Carbon Black’s Cb Response is built for security operations centers and incident response teams. It performs unfiltered data collection and is said to capture more information about endpoint events than any other tool. It is particularly strong in its visibility into active threat hunting and real-time response to ongoing threats. Data gathering, query and analysis capabilities benefit from continuous monitoring of operating system status, network status, system information and binary information. The Cb Collective Defense Cloud pricing provides threat intelligence, reputation and classification capabilities by consolidating natively developed research and third-party OEMs. APIs allow security teams to tie together all defenses.
Carbon Black Agents run on all the monitored machines but for different costs and pricing. Cb Response supports agents for Windows, Mac, and Linux environments. They can be installed using a standalone exe or with a third-party software distribution tool such as Microsoft SCCM or Landesk. Up to 150,000 endpoints per cluster and unlimited clusters. One server sensor collects 1.6 GB per day. Carbon Black Response pricing varies.
Security qualifications: AICPA SSAE No 16 SOC 2
The Cb Collective Defense Cloud analytics engine crunches big data related to attacks, threats, behaviors and change, with the purpose of identifying malicious activity. Cb Response is software-based, available on premises or in the cloud. Agents are installed on MAC, Windows and Linux endpoints for either dedicated hardware or VMs. The Collective Defense Cloud is hosted by Carbon Black in its own cloud. Cb Response is also available as a service from Carbon Black certified MSSPs.
Carbon Black pricing (price, cost) Cb Response uses a tiered yearly subscription model pricing model starting price is $30 per endpoint for a 1-year subscription.