Kaspersky EDR Expert Reviews and Ratings

Rating: 7.6 out of 10

Score

7.6 out of 10

Reviews

10 Reviews

Kaspersky EDR Expert is a Great modern endpoint protection platform

Rating: 10 out of 10

Incentivized

March 30, 2024

Use Cases and Deployment Scope

We're using Kaspersky EDR Expert as endpoint protection, system hardening, exposure management, endpoint detection and response tool. It protects endpoints running Windows and Linux and detects modern threats with low system performance impact and almost no false alarms. Threat Intelligence portal is also very valuable.

Pros

Strongest endpoint protection product on the market according to 3rd party evaluation
Actionable detection data
Sandbox is extremely useful

Cons

It would be great to add SOAR product or capabilities into portfolio
As for EDR product itself, I haven't ran into any issues

Likelihood to Recommend

Easy to learn, use and deploy. Kaspersky EDR Expert allows to automatically find unmanaged and rogue endpoints, remove previous agent from another vendor, install its agent, move endpoint to a group based on endpoint's characteristics, change security policies if for example endpoint is moved to another subnet or currently out-of-office, apply malware outbreak rules in case of attack

Verified User

Manager (501-1000 employees)

Vetted Review

2 years of experience

One of the largest Russian banks experience with Kaspersky EDR Expert

Rating: 8 out of 10

Incentivized

March 30, 2024

Use Cases and Deployment Scope

We use it for all of the our workstation and now we are planning to deploy it to servers. We use EDR to get large amount of controls and logs from our hosts. Then we use collected data to determine cybersecurity incidents. Also this product decreases the load to our SIEM-system because the correlation between logs and security events.

Pros

Collecting data from windows hosts
Correlating collected data and composing incidents
Clearing the situation with impacted hosts during cybersecurity incidents

Cons

Linux-systems support on the same level like windows systems
Untying from Kaspesky ATA
AI add to ease the way of profiling the system (it requires 1 FTE to examine all the incidents on 10 000 hosts? too much)

Likelihood to Recommend

It is a very comprehensive product to learn everything about incidents on the windows hosts. Also EDR can create some incidents during its analyze. But it is pretty useless when we are talking about linux systems. Further it is not so good when algorithms are not described clearly (like it was when we used Traps). So there are some ways to improve the product

Verified User

Director (5001-10,000 employees)

Vetted Review

3 years of experience

Kaspersky EDR Expert Review

Rating: 10 out of 10

Incentivized

March 30, 2024

Use Cases and Deployment Scope

have IT guy who likes all these security stuff, so he deployed trial version

and during trial period Kaspersky EDR Expert helped us to detect some malicious activities, so

we decide to keep it and buy commercial license.

Pros

Detection
Embedded Sandbox is a really good stuff, I can see detailed activity with visualization of any malicious sample
Simple interface. Usability.

Cons

Additional reporting capabilities
Include TI offering into EDR offering
Cover IoT

Likelihood to Recommend

Kaspersky EDR Expert helped us to stop ransomware attack and APT attack.

Verified User

Director (1001-5000 employees)

Vetted Review

13 years of experience

Detect advanced threats with Kaspersky EDR Expert

Rating: 9 out of 10

Incentivized

March 29, 2024

Use Cases and Deployment Scope

We're using Kaspersky EDR Expert capabilities additionally to Endpoint Security to increase visibility and detection as well as to improve response.

Pros

Detection
Threat hunting
Enrichment
Response

Cons

ChromeOS support
Integration with Intel TDT

Likelihood to Recommend

Kaspersky EDR Expert is well suited for detection in complex environments

Verified User

Manager in Information Technology (11-50 employees)

Vetted Review

2 years of experience

Automating EDR tasks with Kaspersky EDR Expert

Rating: 9 out of 10

Incentivized

February 8, 2024

Use Cases and Deployment Scope

I use Kaspersky EDR Expert as an antivirus and app control and web filter.

Pros

App-control
Web-filetring
Antivirus

Cons

OS-integration
Cloud-implementation
Scripting

Likelihood to Recommend

Ahmed Elibiary

Senior Network & Security Administrator in Information Technology at alahly tamkeen (201-500 employees)

Vetted Review

2 years of experience

View profile

Kaspersky EDR Expert - Catch and Respond.

Rating: 7 out of 10

Incentivized

January 19, 2024

Use Cases and Deployment Scope

We use Kaspersky EDR Expert to detect and respond to threats in our environment as it is much faster than any human can detect and respond to threats.

Pros

Quickly detects and responds to threats.
Easy to use.
Outstanding performance.

Cons

Better reporting.
Better view of the cyber killchain.
Basic control panel.

Likelihood to Recommend

Kaspersky EDR Expert is well suited for organizations with limited human resources to monitor and manage threats; Kaspersky EDR Expert plugs that gap.

Verified User

Administrator in Information Technology (201-500 employees)

Vetted Review

1 year of experience

A good solution with significant security risks

Rating: 1 out of 10

Incentivized

November 29, 2023

Use Cases and Deployment Scope

Kaspersky EDR Expert is a new sophisticated EDR

system. We used this system to provide endpoint protection, advanced

detection, threat hunting and investigation capabilities. It was

used by SOC and IT operations for incident response to hunt, prioritize,

investigate and neutralize complex threats and APT-like attacks. The business

problems we addressed: end-point device security management, end-point

protection, threat analysis and investigation, incident process management,

protection against APT attacks.

Pros

Identify and automatically respond to end-point security threats
Protect end-point systems against a broad range of cyber attacks
Reduce operational costs to support EDR services

Cons

From experience, this systems has not offered a credible defense against potential nation-state cyberattacks
From experience, this system has not offered a credible data protection against nation-state cyberattacks
Limited visibility into the cyber kill chain for this service
From experience, a high rate of false positives
Control council needs to be improved
Automate patch updates

Likelihood to Recommend

I think system could be used for small business that is very price sensitives and prepared to take security risks for the low price system. In my opinion, It is too risky to use this system for security sensitives enterprises

Verified User

Manager in Information Technology (1001-5000 employees)

Vetted Review

2 years of experience

Kaspersky - intuitive software for endpoint security.

Rating: 9 out of 10

Incentivized

November 20, 2023

Use Cases and Deployment Scope

We utilize Kaspersky Endpoint Detection and Response to help secure our network and proactively prevent cyber-attacks and malicious software from accessing our systems.

Pros

Identify and automatically respond to security threats.
Provide Real-time issue reports.
Quick and easy endpoint deployment.

Cons

It would be nice to have more insight into the kill chain of potential infections and malware.
Remote interface is a little lacking as to why a file was flagged.

Likelihood to Recommend

Looking at other products in the market, Kaspersky provides advanced features at a reasonable cost.

Derek Beutler

Attorney in Legal at Beutler Law P.C. (1-10 employees)

Vetted Review

2 years of experience

Affordable and ideal to small businesses

Rating: 10 out of 10

Incentivized

November 17, 2023

Use Cases and Deployment Scope

We use Kaspersky EDR Expert in client computers in our organization because we need a reliable system to protect these machines from malicious attacks and also to control other security aspects in the cliente computers. So far we are happy with the product and recomend it to any company that do not have too many computers to manage, since is a realy easy software to deploy and mantain.

Pros

Protect client computer from malicious attacks
Protects from malware attacks
Protects agains Phishing attacks

Cons

The central console could be improved
More assistance in patch update
Less false positives

Likelihood to Recommend

This product is suited

for small enterprises where you have less than 50 computers to manage, it

performs well and do not make the client machine slower.

Because it lacks some automation in gathering

information from client machines, it maybe difficult to manage a broader number

of machines, but for small size companies is really good doing the job of protection

of the client machine really well.

Verified User

Manager in Information Technology (11-50 employees)

Vetted Review

3 years of experience

Kaspersky works for us.

Rating: 9 out of 10

Incentivized

November 14, 2023

Use Cases and Deployment Scope

Virus protection and password management are the main uses. We do not utilize any of its VPN capabilities; those are handled in another software.

Pros

Password Management.
Blocking malware.
Identifying outdated passwords and protections.

Cons

Ease of interface could be enhanced.
Would like additional reporting capabilities.
Better notification when updates will be processed.

Likelihood to Recommend

Helping with password compliance is good, as well as helping serve as a password manager. Does a good job of identifying spam and malware.

Verified User

Director in Corporate (11-50 employees)

Vetted Review

5 years of experience

Loading Reviews List....

A good solution with significant security risks

Rating: 1 out of 10

Incentivized

November 29, 2023

Use Cases and Deployment Scope

Kaspersky EDR Expert is a new sophisticated EDR

system. We used this system to provide endpoint protection, advanced

detection, threat hunting and investigation capabilities. It was

used by SOC and IT operations for incident response to hunt, prioritize,

investigate and neutralize complex threats and APT-like attacks. The business

problems we addressed: end-point device security management, end-point

protection, threat analysis and investigation, incident process management,

protection against APT attacks.

Pros

Identify and automatically respond to end-point security threats
Protect end-point systems against a broad range of cyber attacks
Reduce operational costs to support EDR services

Cons

From experience, this systems has not offered a credible defense against potential nation-state cyberattacks
From experience, this system has not offered a credible data protection against nation-state cyberattacks
Limited visibility into the cyber kill chain for this service
From experience, a high rate of false positives
Control council needs to be improved
Automate patch updates

Likelihood to Recommend

Verified User

Manager in Information Technology (1001-5000 employees)

Vetted Review

2 years of experience