The 20 Coolest Endpoint And Managed Security Companies Of 2024: The Security 100

From vendors providing endpoint protection and detection tools to companies offering managed detection and response, here’s a look at 20 key companies in endpoint and managed security.

Amid the continued escalation of cyberthreat frequency and complexity, AI-powered protection and detection remains a must-have for securing corporate PCs, servers and other endpoint devices. As a result, the demand for endpoint security continues to surge: The worldwide endpoint security market climbed 29.2 percent in 2022 compared to 2021, according to the most recent figures available from IDC.

[Related: 10 Cybersecurity Companies Making Moves: January 2024]

The research firm noted in its report that customers have been demonstrating an “increasing appetite” for a modernized approach to endpoint security, which includes “a broader set of functionality and services.” The number of devices that organizations are protecting has been on the rise, as well, IDC reported.

In the $13.11 billion endpoint security market, the leaders by share of revenue are Microsoft, CrowdStrike, Trend Micro, Trellix, VMware, Sophos and Palo Alto Networks, according to IDC. Microsoft also led the way in revenue growth among the top endpoint security players, with year-over-year growth of 108.9 percent, followed by SentinelOne (No. 9 in terms of market share) with 84.5-percent growth from the year before, IDC reported.

All in all, endpoint security has continued to be seen as table stakes for many organizations while managed options — such as managed detection and response (MDR) — are continuing to grow in popularity amid the shortage of skilled workers.

What follows are the 20 endpoint and managed security companies that made our Security 100 for 2024.

Adlumin

Robert Johnston

Co-Founder, CEO

Managed detection and response provider Adlumin debuted a new incident response option that is subscription-based and aims to “drastically” reduce costs, according to the company. The IR service—which makes an expert response team available 24x7—promises responses within one hour along with up to 80 hours of support annually.

Bitdefender

Florin Talpes

Co-Founder, CEO

Bitdefender’s recent product launches included GravityZone Security for Mobile, offering advanced capabilities in mobile threat detection across iOS and Android devices as well as Chromebooks. Other major moves included the acquisition of Horangi Cyber Security, which has brought key cloud security capabilities to its GravityZone platform.

BlackBerry

John Giamatteo

CEO

BlackBerry unveiled a new “assistant” tool powered by generative AI, which aims to help Security Operations Center teams with threat analysis. The tool, available to Cylance AI customers, offers a fully integrated workflow experience within the Cylance Console and is a key step in enabling “predictive cybersecurity,” the company said.

Blackpoint Cyber

Jon Murchison

Founder, CEO

Blackpoint Cyber rolled out Cloud Managed Detection and Response for Single Sign-On to extend protection of attack surfaces that no longer just sit at the endpoint. Key features include Identity Response for Microsoft’s Azure Active Directory service, enabling identification and response measures in cases of unauthorized logins.

Broadcom

Hock Tan

President, CEO

VMware's Carbon Black, which as of this writing was operating independently within Broadcom, unveiled new capabilities for its extended detection and response offering, including the addition of cloud-native detection and response. The capability aims to provide enhanced visibility into container- and Kubernetes-based environments.

CrowdStrike

George Kurtz

Co-Founder, CEO

CrowdStrike unveiled a refreshed version of its SMB-focused endpoint security product, Falcon Go, featuring a simplified user interface and easier management of policy settings. It also introduced an array of enhancements to its Falcon unified security platform, including the introduction of its GenAI-powered Charlotte assistant.

Deepwatch

Charlie Thomas

CEO

Deepwatch introduced updates to its managed detection and response platform focused on improving cyber resilience, including through enhanced capabilities for threat management and automated response. The updates also included the launch of curated threat intelligence to enable faster security decision-making.

eSentire

Kerry Bailey

CEO

Managed detection and response provider eSentire launched its new AI Investigator tool, which utilizes GenAI alongside what the company called the “world’s largest MDR data set” to boost threat investigation, response and remediation. It also introduced its new MDR Agent focused on improving threat detection for SMBs.

ESET

Richard Marko

CEO

Key updates from ESET included the debut of its first commercially available threat intelligence services. ESET’s threat intelligence services include ESETAdvanced Persistent Threat Reports, which include access to an ESET analyst, and ESET Threat Intelligence Feeds, which aims to provide a global view of the threat landscape in real time.

Expel

Dave Merkel

Co-Founder, CEO

Recent launches by managed detection and response provider Expel included the unveiling of its new Vulnerability Prioritization tool, which aims to determine the highest-risk vulnerabilities for prioritized response. The offering is powered by the Expel Workbench security operations platform and integrates with third-party vulnerability management tools.

Huntress

Kyle Hanslovan

Co-Founder, CEO

Huntress unveiled the expansion of its managed detection and response platform to also cover Microsoft 365 in addition to endpoints. The offering includes monitoring of Active Directory activity and detection for identity compromise, along with 24x7 analysis and remediation by human operators.

Malwarebytes

Marcin Kleczynski

Co-Founder, CEO

The debut of its new Security Advisor tool for its ThreatDown OneView multitenant console were among the major updates from Malwarebytes. Security Advisor provides analysis into an organization’s cyber defense posture and produces a health score that highlights gaps in their security.

OpenText

Mark Barrenechea

Vice Chairman, CEO, CTO

OpenText recently disclosed that it is making domain name system protection available separately from its Webroot endpoint security platform. The move allows customers to standardize their DNS protection without installing two antivirus products, according to the company.

Secureworks

Wendy Thomas

President, CEO

Secureworks unveiled the integration of its Taegis XDR platform with SentinelOne’s Singularity Complete offering. This enables improved visibility into endpoints as well as identity systems and cloud applications, offering partners and customers a more “holistic view” of an organization’s attack surface, the company said.

SentinelOne

Tomer Weingarten

Co-Founder, CEO

SentinelOne unveiled a major new release of its Singularity platform, dubbed Unity, which ties together numerous parts of the platform including cloud security for improved threat detection and response. The vendor also unveiled its GenAI technology, Purple AI, which has been integrated throughout the Unity release.

Sophos

Joe Levy

President, Acting CEO

Sophos unveiled new endpoint security capabilities including adaptive active adversary protection, which puts Sophos’ endpoint security tool into “breach mode” when it appears that a customer is under attack. The vendor also said its XDR platform now supports network detection and response.

Tanium

Dan Streetman

CEO

Tanium rolled out its Autonomous Endpoint Management platform which utilizes GenAI to improve productivity, including through prioritizing risks using data on the importance of different assets. Other capabilities bring automation to the generation of workflows around endpoint management.

ThreatLocker

Danny Jenkins

Co-Founder, CEO

ThreatLocker unveiled its first-ever tool for detection of malicious activity, Ops, complementing its “application allowlisting” functionality that ensures malware cannot run in customer IT systems. The capability can help MSPs take additional cyberdefense measures for a customer that’s been targeted, according to the company.

Trellix

Bryan Palma

CEO

Trellix has introduced what it is calling its “comprehensive” endpoint security offering. The Trellix Endpoint Security Suite aims to serve as an “end-to-end” security platform,e bringing together Trellix Endpoint Security with Trellix Endpoint Detection and Response and Trellix Endpoint Forensics.

Trend Micro

Eva Chen

Co-Founder, CEO

Trend Micro unveiled a service-focused version of its Vision One cybersecurity platform. Trend Vision One for Service Providers aims to present expanded opportunities for partners to launch managed services practices around the unified, AI-driven platform for threat detection, response and prevention.