer's Guide
Symantec Endpoint Detection and Response vs. VMware Carbon Black Endpoint
June 2025
Download the complete report
Helped 860,592 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Categories and Ranking

Symantec Endpoint Detection...
Ranking in Endpoint Detection and Response (EDR)
28th
Average Rating
7.6
Reviews Sentiment
7.2
Number of Reviews
30
Ranking in other categories
No ranking in other categories
VMware Carbon Black Endpoint
Ranking in Endpoint Detection and Response (EDR)
20th
Average Rating
7.8
Reviews Sentiment
7.0
Number of Reviews
63
Ranking in other categories
Endpoint Protection Platform (EPP) (27th), Security Incident Response (2nd), Ransomware Protection (6th)
 

Mindshare comparison

As of July 2025, in the Endpoint Detection and Response (EDR) category, the mindshare of Symantec Endpoint Detection and Response is 0.5%, up from 0.4% compared to the previous year. The mindshare of VMware Carbon Black Endpoint is 1.7%, down from 3.0% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Endpoint Detection and Response (EDR)
 

Featured Reviews

YusufAhmed - PeerSpot reviewer
Easy to use and competitively priced
Honestly, the product needs to continue the way it is, and I feel that everything will be fine. I haven't had any reasons to complain about the product. The product doesn’t offer MDM functionality under its current licensing model. In the future, I want the product to offer MDM. It can allow me to manage my mobile device more efficiently and effectively. Currently, there is a need for a separate license to be added to Symantec Endpoint Detection and Response to be able to use the MDM part. If both are bundled up under the same license, the administration part can be made easier.
Read full review
Nikunj Kamboj - PeerSpot reviewer
Integrates well with our existing SIEM tool and helps in identifying suspicious activities
The solution's integration with our existing security infrastructure is good. Whenever we have any alert in VMware Carbon Black Endpoint, we can easily that alert in our SIEM tool and check logs from the SIEM tool itself. VMware Carbon Black Endpoint is just a secondary security tool for us, and we are just monitoring the alerts from it. The solution's behavioral analytics feature helps in identifying suspicious activities pretty well. Whenever we have even a small thing, we get an alert. The solution is deployed on the cloud in our organization. Performance-wise, the solution is doing great in terms of connecting to the host directly. Performing a malware scan usually takes a lot of time, more than 24 hours. A malware scan is something that we do only on Carbon Black for the old endpoint devices and servers. It used to take sometimes three days to perform. I would recommend the solution to other users. Overall, I rate the solution an eight out of ten.
Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"The most valuable features are that it is easy to connect and global settings are good."
"I like Symantec EDR's device control and USB security features."
"The Detection vulnerability is very effective."
"It is mostly used for malware detection and antivirus purposes."
"The pricing is pretty reasonable."
"The most valuable feature is that the same agent can act as the endpoint detection and response agent."
"I've mainly found the antivirus and antispyware features valuable. The documentation is okay as well."
"The security is good."
More Symantec Endpoint Detection and Response pros
"The whole purpose of the product, like application control, is very good, and also if you need to update some policies, it works well and instantly."
"The initial setup is very easy."
"It is a scalable solution...The initial setup was straightforward."
"One of the most valuable features is that it will block vulnerable sites. If there was a connection between one of our devices to a known malware site, it will block it."
"The solution is stable."
"It uses machine learning and behavioral analytics for advanced threat detection and response."
"VMware Carbon Black Endpoint is a highly stable solution."
"Carbon Black CB Defense has helped improve my organization by allowing us to have better data so that we can do correlation and get visibility into the alerts."
More VMware Carbon Black Endpoint pros
 

Cons

"It would be nice to see more granular timeline analysis."
"The Symantec portfolio is not big enough to cover the organization in all 360 degrees."
"I think we have experienced some technical issues because the company focuses mainly on bigger clients. Also, sometimes the solution fails to detect zero-day attacks, so that feature needs some enhancement because it is lacking compared to other solutions."
"While they are quite dynamic, they need to ensure they are detecting threats faster in the future to keep people safer."
"The interface is very complicated."
"In the future, it would be nice to have playbooks in the tool, to allow for some of the common activities to be automated. For example, some of the scannings of the malware can be too manual for a specific device. Additionally, a vulnerability manager would be beneficial."
"A significant deterioration in customer support."
"It would be good if it can anticipate zero-day attacks. I don't know how it can be done and if it is even a feature of this product."
More Symantec Endpoint Detection and Response cons
"The local technical support is very poor, but the support from headquarters is very nice."
"It could be a bit complicated. You have to be very familiar with Carbon Black to understand what it is doing and why it is doing. I would like to have more explanations and simplification in the user interface. It would be good to get help and see more explanations. It should tell us that a software is blocked and the reason for it. It would be good to be able to build chains in terms of what caused what, what worked, and what caused an issue. We are now moving from Carbon Black to Cortex XDR. While choosing antivirus software, we were also looking at Carbon Black because it also has an antivirus package, and it is next-generation, but we were told that Carbon Black doesn't support firewalls. We have Palo Alto firewalls. We would have chosen this solution if it supported firewalls, in particular next-generation firewalls, but unfortunately, it doesn't. Therefore, we decided on Cortex XDR because it integrates with Palo Alto firewalls."
"The initial setup is complex."
"In the past, we've seen some stability issues in the latest version releases. We tend to hang back one version just to make sure issues are fully resolved to avoid user disruption."
"The solution needs expanded endpoint query tools."
"As far as I know, Carbon Defense has nothing that can be installed on mobile devices. It lacks a defense solution for mobile devices, especially mobile tablets. I would like to see support for mobile devices and the pricing should be less than the pricing for a normal workstation."
"Adding an application and a device control feature would be a great help for this solution."
"Based on all the security roles and the release privilege, it could take time for an application to be whitelisted and approved for use."
More VMware Carbon Black Endpoint cons
 

Pricing and Cost Advice

"The price is okay, but it really depends on the customer's requirements."
"The more devices we have the more expensive it becomes, which is where the challenge is."
"We have a yearly subscription, and the pricing is fair."
"We pay around $100,000 for 5000 licenses every year."
"The price is reasonable."
"Symantec Endpoint Detection and Response is expensive."
"The price is really high and it should be lower."
"It's a yearly subscription."
More Symantec Endpoint Detection and Response pricing and cost advice
"The solution has almost the same price as other different kinds of infrastructures, but it offers a lot of different features."
"Its pricing was very good, which is one of the reasons I went to it as an alternative. It is on a yearly basis. There are no additional fees."
"The pricing is annually based and operates through another department than mine."
"We have branches, we have different companies, but we cannot buy less than 100 licenses. This does not make sense to me... It should be more flexible. I can understand their saying, "Okay, to be a customer you need 100," but to add on to that number it should be something very straightforward. If I need to add five, for example, I shouldn't need to add 100."
"Carbon Black provides competitive pricing."
"This is a really expensive product and we pay licensing fees on a yearly basis."
"VMware Carbon Black Endpoint is an expensive product."
"The licensing cost is on the more expensive side, but I thought it was worth it because they did a good job. It was one of the vendors I truly didn't have to worry about too much until this latest upgrade."
More VMware Carbon Black Endpoint pricing and cost advice
report
See which vendors are best for you
Use our free recommendation engine to learn which Endpoint Detection and Response (EDR) solutions are best for your needs.
See recommendations
860,592 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Financial Services Firm
12%
Computer Software Company
12%
Manufacturing Company
8%
University
8%
Computer Software Company
14%
Financial Services Firm
12%
Government
9%
Manufacturing Company
8%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
 

Questions from the Community

What do you like most about Symantec Endpoint Detection and Response?
The security is good.
See all answers
What is your experience regarding pricing and costs for Symantec Endpoint Detection and Response?
I am not aware of the pricing details, as that falls under the management's responsibility.
See all answers
What needs improvement with Symantec Endpoint Detection and Response?
There are several areas where Symantec Endpoint Detection and Response can improve, including shell features, web control, asset management, and device control. Specifically, the application contro...
See all answers
What to choose: an endpoint antivirus, an EDR solution or both?
I can recommend Carbon Black, an award-winning next-gen anti-virus (NGAV) and endpoint detection and response (EDR) security solution. The CB Predictive Security Cloud platform combines multiple hi...
See all answers
What's the difference between Carbon Black CB Response and Carbon Black CB Defense?
Carbon Black offers two different levels of Endpoint Detection and Response. One is the VM Carbon Black Cloud Endpoint Standard (CB Defense), and the other is the Carbon Black Endpoint Detection an...
See all answers
What do you like most about Carbon Black CB Defense?
VMware Carbon Black Endpoint is a highly stable solution.
See all answers
 

Comparisons

Kaspersky Endpoint Detection and Response Expert vs Symantec Endpoint Detection and Response Logo
Kaspersky Endpoint Detection and Response Expert vs Symantec Endpoint Detection and Response
Compared 18% of the time
Cisco Secure Endpoint vs Symantec Endpoint Detection and Response Logo
Cisco Secure Endpoint vs Symantec Endpoint Detection and Response
Compared 12% of the time
Kaspersky Endpoint Security Cloud vs Symantec Endpoint Detection and Response Logo
Kaspersky Endpoint Security Cloud vs Symantec Endpoint Detection and Response
Compared 10% of the time
Trend Vision One vs Symantec Endpoint Detection and Response Logo
Trend Vision One vs Symantec Endpoint Detection and Response
Compared 9% of the time
More Symantec Endpoint Detection and Response Competitors
CrowdStrike Falcon vs VMware Carbon Black Endpoint Logo
CrowdStrike Falcon vs VMware Carbon Black Endpoint
Compared 16% of the time
Microsoft Defender for Endpoint vs VMware Carbon Black Endpoint Logo
Microsoft Defender for Endpoint vs VMware Carbon Black Endpoint
Compared 13% of the time
Trellix Endpoint Security Platform vs VMware Carbon Black Endpoint Logo
Trellix Endpoint Security Platform vs VMware Carbon Black Endpoint
Compared 9% of the time
SentinelOne Singularity Complete vs VMware Carbon Black Endpoint Logo
SentinelOne Singularity Complete vs VMware Carbon Black Endpoint
Compared 9% of the time
Trend Micro Deep Security vs VMware Carbon Black Endpoint Logo
Trend Micro Deep Security vs VMware Carbon Black Endpoint
Compared 7% of the time
More VMware Carbon Black Endpoint Competitors
 

Product Reports

Buyer's Guide
Symantec Endpoint Detection and Response
June 2025
Symantec Endpoint Detection and Response reportDownload Symantec Endpoint Detection and Response product report
Buyer's Guide
VMware Carbon Black Endpoint
June 2025
VMware Carbon Black Endpoint reportDownload VMware Carbon Black Endpoint product report
 

Also Known As

No data available
Carbon Black CB Defense, Bit9, Confer
 

Overview

Symantec Endpoint Detection and Response (EDR) is a powerful security solution designed to help organizations proactively detect, investigate, and mitigate advanced threats across their endpoint environments. As part of Broadcom's cybersecurity portfolio, Symantec EDR provides comprehensive visibility into endpoint activities, enabling security teams to quickly identify and respond to threats that evade traditional defenses.

Symantec EDR leverages machine learning, behavioral analysis, and global threat intelligence from Symantec's vast network to detect sophisticated threats, including zero-day attacks, ransomware, and advanced persistent threats (APTs). This allows organizations to identify malicious activities early and respond swiftly to mitigate potential damage. The solution offers automated response options that enable security teams to contain and remediate threats quickly.

Symantec EDR provides detailed forensic capabilities, allowing security analysts to dive deep into endpoint data, investigate incidents thoroughly, and understand the scope and impact of attacks. Features such as timeline analysis, incident graphing, and the ability to isolate endpoints enhance investigative efforts and support effective remediation strategies.

With its centralized management console, Symantec EDR offers visibility across the entire endpoint environment, regardless of the operating systems or whether endpoints are on-premise or remote. Symantec EDR seamlessly integrates with other Symantec security solutions, enhancing its detection capabilities and enabling a unified approach to threat management. Its scalable architecture ensures that businesses of all sizes can benefit from its advanced security features without compromising performance.

Quickly discover and resolve threats with deep endpoint visibility and superior detection analytics, reducing mean time to remediation. Overcome cyber security skills shortages and streamline SOC operations with extensive automation and built-in integrations for sandboxing, SIEM, and orchestration.

Fortify security teams with the unmatched expertise and global scale of Symantec Managed Endpoint Detection and Response services.
Roll out Endpoint Detection and Response (EDR) across Windows, macOS, and Linux devices using Symantec Endpoint Protection (SEP)-integrated EDR or a dissolvable agent.

Broadcom

VMware Carbon Black Endpoint provides comprehensive endpoint security against ransomware, spyware, malware, and viruses, catering to both cloud and on-premise environments.

VMware Carbon Black Endpoint facilitates endpoint detection and response, threat hunting, application control, antivirus support, and protection for virtual and physical machines. Features include intelligent learning, whitelisting, and integration with other security tools, making it suitable for distributors, MSPs, and enterprises seeking advanced threat defense and real-time monitoring. With its capability to detect and stop malicious executables, it supports both offline and online environments and offers tools like command shell access for deeper investigation.

What are the key features of VMware Carbon Black Endpoint?
  • Intelligent learning: Improves detection capabilities over time.
  • Whitelisting: Allows only approved applications to run.
  • Integration with other security tools: Enhances overall security posture.
  • Centralized cloud control: Manages endpoints from a single interface.
  • Command shell access: Offers deeper investigation capabilities.
  • Dynamic grouping: Facilitates organized endpoint management.
  • Simplified policy management: Streamlines security policy implementation.
  • API for system remoting: Allows remote system access and management.
  • Twenty-four-seven support: Provides continuous assistance and response.
What are the benefits of VMware Carbon Black Endpoint?
  • Real-time monitoring: Offers constant vigilance against threats.
  • Threat hunting: Identifies and mitigates threats proactively.
  • Historical data analysis: Assists in understanding past incidents and patterns.
  • Improved endpoint protection: Enhances overall endpoint security.
  • Enhanced threat detection: Reduces exposure to advanced threats.

VMware Carbon Black Endpoint is implemented across various industries including technology, healthcare, and finance. Organizations utilize it in cloud and hybrid environments, enhancing their security frameworks with real-time monitoring, intelligent learning, and robust threat detection capabilities tailored to their specific industry needs.

VMware
 

Sample Customers

Information Not Available
Netflix, Progress Residential, Indeed, Hologic, Gentle Giant, Samsung Research America
Buyer's Guide
Symantec Endpoint Detection and Response vs. VMware Carbon Black Endpoint
June 2025
Free Report: Symantec Endpoint Detection and Response vs. VMware Carbon Black Endpoint
Find out what your peers are saying about Symantec Endpoint Detection and Response vs. VMware Carbon Black Endpoint and other solutions. Updated: June 2025.
DOWNLOAD NOW
860,592 professionals have used our research since 2012.
See our Symantec Endpoint Detection and Response vs. VMware Carbon Black Endpoint report.
See our list of best Endpoint Detection and Response (EDR) vendors.

We monitor all Endpoint Detection and Response (EDR) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.