2022-07-04T04:12:00Z
EB
Director of Community at PeerSpot (formerly IT Central Station)
  • 6
  • 110

What were your main pain points during the EDR product purchase process?

Hello community members,

Could you please share 2-3 of the top pain points you've been experiencing during the Endpoint Detection and Response (EDR) solution purchase?

Have you been able to overcome them? How?

Thanks for sharing your experience with other peers.

6
PeerSpot user
6 Answers
Shibu Babuchandran - PeerSpot reviewer
Regional Manager/ Service Delivery Manager at a tech services company with 201-500 employees
Real User
ExpertModerator
2022-07-06T04:01:24Z
Jul 6, 2022

Hi @Evgeny Belenky​,


A few points that need emphasis when deciding on the EDR are as below: 


1) Does the solution employ Foundational Techniques (traditional), modern techniques (next-gen), or even a combination of both?


2) How does the solution detect unknown threats. Does it have machine learning capabilities?


3) If the solution does claim to utilize machine learning, what type of machine learning is used?


4) What technology is deployed to prevent exploit-based and file-less attacks?


5) Is the solution specifically designed to stop ransomware?


6) Does the solution’s creator have third-party results that validate their approach?


7) Can the solution ask detailed threat hunting and IT security operations questions?


8) What visibility is provided into attacks and can the solution respond automatically.

Search for a product comparison in EDR (Endpoint Detection and Response)
Fernando Elias Gonzalez Hernandez - PeerSpot reviewer
Cyber Security Manager at Maxitransfers LLC
User
2022-07-27T14:22:09Z
Jul 27, 2022

- Platforms that are only in English.


- Platforms that don't allow Web and IP blacklists.


- Platforms that consume a lot of resources.

Remy Ma - PeerSpot reviewer
Network Security Services at ACE Managed Securty Services
Real User
Top 5
2022-09-12T00:03:29Z
Sep 12, 2022

I had to deal with several pain points while getting an EDR solution. I’ll list the main ones below.



  • Adequate cybersecurity staffing to ensure the EDR solution is configured, monitored, and analyzed correctly.

  • EDR tools with low data lookback were an issue. I wanted a solution that provided historical data of up to 90 days to one year.


  • Integrating the EDR tool with threat intelligence feeds and other existing security tools.

  • The EDR learning curve is long. It takes time and specialized resources to understand how the solution works, learn to analyze the results, and how troubleshooting works.


Here are a few points you should keep in mind when purchasing an EDR solution:



  • Your EDR solution should provide in-depth and complete visibility into all applications and processes running on the endpoints.

  • Ensure the EDR solution provides real-time alerting, automatic attack storyline creation, MITRE ATT&CK mapping, and a unified workflow.


  • End-to-end response and remediation services are essential EDR features.

  • Ensure the EDR tool provides at least 90 days of live data for analysis.

Meleria Mangaring - PeerSpot reviewer
Systems Engineer at Trends and Technologies, Inc
Reseller
Top 5
2022-08-05T00:32:34Z
Aug 5, 2022

1 Does the solution support legacy OS?
2 What are other security solutions that can be integrated with?
3 How comprehensive is the threat intel and data correlation?
4 Is it user-friendly?

Jairo Willian Pereira - PeerSpot reviewer
Information Security Manager at a retailer with 10,001+ employees
Real User
Top 5Leaderboard
2022-07-11T22:15:05Z
Jul 11, 2022

Analyze the wave of products at Gartner hype "Cycle". 


EDR was good in the past. After that, MDR joined the hype and now XDR is the trend. 


Wait for more in a couple of months and you'll get ZDR!

EB
Director of Community at PeerSpot (formerly IT Central Station)
Community Manager
2022-07-07T09:30:24Z
Jul 7, 2022

Hi @Devanand PR, @Basil Dange, @Nadeem Syed, @Abbasi Poonawala ​and @Dalvarado, ​ ​ ​ ​


Can you please share your professional insights with your peers?


Thanks and we appreciate your collaboration.

Learn what your peers think about Cisco Secure Endpoint. Get advice and tips from experienced pros sharing their opinions. Updated: March 2023.
688,618 professionals have used our research since 2012.
Related Questions
RJ
User at African Industries
Mar 17, 2023
Hello peers,  I work for a large manufacturing company. We are evaluating EDR and XDR solutions for Endpoint Security, can anyone suggest some good ones for comparison with pros and cons? We did a demo with CrowdStrike, FortiEDR, and SentinelOne. Thank you for your help.
2 out of 6 answers
CP
Partner Account Manager 🔆 at SEC DataCom A/S
Mar 6, 2023
Hi, It seems you are already looking at some of the best and leaders in the new Gartner Quadrant. SentinelOne and CrowdStrike are very close in their offerings, detections, and responses. CrowdStrike might be a little more mature in their MDR offering, but both are doing very well in protecting your endpoints.You might consider Cybereason as well.Regarding EDR vs XDR, according to the Gartner Hype Curve, EDR is a more mature technology whereas XDR's maturity mostly is on the material from marketing. The difference is whether or not external logs and alerts are consolidated within the platform. Most EDR vendors claim they have XDR as well, but as most vendors, they talk the talk way before they can walk the walk and before the market are ready for the adoption. So if you are a first mover you can go for the full package but you must expect to accept some bugs and be the vendor's remote test lab.Besides that, nearly all solutions have APIs to be called and thus can be included in most platforms.
CA
Product Manager at a tech vendor with 11-50 employees
Mar 6, 2023
I agree with Carsten and want to add my experience. With S1, I get more false positives and resource consumption is a little bit more. Currently, I'm using CD and happy using it. MDR Services is provided by its own staff, not 3rd party. Single-click rollback is a plus with S1. About XDR, it depends on your company's security culture. I think there's no application that you just deploy and relax. If someone says "we do", I simply don't believe it. Network security is a different issue and it's hard to identify adversaries only with AI. You have to have a team to follow up on network traffic. For EDR, AI is more convenient. With XDR, AI will give you lots of false positives. After a while, you'll get exhausted from the noise. Also, most attacks target endpoints, so EDR has more priority in my opinion.
Fernando Elias Gonzalez Hernandez - PeerSpot reviewer
Cyber Security Manager at Maxitransfers LLC
Nov 9, 2022
Hi, I'm looking for an EDR with low resource consumption and very robust for 270 computers. Any suggestions? Thank you--- <Original question> Estoy buscando un EDR con bajo consumo de recursos y muy robusto para 270 equipos de computo Sugerencias? Gracias
2 out of 12 answers
Hi Fernando, Nice to meet you! From Sofistic we can help you with SOC and Crowdstrike EDR!
Pieter Plas - PeerSpot reviewer
Owner at Beerepoot Automatisering B.V.
Jul 26, 2022
Hi Fernando, I’m very happy with Kaspersky. Good value  for your money. Good support when you need it. The console gives you more than only antivirus, but also patch management for 3th party software and so many more. And i believe the best anti ransomware in the world. With kind regards,
Related Articles
EB
Director of Community at PeerSpot (formerly IT Central Station)
Aug 17, 2022
Hi dear community members, In this edition of PeerSpot's Community Spotlight, you can find out what your peers are discussing and join in the conversation. Ask and answer questions on the topics that interest you most! Read and respond to articles or contribute your own! Trending These are the topics your peers are talking about on PeerSpot this week How do I estimate the requir...
See 1 comment
EB
Director of Community at PeerSpot (formerly IT Central Station)
Aug 17, 2022
Thank you to all the community members who share their knowledge with other peers! Also, special thanks to the articles' contributors included in this Community Spotlight: @Janet Staver, @Abhirup Sarkar, @Manoj Narayanan, @Beth Safire and @Shibu Babuchandran.
Shibu Babuchandran - PeerSpot reviewer
Regional Manager/ Service Delivery Manager at a tech services company with 201-500 employees
Aug 9, 2022
If you’re weighing your options for endpoint security solutions, there are many options out there. However, solutions vary greatly in terms of how effectively they can protect your network. I want to help you make the best decision possible, so here are some questions to ask before buying an endpoint security solution, and why they are important. 1) Does the solution employ Foundational Tech...
EB
Director of Community at PeerSpot (formerly IT Central Station)
Aug 2, 2022
Dear professionals, Welcome back to PeerSpot's Community Spotlight! Below you can find the latest hot topics posted by your fellow PeerSpot Community members. Read articles, answer questions, and contribute to discussions that are relevant to you and your expertise. Or ask your peers for insight on topics that interest you! Trending Here are some topics that your peers are discussi...
See 1 comment
EB
Director of Community at PeerSpot (formerly IT Central Station)
Aug 2, 2022
@Chris Childerhose, @PraveenKambhampati, @Deena Nouril, @Shibu Babuchandran and @reviewer1925439, Thank you for contributing your articles and sharing your professional knowledge with 618K PeerSpot community members around the globe as well as with a much bigger readers audience!
EB
Director of Community at PeerSpot (formerly IT Central Station)
May 2, 2022
Hi peers, We're happy to share our new bi-weekly Community Spotlight with you. Here you'll find recent contributions by PeerSpot community members: questions, articles and trending discussions. Trending See what your peers are discussing at the moment! What to choose: an endpoint antivirus, an EDR solution, or both? What is your recommended IT Service Management (ITSM) tool in 2022? W...
EB
Director of Community at PeerSpot (formerly IT Central Station)
Feb 4, 2022
Hi dear community members, This is our latest community digest. It helps you catch up on recent contributions by community members. Comment below with your feedback and suggestions! Trending What are the Top 5 cybersecurity trends in 2022? What are the main benefits of modern IT Asset Discovery tools? Tip Post an educational article from your Home feed and receive 20 point...
See 1 comment
reviewer1577907 - PeerSpot reviewer
Manager at PeerSpot
Feb 4, 2022
Thank you, these community Spotlights are very handy!
Related Articles
EB
Director of Community at PeerSpot (formerly IT Central Station)
Aug 17, 2022
Community Spotlight #20
Hi dear community members, In this edition of PeerSpot's Community Spotlight, you can find out w...
Shibu Babuchandran - PeerSpot reviewer
Regional Manager/ Service Delivery Manager at a tech services company with 201-500 employees
Aug 9, 2022
8 Questions to Ask While Selecting an Endpoint Security Solution for Your Business
If you’re weighing your options for endpoint security solutions, there are many options out there...
Download Free Report
Download our free Cisco Secure Endpoint Report and get advice and tips from experienced pros sharing their opinions. Updated: March 2023.
DOWNLOAD NOW
688,618 professionals have used our research since 2012.