What were your main pain points during the EDR product purchase process?

Question

EB

Director of Community at PeerSpot (formerly IT Central Station)

6
110

What were your main pain points during the EDR product purchase process?

Hello community members,

Could you please share 2-3 of the top pain points you've been experiencing during the Endpoint Detection and Response (EDR) solution purchase?

Have you been able to overcome them? How?

Thanks for sharing your experience with other peers.

6 Answers

Answered Sep 12, 2022

Search for a product comparison in EDR (Endpoint Detection and Response)

Buyer's Guide

Cisco Secure Endpoint

March 2023

Free Report: Cisco Secure Endpoint Reviews and More

Learn what your peers think about Cisco Secure Endpoint. Get advice and tips from experienced pros sharing their opinions. Updated: March 2023.

DOWNLOAD NOW

688,618 professionals have used our research since 2012.

Related Questions

RJ

Raja Jain

User at African Industries

Mar 17, 2023

Which is better for Endpoint Security: EDR or XDR solutions?

Hello peers, I work for a large manufacturing company. We are evaluating EDR and XDR solutions for Endpoint Security, can anyone suggest some good ones for comparison with pros and cons? We did a demo with CrowdStrike, FortiEDR, and SentinelOne. Thank you for your help.

2 out of 6 answers

CP

Carsten Dan Petersen

Partner Account Manager 🔆 at SEC DataCom A/S

Mar 6, 2023

Hi, It seems you are already looking at some of the best and leaders in the new Gartner Quadrant. SentinelOne and CrowdStrike are very close in their offerings, detections, and responses. CrowdStrike might be a little more mature in their MDR offering, but both are doing very well in protecting your endpoints.You might consider Cybereason as well.Regarding EDR vs XDR, according to the Gartner Hype Curve, EDR is a more mature technology whereas XDR's maturity mostly is on the material from marketing. The difference is whether or not external logs and alerts are consolidated within the platform. Most EDR vendors claim they have XDR as well, but as most vendors, they talk the talk way before they can walk the walk and before the market are ready for the adoption. So if you are a first mover you can go for the full package but you must expect to accept some bugs and be the vendor's remote test lab.Besides that, nearly all solutions have APIs to be called and thus can be included in most platforms.

Read full answer

CA

reviewer1871766

Product Manager at a tech vendor with 11-50 employees

Mar 6, 2023

I agree with Carsten and want to add my experience. With S1, I get more false positives and resource consumption is a little bit more. Currently, I'm using CD and happy using it. MDR Services is provided by its own staff, not 3rd party. Single-click rollback is a plus with S1. About XDR, it depends on your company's security culture. I think there's no application that you just deploy and relax. If someone says "we do", I simply don't believe it. Network security is a different issue and it's hard to identify adversaries only with AI. You have to have a team to follow up on network traffic. For EDR, AI is more convenient. With XDR, AI will give you lots of false positives. After a while, you'll get exhausted from the noise. Also, most attacks target endpoints, so EDR has more priority in my opinion.

Read full answer

See all 6 answers

Fernando Elias Gonzalez Hernandez

Cyber Security Manager at Maxitransfers LLC

Nov 9, 2022

What is your recommendation for a 5-star EDR with low resource consumption for a financial services company?

Hi, I'm looking for an EDR with low resource consumption and very robust for 270 computers. Any suggestions? Thank you--- <Original question> Estoy buscando un EDR con bajo consumo de recursos y muy robusto para 270 equipos de computo Sugerencias? Gracias

2 out of 12 answers

FC

✔ Fernando Collado Herrera

User

Jul 26, 2022

Hi Fernando, Nice to meet you! From Sofistic we can help you with SOC and Crowdstrike EDR!

Read full answer

Pieter Plas

Owner at Beerepoot Automatisering B.V.

Jul 26, 2022

Hi Fernando, I’m very happy with Kaspersky. Good value for your money. Good support when you need it. The console gives you more than only antivirus, but also patch management for 3th party software and so many more. And i believe the best anti ransomware in the world. With kind regards,

Read full answer

See all 12 answers

Related Articles

EB

Evgeny Belenky

Director of Community at PeerSpot (formerly IT Central Station)

Aug 17, 2022

Community Spotlight #20

Hi dear community members, In this edition of PeerSpot's Community Spotlight, you can find out what your peers are discussing and join in the conversation. Ask and answer questions on the topics that interest you most! Read and respond to articles or contribute your own! Trending These are the topics your peers are talking about on PeerSpot this week How do I estimate the requir...

See 1 comment

EB

Evgeny Belenky

Director of Community at PeerSpot (formerly IT Central Station)

Aug 17, 2022

Thank you to all the community members who share their knowledge with other peers! Also, special thanks to the articles' contributors included in this Community Spotlight: @Janet Staver, @Abhirup Sarkar, @Manoj Narayanan, @Beth Safire and @Shibu Babuchandran.

Read full comment

Shibu Babuchandran

Regional Manager/ Service Delivery Manager at a tech services company with 201-500 employees

Aug 9, 2022

8 Questions to Ask While Selecting an Endpoint Security Solution for Your Business

If you’re weighing your options for endpoint security solutions, there are many options out there. However, solutions vary greatly in terms of how effectively they can protect your network. I want to help you make the best decision possible, so here are some questions to ask before buying an endpoint security solution, and why they are important. 1) Does the solution employ Foundational Tech...

EB

Evgeny Belenky

Director of Community at PeerSpot (formerly IT Central Station)

Aug 2, 2022

Community Spotlight #19

Dear professionals, Welcome back to PeerSpot's Community Spotlight! Below you can find the latest hot topics posted by your fellow PeerSpot Community members. Read articles, answer questions, and contribute to discussions that are relevant to you and your expertise. Or ask your peers for insight on topics that interest you! Trending Here are some topics that your peers are discussi...

See 1 comment

EB

Evgeny Belenky

Director of Community at PeerSpot (formerly IT Central Station)

Aug 2, 2022

@Chris Childerhose, @PraveenKambhampati, @Deena Nouril, @Shibu Babuchandran and @reviewer1925439, Thank you for contributing your articles and sharing your professional knowledge with 618K PeerSpot community members around the globe as well as with a much bigger readers audience!

Read full comment

EB

Evgeny Belenky

Director of Community at PeerSpot (formerly IT Central Station)

May 2, 2022

Community Spotlight #13: Top Products and Solutions

Hi peers, We're happy to share our new bi-weekly Community Spotlight with you. Here you'll find recent contributions by PeerSpot community members: questions, articles and trending discussions. Trending See what your peers are discussing at the moment! What to choose: an endpoint antivirus, an EDR solution, or both? What is your recommended IT Service Management (ITSM) tool in 2022? W...

EB

Evgeny Belenky

Director of Community at PeerSpot (formerly IT Central Station)

Feb 4, 2022

Community Spotlight #7

Hi dear community members, This is our latest community digest. It helps you catch up on recent contributions by community members. Comment below with your feedback and suggestions! Trending What are the Top 5 cybersecurity trends in 2022? What are the main benefits of modern IT Asset Discovery tools? Tip Post an educational article from your Home feed and receive 20 point...

See 1 comment

reviewer1577907

Manager at PeerSpot

Feb 4, 2022

Thank you, these community Spotlights are very handy!

Read full comment

Related Categories

EDR (Endpoint Detection and Response)

Top rated products

Microsoft Defender for Endpoint

118 Reviews

CrowdStrike Falcon

55 Reviews

SentinelOne Singularity Complete

55 Reviews

Cisco Secure Endpoint

13 Reviews

See all products

Shibu Babuchandran · Answer 1 · 2022-07-06T04:01:24Z

Hi @Evgeny Belenky,

A few points that need emphasis when deciding on the EDR are as below:

1) Does the solution employ Foundational Techniques (traditional), modern techniques (next-gen), or even a combination of both?

2) How does the solution detect unknown threats. Does it have machine learning capabilities?

3) If the solution does claim to utilize machine learning, what type of machine learning is used?

4) What technology is deployed to prevent exploit-based and file-less attacks?

5) Is the solution specifically designed to stop ransomware?

6) Does the solution’s creator have third-party results that validate their approach?

7) Can the solution ask detailed threat hunting and IT security operations questions?

8) What visibility is provided into attacks and can the solution respond automatically.

Fernando Elias Gonzalez Hernandez · Answer 2 · 2022-07-27T14:22:09Z

- Platforms that are only in English.

- Platforms that don't allow Web and IP blacklists.

- Platforms that consume a lot of resources.

Remy Ma · Answer 3 · 2022-09-12T00:03:29Z

I had to deal with several pain points while getting an EDR solution. I’ll list the main ones below.

Adequate cybersecurity staffing to ensure the EDR solution is configured, monitored, and analyzed correctly.

EDR tools with low data lookback were an issue. I wanted a solution that provided historical data of up to 90 days to one year.

Integrating the EDR tool with threat intelligence feeds and other existing security tools.

The EDR learning curve is long. It takes time and specialized resources to understand how the solution works, learn to analyze the results, and how troubleshooting works.

Here are a few points you should keep in mind when purchasing an EDR solution:

Your EDR solution should provide in-depth and complete visibility into all applications and processes running on the endpoints.

Ensure the EDR solution provides real-time alerting, automatic attack storyline creation, MITRE ATT&CK mapping, and a unified workflow.

End-to-end response and remediation services are essential EDR features.

Ensure the EDR tool provides at least 90 days of live data for analysis.

Meleria Mangaring · Answer 4 · 2022-08-05T00:32:34Z

1 Does the solution support legacy OS?
2 What are other security solutions that can be integrated with?
3 How comprehensive is the threat intel and data correlation?
4 Is it user-friendly?

Jairo Willian Pereira · Answer 5 · 2022-07-11T22:15:05Z

Analyze the wave of products at Gartner hype "Cycle".

EDR was good in the past. After that, MDR joined the hype and now XDR is the trend.

Wait for more in a couple of months and you'll get ZDR!

Evgeny Belenky · Answer 6 · 2022-07-07T09:30:24Z

Hi @Devanand PR, @Basil Dange, @Nadeem Syed, @Abbasi Poonawala and @Dalvarado,

Can you please share your professional insights with your peers?

Thanks and we appreciate your collaboration.