2022-07-25T19:27:00Z
Fernando Elias Gonzalez Hernandez - PeerSpot reviewer
Cyber Security Manager at Maxitransfers LLC
  • 14
  • 165

What is your recommendation for a 5-star EDR with low resource consumption for a financial services company?

Hi,

I'm looking for an EDR with low resource consumption and very robust for 270 computers.

Any suggestions?

Thank you
---

<Original question>

Estoy buscando un EDR con bajo consumo de recursos y muy robusto para 270 equipos de computo

Sugerencias?

Gracias

12
PeerSpot user
12 Answers
HH
Owner at Quantiv Networks
Real User
Top 5Leaderboard
2022-07-27T13:04:01Z
Jul 27, 2022

I highly recommend SentinelOne. It is extremely effective and has very low resource usage. 

Search for a product comparison in EDR (Endpoint Detection and Response)
Pieter Plas - PeerSpot reviewer
Owner at Beerepoot Automatisering B.V.
MSP/MSSP
Top 10
2022-07-26T18:53:53Z
Jul 26, 2022

Hi Fernando,


I’m very happy with Kaspersky. Good value  for your money. Good support when you need it. The console gives you more than only antivirus, but also patch management for 3th party software and so many more. And i believe the best anti ransomware in the world.


With kind regards,

Ben Arbeit - PeerSpot reviewer
Manager at a retailer with 51-200 employees
Real User
Jul 31, 2022

@Pieter Plas which Kaspersky product do you use as an EDR solution (and not an EPP one)?
Thanks.

PeerSpot user
2022-07-26T11:33:34Z
Jul 26, 2022

Hi Fernando,


Nice to meet you! 
From Sofistic we can help you with SOC and Crowdstrike EDR!

Evgeny Belenky - PeerSpot reviewer
Director of Community at PeerSpot (formerly IT Central Station)
Community Manager
Jul 27, 2022

@✔ Fernando Collado Herrera thanks for your reply!

As to AI-based tools, it seems there are many alternative ones such as: Sophos Intercept X Endpoint, Trend Micro Apex One, Microsoft Defender, Cisco Secure Endpoints, ...  I think many vendors are adding the AI support as signature-based only tools are much more vulnerable. Am I wrong?

Are you aware of any 3rd party research or comparison between Crowdstrike and other similar EDR products?

Thanks. 

PeerSpot user
Remy Ma - PeerSpot reviewer
Network Security Services at ACE Managed Securty Services
Real User
Top 5
2022-11-09T10:40:30Z
Nov 9, 2022

The best EDR is one you can afford and one that comes with a company that can provide round-the-clock support and management, such as Ace Cloud Hosting, when it comes to using it for some financial services.


Suggested Reading: Why is EDR Crucial for Financial Industry? (acecloudhosting.com)


You should choose a company that provides a managed EDR solution so that you have somebody always managing your EDR. The company should be able to provide you with remote support and maintenance. Choosing a managed EDR is important because it reduces the cost of labor and saves you time. The managed EDR is also always kept up to date, so when you have a problem, they can fix it quickly and without any downtime.


I recommend you managed EDR service from Ace Cloud Hosting. The best part is that they will provide 24/7 support with their managed SOC team active 24*7 and regular security fixes and updates. Overall, it's the best EDR solution I've ever used.

Meleria Mangaring - PeerSpot reviewer
Systems Engineer at Trends and Technologies, Inc
Reseller
Top 5
2022-08-05T00:26:36Z
Aug 5, 2022

Trend Micro Vision One! The XDR solution is already matured compared to last year and can be correlated with other information within an environment.

Evgeny Belenky - PeerSpot reviewer
Director of Community at PeerSpot (formerly IT Central Station)
Community Manager
Aug 5, 2022

@Meleria Mangaring what makes this solution better than competitors? Thanks

PeerSpot user
CP
Partner Account Manager 🔆 at SEC DataCom A/S
Reseller
2022-08-01T09:22:46Z
Aug 1, 2022

SentinelOne is the best solution for that. 


A minimum of training and administration, easy to manage and deploy, more secure than most of its competitors, and very low consumption of resources.

Learn what your peers think about Microsoft Defender for Endpoint. Get advice and tips from experienced pros sharing their opinions. Updated: November 2022.
656,862 professionals have used our research since 2012.
JB
Technical Director - RPA at Diversified Robotic
User
2022-07-31T23:32:57Z
Jul 31, 2022

I highly recommend Bitdefender Gravityzone Business Security Enterprise. 


Low resource usage, policy management supports inheritance, option to set a power user mode password (to temporarily disable on an endpoint). 


Relay machines can be optionally used to have a few or one relay machine(s) fetch the updates and then forward to all endpoints to reduce update traffic, instead of all machines fetching updates; it's easy to learn/use.

LucaMazzotta - PeerSpot reviewer
Cyber Security PreSales Engineer at a tech services company with 1,001-5,000 employees
Real User
2022-07-28T13:53:05Z
Jul 28, 2022

Hi @Fernando Elias Gonzalez Hernandez, ​


You can check RSA Netwitness Endpoint if your focus is low resource impact, deep use of machine learning and great forensic tools. Plus, you can integrate the ecosystem with another visibility product in the future (net and logs).


If you are looking for a stand-alone solution (full cloud mgt), I recommend SentinelOne too.

Real User
2022-07-27T23:29:21Z
Jul 27, 2022

SentinelOne or Watchguard EDPR Both provide SMB to corporate level support and management. 


SentinelOne has an icredible record. We use Watchguard alongside their other products, e.g. Authpoint.

JS
Senior Network Engineer at Computer Consultants
Real User
2022-07-27T21:54:34Z
Jul 27, 2022

I strongly recommend Bitdefender MDR. 


Bitdefender is rated #1 on the EPP side by AV-comparatives testing. 


And Bitdefender MDR is tested in the top rank on the MDR side by Mitre Attack Framework testing. 


In this day and age (with both AMD and Intel having very good performance even on the I3 low-end side), I would prioritize efficacy over system impact. 


Bitdefender only really has an impact when running a full scan. 


In normal operation (even with all of the modules running) the impact is negligible. Bitdefender Gravity Zone with MDR, I think, is the best there is over Trend Micro/Sophos/Crowdstrike.

MV
Healthcare Digital Transformation Director at NETRIX
User
2022-07-27T20:55:22Z
Jul 27, 2022

A good option is Darktrace as it meets both criteria.


---


<an original answer>


Una buena opción es DARKTRACE pues cumple con los dos criterios.

DA
Sr. Sales Engineer at a tech services company with 11-50 employees
MSP
Top 5Leaderboard
2022-07-27T19:30:55Z
Jul 27, 2022

Most companies I have spoken to are looking to purchase solutions from CrowdStrike.

Evgeny Belenky - PeerSpot reviewer
Director of Community at PeerSpot (formerly IT Central Station)
Community Manager
Jul 28, 2022

@reviewer1861374 thanks.

What are the main reasons (according to the clients) to choose this solution vs competitors?

Thanks.

PeerSpot user
Related Questions
Evgeny Belenky - PeerSpot reviewer
Director of Community at PeerSpot (formerly IT Central Station)
Sep 12, 2022
Hello community members, Could you please share 2-3 of the top pain points you've been experiencing during the Endpoint Detection and Response (EDR) solution purchase? Have you been able to overcome them? How? Thanks for sharing your experience with other peers.
2 out of 6 answers
Shibu Babuchandran - PeerSpot reviewer
Regional Manager/ Service Delivery Manager at ASPL INFO Services
Jul 6, 2022
Hi @Evgeny Belenky​, A few points that need emphasis when deciding on the EDR are as below:  1) Does the solution employ Foundational Techniques (traditional), modern techniques (next-gen), or even a combination of both? 2) How does the solution detect unknown threats. Does it have machine learning capabilities? 3) If the solution does claim to utilize machine learning, what type of machine learning is used? 4) What technology is deployed to prevent exploit-based and file-less attacks? 5) Is the solution specifically designed to stop ransomware? 6) Does the solution’s creator have third-party results that validate their approach? 7) Can the solution ask detailed threat hunting and IT security operations questions? 8) What visibility is provided into attacks and can the solution respond automatically.
Evgeny Belenky - PeerSpot reviewer
Director of Community at PeerSpot (formerly IT Central Station)
Jul 7, 2022
Hi @Devanand PR, @Basil Dange, @Nadeem Syed, @Abbasi Poonawala ​and @Dalvarado, ​ ​ ​ ​ Can you please share your professional insights with your peers? Thanks and we appreciate your collaboration.
reviewer1740369 - PeerSpot reviewer
User at Jkumar infra
Sep 19, 2022
Hello all, An anti-virus (AV) works based on the file signature mechanism and an Endpoint Detection and Response (EDR) tool is behavior-based.  Do we need to use both EDR and AV solutions or EDR-only to protect our IT assets?  Thanks.
2 out of 7 answers
Shibu Babuchandran - PeerSpot reviewer
Regional Manager/ Service Delivery Manager at ASPL INFO Services
Jun 19, 2022
Hi @reviewer1740369​, When evaluating EDR vs. antivirus, it’s important to note that an Endpoint Detection and Response solution does all that the best antivirus product does – and more. Typically it is recommended other antivirus tools be removed when an EDR solution is installed.  Running both can cause slowness or other technical issues on systems and devices. To defend against complex and evolving threats, the choice is clear – Endpoint Detection and Response will give you more advanced security.
Shibu Babuchandran - PeerSpot reviewer
Regional Manager/ Service Delivery Manager at ASPL INFO Services
Jun 19, 2022
Hi @reviewer1740369​, Hope this will be helpful when you have to take a call for exact differences. EDR Features:1. EDR includes real-time monitoring and detection of threats – including those that may not be easily recognized or defined by standard antivirus. Also, EDR is behavior-based, so it can detect unknown threats based on a behavior that isn’t normal. 2. Data collection and analysis determine threat patterns and alerts organizations to threats 3. Forensic capabilities can assist in determining what has happened during a security event 4. EDR can isolate and quarantine suspicious or infected items. It often uses sandboxing to ensure a file’s safety without disrupting the user’s system. 5. EDR can include automated remediation or removal of certain threats Antivirus Features: 1. Antivirus is signature-based, so it only recognizes threats that are known. 2. AV can include scheduled or regular scanning of protected devices to detect known threats 3. Assists in the removal of more basic viruses (worms, trojans, malware, adware, spyware, etc.) 4. Warnings about possibly malicious sites
Related Articles
Evgeny Belenky - PeerSpot reviewer
Director of Community at PeerSpot (formerly IT Central Station)
Aug 17, 2022
Hi dear community members, In this edition of PeerSpot's Community Spotlight, you can find out what your peers are discussing and join in the conversation. Ask and answer questions on the topics that interest you most! Read and respond to articles or contribute your own! Trending These are the topics your peers are talking about on PeerSpot this week How do I estimate the requir...
See 1 comment
Evgeny Belenky - PeerSpot reviewer
Director of Community at PeerSpot (formerly IT Central Station)
Aug 17, 2022
Thank you to all the community members who share their knowledge with other peers! Also, special thanks to the articles' contributors included in this Community Spotlight: @Janet Staver, @Abhirup Sarkar, @Manoj Narayanan, @Beth Safire and @Shibu Babuchandran.
Shibu Babuchandran - PeerSpot reviewer
Regional Manager/ Service Delivery Manager at ASPL INFO Services
Aug 9, 2022
If you’re weighing your options for endpoint security solutions, there are many options out there. However, solutions vary greatly in terms of how effectively they can protect your network. I want to help you make the best decision possible, so here are some questions to ask before buying an endpoint security solution, and why they are important. 1) Does the solution employ Foundational Tech...
Evgeny Belenky - PeerSpot reviewer
Director of Community at PeerSpot (formerly IT Central Station)
Aug 2, 2022
Dear professionals, Welcome back to PeerSpot's Community Spotlight! Below you can find the latest hot topics posted by your fellow PeerSpot Community members. Read articles, answer questions, and contribute to discussions that are relevant to you and your expertise. Or ask your peers for insight on topics that interest you! Trending Here are some topics that your peers are discussi...
See 1 comment
Evgeny Belenky - PeerSpot reviewer
Director of Community at PeerSpot (formerly IT Central Station)
Aug 2, 2022
@Chris Childerhose, @PraveenKambhampati, @Deena Nouril, @Shibu Babuchandran and @reviewer1925439, Thank you for contributing your articles and sharing your professional knowledge with 618K PeerSpot community members around the globe as well as with a much bigger readers audience!
Evgeny Belenky - PeerSpot reviewer
Director of Community at PeerSpot (formerly IT Central Station)
May 2, 2022
Hi peers, We're happy to share our new bi-weekly Community Spotlight with you. Here you'll find recent contributions by PeerSpot community members: questions, articles and trending discussions. Trending See what your peers are discussing at the moment! What to choose: an endpoint antivirus, an EDR solution, or both? What is your recommended IT Service Management (ITSM) tool in 2022? W...
Evgeny Belenky - PeerSpot reviewer
Director of Community at PeerSpot (formerly IT Central Station)
Feb 4, 2022
Hi dear community members, This is our latest community digest. It helps you catch up on recent contributions by community members. Comment below with your feedback and suggestions! Trending What are the Top 5 cybersecurity trends in 2022? What are the main benefits of modern IT Asset Discovery tools? Tip Post an educational article from your Home feed and receive 20 point...
See 1 comment
reviewer1577907 - PeerSpot reviewer
Manager at PeerSpot
Feb 4, 2022
Thank you, these community Spotlights are very handy!
Related Articles
Evgeny Belenky - PeerSpot reviewer
Director of Community at PeerSpot (formerly IT Central Station)
Aug 17, 2022
Community Spotlight #20
Hi dear community members, In this edition of PeerSpot's Community Spotlight, you can find out w...
Shibu Babuchandran - PeerSpot reviewer
Regional Manager/ Service Delivery Manager at ASPL INFO Services
Aug 9, 2022
8 Questions to Ask While Selecting an Endpoint Security Solution for Your Business
If you’re weighing your options for endpoint security solutions, there are many options out there...
Download Free Report
Download our free Microsoft Defender for Endpoint Report and get advice and tips from experienced pros sharing their opinions. Updated: November 2022.
DOWNLOAD NOW
656,862 professionals have used our research since 2012.