|
Hey everyone, I am in the middle of our AV refresh and the industry seems to be in the middle of a changing of the guard and I for one am lost. We are currently using Sophos Enterprise Suite. AV, Encryption and Web Filter Appliance. We are getting gouged on the refresh price so we are going out to market but since we last did a refresh the market has changed considerably. Right now I am looking at: Kaspersky Enterprise Endpoint Security | Advanced (http://usa.kaspersky.com/business-security/endpoint-advanced) Dell Data Protection Endpoint Security Suite (http://www.dell.com/learn/us/en/08/shared-content~data-sheets~en/documents~ddp-ess-enterprise-datasheet.pdf) My main question is do Advanced Threat Prevention systems such as Dell ESSE (aka Cylance) do the same and/or better job than traditional AV (Kaspersky). I cannot find much in the way of independent analysis of Dell ESSE vs the competition. Dell is giving us a very very competitive price but I would like to be sure that it will actually work. If anyone has worked with/tested Dell ESSE any opinions and/or information will be greatly appreciated. Thanks
|
# ? Aug 30, 2016 18:49 |
|
|
# ? May 2, 2024 22:32 |
|
Are you doing this to pass audits? If so, just get System Center Endpoint Protection. Third-party antivirus is universally garbage, enterprise or not, because they aren't going to detect any threats you couldn't eliminate by implementing good security policy and will instead slow your systems down and add attack vectors that actual serious threats will readily exploit.
|
# ? Aug 31, 2016 05:09 |
|
dpbjinc posted:Are you doing this to pass audits? If so, just get System Center Endpoint Protection. Third-party antivirus is universally garbage, enterprise or not, because they aren't going to detect any threats you couldn't eliminate by implementing good security policy and will instead slow your systems down and add attack vectors that actual serious threats will readily exploit. With the caveat that all av is garbage yeah you might as well install SCEP for audits.
|
# ? Aug 31, 2016 14:15 |
|
Also keep isolated backups so you don't get owned by ransomware
|
# ? Aug 31, 2016 14:16 |
|
kaspersky has some nice application whitelisting stuff, network attack detection, etc.. that goes beyond just definition based defense.
|
# ? Sep 8, 2016 01:59 |
|
If you have the cash (which it sounds like you don't), I would suggest Palo Alto TRAPS and putting the users behind a PA firewall with full subscriptions but that will likely cost you a poo poo ton. I recently did some test drives at the Palo Alto office and was thoroughly impressed with their offering (TRAPS is similar to CyLance in that it has Machine Learning and a bunch of other cool stuff while barely utilizing any CPU). For encryption I dunno we use TrueCrypt.
|
# ? Sep 8, 2016 02:44 |
|
Sepist posted:For encryption I dunno we use TrueCrypt.
|
# ? Sep 8, 2016 23:45 |
|
|
# ? May 2, 2024 22:32 |
|
Oops, I meant VeraCrypt. Didn't even know TrueCrypt was a thing.
|
# ? Sep 8, 2016 23:56 |