Jamf Nation Community

@PaulHazelden

We've had our issues with ESET. Right now it's fairly stable. I've had to add some exceptions for specific file extensions like Adobe InDesign. The only gripe I have so far is that when ESET starts up when a user logs in, it overlays the ESET application settings right in the center of the desktop transparently. Some end users get confused on why they can't click any folders/files on the desktop. It takes awhile for ESET to recognize it needs to be minimized.

We use SentinelOne for both our Mac and Windows endpoints we manage. We are migrating from Bitdefender GZ and it appears to work well.

@MadMacs

Thanks for the info. I'll check them out!

We use Microsoft Defender Advanced Threat Protection (ATP) for Mac. It might be free for you if you're with an .edu that has a Microsoft 365 for Education A5 license.

take a look at Jamf protect.

We use CrowdStrike, which seems to be well behaved and has good company presence in MacAdmins slack.

Recommend not using Symantec/Broadcom.

^^^What he said.

Symantec/Broadcom is one of those companies that might support a macOS update or upgrade months after its release, and not without issues.

Look for companies that are zero day ready. Symantec/Broadcom (and for that matter McAfee) are not and will never be ready.

Keep an eye on Jamf Protect. ;)

We're using SentinelOne and it works well.

So we did a bake-off at the start of the year of some of the top players, and I had real access to their web portals and support forums. My conclusion is that right approach is best breed for each OS platform. A few big vendors their Mac client was clearing doing no more than the built in Apple security. A few vendors said they did more but key features didn't work like remediation making them worse than the Gatekeeper.

While I am not security expert I did get to "play one" for a few weeks, it was very clear to me that Jamf Protect was seeing real security threats that the other are missing. It's also clear that the Jamf Protect team are the 'thought leaders" in the macOS security space.

C

We're using CrowdStrike. Simple install, and so far has been playing nice in our environment. We dropped Eset earlier this year when we started upgrading our fleet to Catalina.

I'm not in the market for an A/V solution but I haven't been happy with ESET and I'm concerned about Big Sur coming up because kexts are going away and I have a really hard time getting the clients to install on new operating systems. I'd like to know if anyone compared Jamf Protect against ESET, I'd like something to take to my boss.

We are about to do a trial on jamf protect.

WHATEVER YOU DO, STAY AWAY FROM BROADCOM/SYMANTEC.

@bwoods Same quote for Kaspersky Endpoint Security, it's horrible.
We will start a demo of Jamf Protect next week.

@gachowski , Would you mind sharing what the big players you worked with were? In the end, you are recommending Jamf Protect but what were the others that you were not impressed with? Would love the info!

@gachowski I recommend Palo Alto Cortex XDR. It was simple to setup and the services don't kill the CPU. Tested on Intel and M1. Palo Alto's VPN, Global Protect, is also a very good product. It allows the user to be connected to VPN at all times.