No more typing reviews! Try our Samantha, our new voice AI agent.
Cybereason Endpoint Detection & Response Logo

Cybereason Endpoint Detection & Response pros and cons

Vendor: LevelBlue
3.9 out of 5
Leave a review

Pros & Cons summary

Cybereason Endpoint Detection & Response enables threat mitigation, offering high-fidelity alerts and increased network visibility. The command line feature supports investigations, while technical support is efficient. Despite excellence in threat hunting, deployment may challenge smaller organizations. Integration with Microsoft and PowerShell needs improvement, and issues like false positives and limited reporting exist, impacting regional analysis. Users note efficient response but see room for enhancing support and network coverage.

Buyer's Guide

Get pricing advice, tips, use cases and valuable features from real users of this product.
Get the report

Prominent pros & cons

PROS

Cybereason Endpoint Detection & Response enables real-time mitigation and isolation of threats.
The command line mitigation feature is highly valued for handling investigations.
Threat hunting and investigation capabilities offer significant added value.
Cybereason Endpoint Detection & Response dramatically increases network visibility.
The ease and clarity of Cybereason Endpoint Detection & Response setup is frequently praised.

CONS

Cybereason Endpoint Detection & Response initially took some time to deploy and can be complicated for smaller organizations.
There are frequent issues with false positives and duplication of alerts, leading to increased alerts to manage.
The PowerShell compatibility of Cybereason Endpoint Detection & Response has certain limitations, impacting day-to-day business operations.
The device control features, particularly USB management, require enhancement for better network coverage and connectivity.
Grouping functionality in Cybereason Endpoint Detection & Response needs improvement, and users are looking for enhanced operational capabilities, including the ability to create groups of groups with inheritance.
 

Cybereason Endpoint Detection & Response Pros review quotes

Ivan Burke - PeerSpot reviewer
Ivan Burke
Head of Research Development and Innovation at CSIR
Jul 30, 2025
To get my Cybereason instance up and running, I just install it; it takes less than a minute or two to actually install and run the installer.
Read full review
reviewer2642739 - PeerSpot reviewer
reviewer2642739
Security Delivery Analyst at a consultancy with 10,001+ employees
Jan 16, 2025
What I find most valuable is the clarity of the platform. It is very straightforward.
Read full review
AtulChaurasia - PeerSpot reviewer
AtulChaurasia
Operational Technical Security at Metro Bank
Aug 28, 2023
The initial setup process is straightforward.
Read full review
Buyer's Guide
Cybereason Endpoint Detection & Response
May 2026
Free Report: Cybereason Endpoint Detection & Response Reviews and More
Learn what your peers think about Cybereason Endpoint Detection & Response. Get advice and tips from experienced pros sharing their opinions. Updated: May 2026.
DOWNLOAD NOW
893,244 professionals have used our research since 2012.
Chad Kliewer - PeerSpot reviewer
Chad Kliewer
Information Security Officer at PTCI
Jan 26, 2022
They do a very good job of providing multi-stage visualizations of malicious operations that immediately show all attack details across all devices and users. Since it is MalOp-centric model, you can see if there has been a similar operation across multiple machines. If it is the same thing appearing on multiple machines, you see all the machines and users affected in one screen.
Read full review
DH
DanielHernandez
Information Security Analyst at a comms service provider with 51-200 employees
Jan 15, 2022
We didn't have the visibility that we now have. It has increased our visibility by a lot. So, we put a lot more time into really looking at our environment and what is happening throughout our different networks. It has increased our visibility by around fivefold.
Read full review
reviewer1678386 - PeerSpot reviewer
reviewer1678386
Senior Security Engineer at a financial services firm with 1,001-5,000 employees
Sep 23, 2021
Their EDR solution, the ability to mitigate issues through their command line, is probably the best feature that we've had. We use that all the time. It's very useful for doing investigations.
Read full review
JB
Johnson Bresnick
Director of Learning and Development at ACA - Ateliers de conversation anglaise
Dec 21, 2021
Cybereason's threat hunting and investigation are the most valuable features. Threat hunting is a user-friendly feature that keeps you safe. Investigation offers an added value that I haven't seen with other EDR services. It allows you to find specific policy problems within your environment.
Read full review
TR
Tim Roscoe
Information Security Manager at Cabot Financial (Marlin) Limited
Jan 3, 2024
The interface is user-friendly.
Read full review
Abhinav Srivastava - PeerSpot reviewer
Abhinav Srivastava
Senior Project Executive at Hitachi
Jul 3, 2022
What I like most about Cybereason Endpoint Detection & Response is the support because the support is good. The solution is also easy to use, and it has a dashboard. Everything is good, and there's no problem with it.
Read full review
NL
Nick LaPointe
Information Security Administrator at a insurance company with 1,001-5,000 employees
Jun 9, 2021
Cybereason absolutely enables us to mitigate and isolate on the fly. Our managed detection response telemetry has dropped dramatically since we began using it. It's very top-of-mind. We were running some tabletop exercises and none of the detections were getting triggered by the managed security services provider. So we needed to find a solution that would trigger high-fidelity alerts. That was Cybereason and it dramatically changed our landscape from the detection and response perspective.
Read full review
Show 10 more reviews (out of 21)
 

Cybereason Endpoint Detection & Response Cons review quotes

Ivan Burke - PeerSpot reviewer
Ivan Burke
Head of Research Development and Innovation at CSIR
Jul 30, 2025
We are in the process of removing it from many of our endpoint clients because it's not really showing enough value for them at the moment.
Read full review
reviewer2642739 - PeerSpot reviewer
reviewer2642739
Security Delivery Analyst at a consultancy with 10,001+ employees
Jan 16, 2025
I would like to see improvements on the operational side, specifically in grouping.
Read full review
AtulChaurasia - PeerSpot reviewer
AtulChaurasia
Operational Technical Security at Metro Bank
Aug 28, 2023
It should be more stable, and the sensor needs improvement in terms of connectivity.
Read full review
Buyer's Guide
Cybereason Endpoint Detection & Response
May 2026
Free Report: Cybereason Endpoint Detection & Response Reviews and More
Learn what your peers think about Cybereason Endpoint Detection & Response. Get advice and tips from experienced pros sharing their opinions. Updated: May 2026.
DOWNLOAD NOW
893,244 professionals have used our research since 2012.
Chad Kliewer - PeerSpot reviewer
Chad Kliewer
Information Security Officer at PTCI
Jan 26, 2022
While the product is very good, there are still some areas for improvement. The initial triage area could be a bit simpler. They get into the weeds real fast; it gets very detailed very fast. I am still looking for an easier triage layer on top with the ability to dig deeper.
Read full review
DH
DanielHernandez
Information Security Analyst at a comms service provider with 51-200 employees
Jan 15, 2022
Its Microsoft PowerShell protections still need some compatibility improvements. We have run across just a few. It is compatible with 90% of what we have in our network, but there is that 10% that we are still struggling with as far as compatibility with the type of PowerShell scripts needed to run our day-to-day business.
Read full review
reviewer1678386 - PeerSpot reviewer
reviewer1678386
Senior Security Engineer at a financial services firm with 1,001-5,000 employees
Sep 23, 2021
Compared to our previous endpoint, we have a lot more false positives and a lot more duplication of alerts. So we're chasing more alerts.
Read full review
JB
Johnson Bresnick
Director of Learning and Development at ACA - Ateliers de conversation anglaise
Dec 21, 2021
The deployment on individual endpoints is more geared toward larger organizations. It might prove to be a bit too complicated for a smaller organization. You need to know what you're doing when you're deploying the sensor.
Read full review
TR
Tim Roscoe
Information Security Manager at Cabot Financial (Marlin) Limited
Jan 3, 2024
The network coverage becomes an issue most of the time.
Read full review
Abhinav Srivastava - PeerSpot reviewer
Abhinav Srivastava
Senior Project Executive at Hitachi
Jul 3, 2022
What needs to improve in Cybereason Endpoint Detection & Response and what I'd like to see in its next release is a centralized dashboard that allows you to view what is there, similar to what's on Symantec Endpoint Protection Manager: a beautiful display and reporting. Cybereason Endpoint Detection & Response has to start with the compliance, the homepage, etc. Everything should be there and should be customizable. The options should be there. The tool is very good currently, but visibility for IT administrators is lacking and needs to be worked on.
Read full review
NL
Nick LaPointe
Information Security Administrator at a insurance company with 1,001-5,000 employees
Jun 9, 2021
Ad hoc higher-level reporting to senior management can be improved or can be implemented. That's definitely an area of improvement that they need to focus on.
Read full review
Show 10 more reviews (out of 21)

Product Categories

Product Categories
Endpoint Detection and Response (EDR)
Endpoint Protection Platform (EPP)

Popular Comparisons

Popular Comparisons
CrowdStrike Falcon vs Cybereason Endpoint Detection & Response Logo
CrowdStrike Falcon vs Cybereason Endpoint Detection & Response
Cortex XDR by Palo Alto Networks vs Cybereason Endpoint Detection & Response Logo
Cortex XDR by Palo Alto Networks vs Cybereason Endpoint Detection & Response
Microsoft Defender for Endpoint vs Cybereason Endpoint Detection & Response Logo
Microsoft Defender for Endpoint vs Cybereason Endpoint Detection & Response
SentinelOne Singularity Endpoint vs Cybereason Endpoint Detection & Response Logo
SentinelOne Singularity Endpoint vs Cybereason Endpoint Detection & Response
IBM Security QRadar vs Cybereason Endpoint Detection & Response Logo
IBM Security QRadar vs Cybereason Endpoint Detection & Response
Huntress Managed EDR vs Cybereason Endpoint Detection & Response Logo
Huntress Managed EDR vs Cybereason Endpoint Detection & Response
Elastic Security vs Cybereason Endpoint Detection & Response Logo
Elastic Security vs Cybereason Endpoint Detection & Response
HP Wolf Security vs Cybereason Endpoint Detection & Response Logo
HP Wolf Security vs Cybereason Endpoint Detection & Response
Tanium vs Cybereason Endpoint Detection & Response Logo
Tanium vs Cybereason Endpoint Detection & Response
Trellix Endpoint Security Platform vs Cybereason Endpoint Detection & Response Logo
Trellix Endpoint Security Platform vs Cybereason Endpoint Detection & Response
WatchGuard Firebox vs Cybereason Endpoint Detection & Response Logo
WatchGuard Firebox vs Cybereason Endpoint Detection & Response
Fortinet FortiEDR vs Cybereason Endpoint Detection & Response Logo
Fortinet FortiEDR vs Cybereason Endpoint Detection & Response
TrendAI Vision One vs Cybereason Endpoint Detection & Response Logo
TrendAI Vision One vs Cybereason Endpoint Detection & Response
Check Point Harmony Endpoint vs Cybereason Endpoint Detection & Response Logo
Check Point Harmony Endpoint vs Cybereason Endpoint Detection & Response
Fortinet FortiClient vs Cybereason Endpoint Detection & Response Logo
Fortinet FortiClient vs Cybereason Endpoint Detection & Response
See all alternatives

Product Categories

Product Categories
Endpoint Detection and Response (EDR)
Endpoint Protection Platform (EPP)

Popular Comparisons

Popular Comparisons
CrowdStrike Falcon vs Cybereason Endpoint Detection & Response Logo
CrowdStrike Falcon vs Cybereason Endpoint Detection & Response
Cortex XDR by Palo Alto Networks vs Cybereason Endpoint Detection & Response Logo
Cortex XDR by Palo Alto Networks vs Cybereason Endpoint Detection & Response
Microsoft Defender for Endpoint vs Cybereason Endpoint Detection & Response Logo
Microsoft Defender for Endpoint vs Cybereason Endpoint Detection & Response
SentinelOne Singularity Endpoint vs Cybereason Endpoint Detection & Response Logo
SentinelOne Singularity Endpoint vs Cybereason Endpoint Detection & Response
IBM Security QRadar vs Cybereason Endpoint Detection & Response Logo
IBM Security QRadar vs Cybereason Endpoint Detection & Response
Huntress Managed EDR vs Cybereason Endpoint Detection & Response Logo
Huntress Managed EDR vs Cybereason Endpoint Detection & Response
Elastic Security vs Cybereason Endpoint Detection & Response Logo
Elastic Security vs Cybereason Endpoint Detection & Response
HP Wolf Security vs Cybereason Endpoint Detection & Response Logo
HP Wolf Security vs Cybereason Endpoint Detection & Response
Tanium vs Cybereason Endpoint Detection & Response Logo
Tanium vs Cybereason Endpoint Detection & Response
Trellix Endpoint Security Platform vs Cybereason Endpoint Detection & Response Logo
Trellix Endpoint Security Platform vs Cybereason Endpoint Detection & Response
WatchGuard Firebox vs Cybereason Endpoint Detection & Response Logo
WatchGuard Firebox vs Cybereason Endpoint Detection & Response
Fortinet FortiEDR vs Cybereason Endpoint Detection & Response Logo
Fortinet FortiEDR vs Cybereason Endpoint Detection & Response
TrendAI Vision One vs Cybereason Endpoint Detection & Response Logo
TrendAI Vision One vs Cybereason Endpoint Detection & Response
Check Point Harmony Endpoint vs Cybereason Endpoint Detection & Response Logo
Check Point Harmony Endpoint vs Cybereason Endpoint Detection & Response
Fortinet FortiClient vs Cybereason Endpoint Detection & Response Logo
Fortinet FortiClient vs Cybereason Endpoint Detection & Response
See all alternatives
Related questions
  • 317
What is the biggest difference between EPP and EDR products?
  • 111
What is the difference between EDR and traditional antivirus?
  • 80
What is your recommendation for a 5-star EDR with low resource consumption for a financial services company?
  • 82
Which is the best EDR for a logistics company with 500-1000 employees?
  • 159
What is the best EDR or XDR product for a company with 9000 employees?
  • 187
What to choose: an endpoint antivirus, an EDR solution or both?
  • 274
Do we need to use both EDR and Antivirus (AV) solutions for better protection of IT assets?
  • 90
How does EternalBlue work?
  • 89
What are the best on-premise Endpoint Security solutions for a Tech Services company with 10,000 employees?
  • 196
Which is better for Endpoint Security: EDR or XDR solutions?