Kaspersky Endpoint Detection and Response Expert Reviews

We work with Kaspersky and two modalities: the Censi final and Censi license. Most of our clients work in financial areas and industry. Our regular enterprise business relies on these solutions.

Kaspersky is viable with ADR; the Endpoint Detection response feature and the BitLocker management feature are important. 

Additionally, almost all our clients use the Patch Management, vulnerability, and integration feature.

We use Kaspersky Endpoint Detection and Response for different in-depth solutions. It's a useful tool when you want everything in one module and you don't have a big budget for security. Other use cases are behavior detection, policy management, assessments, and patch fixings.

The most valuable features for me in Kaspersky are good security and performance. This solution is quite responsive and the tech support engineers are kind and good.

Our company uses the solution for endpoint detection. We started with the cloud service but our experience was not very positive so we moved to the on-premises solution. 

The detection engine running on endpoints works very well and provides a good protection level. We had several infection attempts but all were captured and blocked by the solution with no ransomware or malware running wild in our network.

The SD engine is very powerful and profound. 

The solution can integrate with external SIM solutions or external SOCs like CrowdStrike or Microsoft Defender.  

We primarily rely on it for quick responses to threats.

It takes action when it detects any malicious or abnormal behavior.

Kaspersky EDR Expert improved our incident response times.

I enjoyed working in security, but I am a commercial manager at my company now. Our customers and my company don't have issues with the solution. It's very difficult to try to work in the web interface.

When working with Kaspersky Endpoint Detection and Response Expert, I feel secure with my confidential documents, especially when we open them in Excel. So, we feel secure with such capacity in the solution.

I use the solution in my company mainly for endpoint protection and also for its XDR capabilities to deal with threat intelligence. It is used not only from the endpoint protection perspective but also from the threat intelligence aspect.

The solution's most valuable features are that it offers very strong encryption and acts as an antivirus product. It is one of the few antivirus tools that, once you discover a device remotely, you can install within the portal's central management.

We use Kaspersky Endpoint Detection and Response for threat protection.

Kaspersky Endpoint Detection and Response has helped our company in many ways. Since we have been using this solution has have not had issues compared to other solutions we have used.

It's our primary, go-to product for email security. It covers our inbound and outbound mail. If somebody clicks on a bad link inside your company, it will automatically stop them from using that email to spread the rest of the phishing attempts. It checks outbound emails, not just inbound.

The solution is deployed on the cloud.

There are about 12 users in my organization. 

If we get a new employee, we'll buy another license. Otherwise, we don't have plans to increase usage. It scales with the amount of staff that we have.

It doesn't matter from where you log in, you're going to go through the Barracuda gateway. It will protect and filter any incoming mail. There's also a sandboxing feature. If Barracuda picks up something that's a little bit fishy, it will detonate it in the sandbox.

If it's not malicious, it'll pass it on. If it is malicious, it'll just quarantine it. The nice thing is that sometimes Barracuda doesn't know if the mail is good or bad for you. It gives you the option to allow delivery or to block delivery of that particular kind of mail.

If someone is trying to send you mail but is being blocked by your gateway, you can go into your Barracuda portal, see the last mail that came in, and you can choose from different options: allow/don't allow, deliver, once only, block user, or whatever the case may be.

In some cases, we can also restrict it, but only the admin can do that. If you have a problem and one of your clients can't send you mail, you need to contact the admin IT manager and tell them that you're expecting mail from a certain email address but you've been blocked. He will then allow the delivery of that. It gives you control over what gets delivered to your end users from an IT manager's point of view.