Bitdefender GravityZone Enterprise Security Reviews

It is good to use for servers and endpoints. Because of the SME segment, they are not very keen to get into the enterprise segment. Hypervisors and virtual servers are there, but in the SME segment, there's not much focus on hypervisors. They prefer to have individual servers. That is working out fine so far.

Recently, it's not only Bitdefender, but our network design has also changed. We have revamped the network design into a multi-segment network design inspired by the X side. Servers, workstations, and NAS storage are in separate segments. We put stringent policies in place only to allow specific ports to open toward the servers. This has automatically reduced attacks. 

Before, most default ports were used, which created problems. Even from outside, when opening an RDP connection through the Internet, even on a customized port, the process was getting attacked. But once the VPN was implemented, things changed a lot. In recent years, we haven't found many attacks. But before that, there were many incidents I could elaborate on. It's getting more and more stabilized.

We are also educating our clients. We give training, like knowledge base, security awareness training. That is giving a bigger output. People are becoming much more educated. They're not clicking unnecessary links. They are aware and will send us a message if they have a doubt about opening a file or email. 

Another thing that is becoming advantageous is implementing a mail security solution in front of the mail servers. That is cutting edge because whatever firewall or antivirus software you have, they are not able to scan the emails. It already comes to the email. Unless it blocks the threat, it can only tag it. But if the user clicks on a link or attachment, it is going to infect the computer. It is inside your computer, and then you're trying to. Therefore, it, most of the time, stops the antivirus first, and then it takes action. That means you are already infected, and you are trying to solve the issue. But when we implemented mail security, even without a firewall, if you have mail security, with my industry experience, I saw that users need mail security in the first place and then go for the firewall in the second place. Because once you clear up the mail security, the majority of attacks are blocked. Majority threat comes from the mail. 

The major threat is coming; almost without exaggeration, 70% of attacks are coming through the mail. Whether it is ransomware or clicking on a link. But once you put in mail security and customize it properly, that stops everything. It is stopping the links, and then you have quarantine. The admin can check and release the emails. 

Another thing most companies do is allow the quarantine message to be seen by the end user. Then, he or she doesn't know if it is a good or bad email. It is better to have somebody with experience analyze the emails and then release them to the end user. In the last few years, we have found that viruses and malware have been reduced. This is the major difference.

The important factor is that after implementing Bitdefender, we haven't found any attacks. It has a vaccine for the RDP protocol, which is specific to this. We do some customization, but it does not lack any protection. 

Compared to older versions, we have not found any degradation in performance in the newer versions from the last three to five years, whether for graphical or normal users. They're not complaining that we are facing problems like memory issues. 

Bitdefender is also customizable and granular, but once you install it, it keeps running. The admin gets the information about which computer has been infected and can take action accordingly.

On a regular basis, Bitdefender's AI capability is okay. But you cannot leave some decisions to AI. You must have control. You have to look at what you're filtering, as it can be a false positive. But on a regular basis, AI can be helpful.

At this point in time, I am using Bitdefender, specifically GravityZone.

The fact that it is almost plug and play means the policies I have to define are not very complicated. Compared to something like McAfee Endpoint Security, EPO, I find Bitdefender much easier to deploy. 

It is great for admins who do not know much about endpoint security, as they can find Bitdefender very easy to deploy. The dashboard is really intuitive, providing a quick snapshot of the current environment, and the notifications are robust. 

I had an issue where notifications took longer to appear, but with some tweaking, I managed to resolve it. Now, notifications appear quickly. It has two-factor authentication, and it is web-based. 

In terms of threat detection, I would give it a ten out of ten since Bitdefender manages to catch threats that other products miss. It has a feature with ransomware protection that can undo changes made by malware. It is really next level.

It's a good tool. It's a good tool for overall security. And it's also catching up quickly. Recent updates are putting it on par with CrowdStrike. They're almost reaching an extreme level of security in terms of endpoints.

I like its unified interface, which also helps you scan Outlook email, for example. Multiple products can be standardized across endpoints or the EDR solution, and the integrations with SIEMs.

We are using the recent, most current version. 

I use it for security purposes of the endpoints and primarily use it for its telemetry and the information it provides, which I utilize for the stock solution I offer. That information is very valuable to the software for detection and response layered security.

The telemetry is key but, when it comes to this, one must know what he is looking for. Telemetry is just information that comes from the solution, which means that there is much of it that comes up. It is not sufficient to simply do installation and rely on the telemetry. One must know what he is looking for. 

This is what most people are interested in. They simply want something to stop an attack, to prevent them from being hacked. But, as someone in the security world, I know this is not accurate. Any security solution can be circumvented. I don't teach and protect, but detect and respond. This is what I focus on. I can use the telemetry and see what is going on, the steps being taken by a bad actor. This information is valuable to a security person such as myself, since it allows me to see what is transpiring and to craft an appropriate response. It would not be sufficient for me to be informed, say... that it stopped a virus or ransomware. I am not looking for what was stopped but for what wasn't, so that I can make an informed decision. 

I'm relying on it to actively monitor network traffic and ensure it stays resilient against potential attacks. It provides comprehensive details on any attempted breaches, which is a key aspect for me.

The enterprise-grade security it offers is impressive. It's user-friendly and doesn't involve any unnecessary hassle during installation. What sets it apart is that it doesn't hog my server resources or impact the performance of any of my PCs. The quality of security it provides, covering antivirus, ADR, and network traffic, has been exceptional. The patch management feature is incredibly impressive, offering seamless network recovery. I installed it on a single server and seamlessly integrated it into my current network. The domain integrator functionality is particularly noteworthy, allowing me to leverage my existing network infrastructure. The comprehensive overview it provides of my network is truly valuable.

It's the full gamut of everything I'm using for clients, and I'm in the process of switching all of them over to using Bitdefender GravityZone. It just has a lot more telemetry that allows me to monitor and manage my clients' security postures. 

Bitdefender GravityZone Enterprise Security has a lot of telemetry that allows me to really see what's going on with the device. It's at that level. It's a deep view into the device; I can actually tell what's going on in regard to logs and things of that nature. One of the things that I like the most about it is the ease of getting into the solution and utilizing it. With other solutions that I've used, such as Panda, this has been really difficult. Panda's portal was not intuitive at all. 

With Bitdefender, I like the fact that everyone starts off with a 30-day trial. Any client that I put into the system gets a 30-day trial. I can even use it as a prospecting tool. I can go in and install it onto a couple of devices in the network, and actually see what's going on, and go from there. Even if I wanted to, I could turn it off and say, "Well, we don't need it."

Endpoint protection

Ease of deployment and centralized is a huge timesaver.  

We've deployed it for various enterprises across different verticals. One example is IT companies, but it's applicable to a wide range of businesses.

It helps secure the organization against various cyber threats, including malware attacks, zero-day exploits, and ransomware. It specifically helps mitigate the risks associated with ransomware attacks.