Cost effective , Impressive, faster threat response
Rating: 10 out of 10
March 27, 2024
KK
Vetted Review
Verified User
9 years of experience
We are using Kaspersky EDR Optimum Solution in Hybrid mode, KSC cloud and On-premise, which helps to manage inhouse and roaming users from a single centralized console.
Also, this solution is helping to track threat incidents on our endpoint and respond also.
There are some security control components i.e Device control, web control and application control to reduce the attack surface.
Also, this solution is helping to track threat incidents on our endpoint and respond also.
There are some security control components i.e Device control, web control and application control to reduce the attack surface.
- KEDR Optimum is helping to see threat kill chain formation, which helps to get clear picture of the what exactly attacker was trying to do during attack.
- We are crating prevent execution rules to block the threat in our complete infra.
- Ioc scan to validate and remove the any active threat entry from our endpoints
Cons
- Agent package size is little big, if it can be optimize with lite package would be great
- If possible Host Integrity functionality can be added, to take action as quarantine the non-compliance machine to connect our enterprise network
- Many times KSC cloud operating slow, if it can optimized for the faster response