Kaspersky Endpoint Detection and Response Reviews

My company uses the EDR functionalities of Kaspersky, which are not related to application security. Kaspersky Endpoint Detection and Response is useful for environment scanning and can be deployed on a server to scan for viruses, malware, and hardware. We also use the product for EDR integration with the SIEM solution and get logs from each device.

The most valuable feature of the solution is its centralization capability allowing everything to be done from one device, including deployment, and integrating with the domain controller to do further deployments.

There are certain shortcomings with the UI of the solution. The UI is not at all user-friendly. The product should have an easier UI.

I have experience with Kaspersky Endpoint Detection and Response for two years. I use Kaspersky Endpoint Detection and Response Version 13.

It is a stable solution.

It is a very scalable solution.

The product is used by 2,500 employees in my company.

The product is extensively used in my companies since it is very good.

We can plan to increase the number of users in our company since it is a very scalable product.

The solution's technical support is very helpful and responsive. The documentation of the product also helps a lot.

Five years ago, I used Malwarebytes.

Considering the use cases of Malwarebytes, it was used to protect two servers from ransomware. During the time when we were using Malwarebytes in my previous company, the best solution on Gartner was GravityZone. At my previous company, we chose GravityZone to protect our two servers in a small environment with around 50 employees. Due to the aforementioned reasons, there was a requirement for a small business solution. Kaspersky Endpoint Detection and Response is the best for large environments.

The initial setup of the product is complicated and requires more work and effort from the system administrator. The product should provide domain controller admin access to allow for the maintenance of the network. Every issue we face in Kaspersky Endpoint Detection and Response relates to network and system administrators.

The solution is deployed on-premises.

Steps for the deployment should be followed to configure the network and ensure that all devices are accessible on the network or the same subnet while ensuring that there are no DMZs.

Though the product is not user-friendly, I was involved in the implementation process since I am an integrator.

Yearly payments are to be made toward the licensing costs of the solution.

To those planning to use the solution, I can say that it provides various specific customization and offers many shields for protection, because of which there is a need to be specific about the resources you want to save.

If you have a SIEM solution, then you should be specific when integrating Kaspersky with that SIEM solution and the best logs.

The product is not friendly, and it's not for end users. The product is meant for engineers and security engineers owing to its complex nature.

I rate the overall tool a ten out of ten.

I am affiliated with Kaspersky as a partner and reseller.

One of the most valuable aspects of Endpoint Detection and Response (EDR) solutions is their ability to detect and respond to spam and viruses in their early stages.

There are a few areas where I believe they could make some improvements. First, it would be beneficial if they could optimize the solution to be less resource-intensive, as it currently tends to put a heavy load on our machines and requires specialized servers for deployment. It is worth noting that they have made progress in this area, and the solution is now more manageable on standard server configurations. Enhancing user-friendliness should be a priority. Ideally, the interface should be intuitive enough that administrators and technical support teams don't require extensive training and can quickly adapt to using the solution independently. I must acknowledge that Kaspersky EDR already offers a robust set of features, especially in terms of threat detection and endpoint protection. 

I have been working with it for fourteen years.

Kaspersky offers two types of support. The standard support, which is included with the product purchase, tends to have longer response times for issue resolution. If you opt for their premium support, they provide prompt and effective assistance, ensuring quicker problem resolution.

I would say that their pricing is generally competitive and attractive. While the initial purchase cost for EDR may be relatively higher, particularly due to its advanced capabilities, it remains a cost-effective choice when compared to other established products in the same category.

I would rate it eight out of ten because there's always room for improvement in any product or service.

The solution was good for the use cases for which I used it.

Kaspersky Endpoint Detection and Response lacks configuration options. From an improvement perspective, I would like to see the solution offer more configuration options.

I have been using Kaspersky Endpoint Detection and Response for two years. I am a customer of the solution.

Stability-wise, I rate the solution a ten out of ten.

Scalability-wise, I rate the solution a nine out of ten.

Around 400 people in my organization use Kaspersky Endpoint Detection and Response.

The solution's technical support is good. I rate the technical support a ten out of ten.

Positive

I rate the solution's initial setup phase a nine on a scale of one to ten, where one is difficult and ten is easy. The initial setup of the solution was simple.

The solution is deployed on an on-premises model.

The solution's deployment phase was completed in a few days.

Only one person was required to take care of the solution's deployment phase in my company.

I rate the solution's pricing model a seven on a scale of one to ten, where one is cheap, and ten is expensive.

My company just made a single payment towards the costs related to the licensing of the solution.

I would tell those planning to use the solution that Kaspersky Endpoint Detection and Response is a good product.

I rate the overall solution a nine out of ten.

It allows me to selectively block certain websites for personal reasons, and I can control the usage of USB drives when connecting external devices to safeguard my computer. Additionally, I have the ability to manage other network devices for enhanced security.

It downloads essential security patches that are valuable for my PC. This is particularly useful as Windows doesn't always automatically update immediately.

Incorporating an AI protection tool with the capability to detect and prevent zero-day threats, particularly those with a five-star rating in terms of severity would be beneficial.

I have been working with it for six months.

It provides excellent stability.

The current scalability is insufficient for my needs on my PC. I personally manage HTTP, but it lacks the necessary capability. I believe an upgrade is required.

I previously utilized Sophos XDR, but I transitioned to Kaspersky as it offers a more cost-effective solution. I also used ESET, but it didn't meet my requirements.

The initial setup is straightforward and user-friendly.

The deployment process takes approximately thirty minutes.

In terms of return on investment, I saved money by protecting my laptops, as universal ransomware poses the most significant threat, and the chosen solution effectively mitigates this risk.

The pricing falls within the average range.

Overall, I would rate it eight out of ten.

We've deployed the client at the user’s end. We provide software security.

The advanced detection features are valuable. The solution provides reports on users and their devices. We get to know whether the devices are infected. The tool has saved us time and resources. Otherwise, we have to check every PC for viruses.

Many viruses change algorithms. The product does not detect zero-day threats. Kaspersky must provide zero-day threat detection. The product must provide a detailed status of the users and their activity on the devices.

I have been using the solution for more than a year.

The tool is stable.

We have 40 to 50 clients that use the solution.

The solution is deployed on my Windows Server 2019. The initial installation is easy.

The product is cheap.

My recommendation will depend on the number of users and the features other competitors offer. We are partners. Overall, I rate the tool a seven out of ten.

Kaspersky EDR has been beneficial for our organization, enhancing threat detection and response capabilities. It helps identify issues such as malware detection, unauthorized downloads, and inappropriate user permissions, enabling swift action to mitigate risks.

Kaspersky EDR offers automated response capabilities, enhancing efficiency by enabling quick investigation and response to potential threats on Android devices. It streamlines the process by automatically checking and responding to security issues, potentially improving effectiveness and reducing the need for manual intervention.

Kaspersky EDR could be improved by adding network detection capabilities to enhance convenience and security. Detecting and responding to network protocol issues, such as phishing emails or malicious downloads, can be challenging, but integrating network monitoring into EDR tools could significantly improve overall network security.

Overall, I'm satisfied with the price of Kaspersky EDR. It is widely used among our peers and has been effective in detecting and mitigating malware and ransomware threats. However, I have noticed that other EDR tools like Palo Alto EDR offer more advanced AI capabilities and broader threat coverage.

Kaspersky EDR enhances response capabilities by capturing malware or problematic websites on endpoints and providing alerts for quick action to resolve issues.

Kaspersky EDR offers features for threat hunting and vulnerability scanning on endpoints. It identifies unapplied security patches and provides a reporting tool for managing patch deployments efficiently.

Kaspersky EDR offers good integration capabilities, particularly with services like Office 365, which is beneficial for our organization. However, there might be some limitations when integrating with other tools such as NetSuite and Monday.com. Improving integration with tools like SolarWinds could enhance overall cybersecurity management. Looking ahead, prioritizing integration with cloud services would be advantageous as organizations increasingly rely on cloud-based solutions.

I would recommend Kaspersky EDR, especially for organizations operating in the China market. It is a convenient tool that provides effective security solutions, particularly helpful in addressing firewall issues commonly faced in the Chinese market. However, for companies outside of China not facing similar market restrictions, it might be good to consider other solutions as well.

Overall, I would rate Kaspersky EDR as a seven out of ten. It is a useful choice for our organization, although not perfect. It requires a certain skill set to manage security nodes effectively. However, it is relatively easy to use compared to other EDR tools, making it a safer option for less experienced users.

We use the solution to gather information on how endpoints behave and any events happening. If there's any suspicious activity on a machine, it alerts us. For investigating specific devices, we can refer back to the EDR.

The product is integrated with endpoint protection. We don't have to implement a separate technology. It provides visibility over the endpoints. 

Kaspersky Endpoint Detection and Response needs vast resources on the central node. Not all maintenance tasks are in the GUI, so we often use commands. The lack of documentation for these processes means we frequently reach out to support, open tickets, and run complex CLI commands. It's not the most straightforward process. It should also improve stability. 

I have been working with the product for three years. 

Kaspersky Endpoint Detection and Response is scalable. We have two admins using it. 

Even when we raise a support ticket, the engineers often don't provide direct answers. We have to dig into R&D and experiment; getting a resolution for a support ticket takes time.

Neutral

The tool's deployment was straightforward. It took a week to deploy. 

The tool's pricing is reasonable. 

I rate the product a six out of ten. 

We use the solution to cover endpoint security.

We have a concept of working from home. Most endpoints are not in the domain. It is our first line of defense. While we had Kaspersky deployed, it gave good insight into the upcoming challenge or threat. Accordingly, the relevant teams come into action and take good care of it before it blows out of our hands. As a security audit, we ensure that the agents and the machines are in the early stages. It gives us appropriate information, which helps us to keep our environment in a better, safer, and controlled position.

My team was struggling with the reporting when we were doing an audit. The console features are a little more interactive and user-friendly. There's some issue, or maybe some fixing has to be done. I've seen the ground staff struggling a lot over there. The skill set, knowledge transfer, or training can help them to improve.

I have been using Kaspersky Endpoint Detection and Response as a customer for seven months, whereas my company has been using it for around three years.

The initial setup is not challenging.

The solution is expensive.

Our operation team has used Kaspersky. We are involved in it as a part of my cybersecurity or system audit.

Overall, I rate the solution an eight out of ten.