We primarily use this solution for users, servers, and services that we have implemented in our company.
Information Security and Support Coordinator at St Marche
Provides reports and helps us with our servers
Pros and Cons
- "The most valuable features are the reports."
- "We would like to have better strategic information."
What is our primary use case?
What is most valuable?
The most valuable features are the reports.
What needs improvement?
There are no issues with this solution. However, we would like to have better strategic information. We currently have tactical, and it's hard to make strategic decisions based on what it delivers.
In addition, we have about 600 users using this solution.
For how long have I used the solution?
We have been using this solution for over four years. It is deployed on-premises.
Buyer's Guide
Kaspersky Endpoint Detection and Response Expert
October 2024
Learn what your peers think about Kaspersky Endpoint Detection and Response Expert. Get advice and tips from experienced pros sharing their opinions. Updated: October 2024.
814,649 professionals have used our research since 2012.
How are customer service and support?
I rate the technical support a six out of ten because the support depends on the type of contract we have. We have a special contract, so we just need to submit a case and get a response within 24 hours.
What's my experience with pricing, setup cost, and licensing?
Our licensing costs are annual.
What other advice do I have?
I rate this solution a nine out of ten.
Which deployment model are you using for this solution?
On-premises
Disclosure: My company has a business relationship with this vendor other than being a customer: Partner
Cyber Security Specialist at Crystal Technologies Limited
Easy to deploy but needs to ensure more availability on the cloud
Pros and Cons
- "The solution's most valuable features are that it offers very strong encryption and acts as an antivirus product."
- "I would say that Kaspersky is not too big in the cloud-related area."
What is our primary use case?
I use the solution in my company mainly for endpoint protection and also for its XDR capabilities to deal with threat intelligence. It is used not only from the endpoint protection perspective but also from the threat intelligence aspect.
What is most valuable?
The solution's most valuable features are that it offers very strong encryption and acts as an antivirus product. It is one of the few antivirus tools that, once you discover a device remotely, you can install within the portal's central management.
What needs improvement?
I would say that Kaspersky is not too big in the cloud-related area. From an improvement perspective, it would be good if Kaspersky went big in the cloud since it would give the tool a fair chance to compete with other clouds.
For how long have I used the solution?
I have been using Kaspersky Endpoint Detection and Response Expert for three years. The product has been used in my company for more than five years.
What do I think about the stability of the solution?
Stability-wise, I rate the solution a nine out of ten.
There are some basic issues in the product, some of which may not even be related to Kaspersky. The issues revolve around updates, integrations, and how the data center works.
What do I think about the scalability of the solution?
Scalability-wise, I rate the solution a seven out of ten.
How are customer service and support?
The previous client we were working with was a bank that had opened a ticket with Kaspersky some months ago, and nobody had responded. The only response from the support team is when it comes to pricing. Technical support is a little slow. I rate the technical support a five out of ten.
How would you rate customer service and support?
Neutral
How was the initial setup?
The product's initial setup phase is a medium-level process. It is pretty easy to set it up, but I would say it is medium because I am not yet experienced working with it in an enterprise-level business with 10,000 or more people. I have worked with organizations with 1,000 to 5,000 people, and I can say that the setup phase is not difficult to manage. I rate the setup phase an eight out of ten.
I have clients who use on-prem services for Kaspersky Security Center, and I have clients who use Kaspersky Security Cloud. We have the ones that we manage in the cloud and the ones that we manage on-premises.
Depending on the number of endpoints we have to manage, the product can be deployed in a week.
We have different people to manage endpoints and security cloud. An average of three to four deploy the tool.
What's my experience with pricing, setup cost, and licensing?
If one is cheap, ten is expensive, I rate the product’s price as a seven out of ten, especially if I compare it with CrowdStrike.
Which other solutions did I evaluate?
Compared to Trend Micro and CrowdStrike, Kaspersky is really big on endpoint protection and detection. Whatever an endpoint protection tool needs, Kaspersky has it all. It only lacks in the cloud area and visibility between the cloud, emails, and endpoints. When it comes to endpoint protection alone, I think it is a big tool.
What other advice do I have?
The automated response capabilities improve security operations and are very useful. The tool can discover other devices in your environment that don't have antivirus. It goes the extra mile to tell you, even if you are installing an application, whether it is already outdated and if you need to update it. In terms of compliance, you can take a report from Kaspersky and switch to compliance while figuring out the devices that are most affected and the UIs that are most critical.
I would recommend the product to others since it is pretty easy to deploy and manage the setup phase while also being affordable. Mostly, if there is an SMB client who fears getting an enterprise-sized solution like CrowdStrike, they can get Kaspersky and be able to get maximum protection by just using the funds that they have.
I rate the tool a seven out of ten.
Which deployment model are you using for this solution?
On-premises
Disclosure: My company has a business relationship with this vendor other than being a customer: MSP
Last updated: Jul 25, 2024
Flag as inappropriateBuyer's Guide
Kaspersky Endpoint Detection and Response Expert
October 2024
Learn what your peers think about Kaspersky Endpoint Detection and Response Expert. Get advice and tips from experienced pros sharing their opinions. Updated: October 2024.
814,649 professionals have used our research since 2012.
CISO at a wholesaler/distributor with 1,001-5,000 employees
Has good stability and efficient machine-learning features
Pros and Cons
- "Its customer service is quite good."
- "They should include XDR features in the solution."
What is our primary use case?
We use the solution to create a test scenario for detecting a potential threat in the network.
How has it helped my organization?
The solution's cybersecurity policies help us protect some extensions of the primary documents in case of a ransomware attack. Also, in case endpoint servers get compromised, it protects them. Thus, we can manage exclusive and essential extensions for systems using it.
What is most valuable?
The solution's most valuable feature is machine learning. It monitors the traffic and events to detect suspicious activity.
What needs improvement?
They should include XDR features in the solution. It would help us collect data metrics from different endpoints. Thus, we could identify the origin of the ransomware or malware attacks within the network. Also, they should include sandboxing features.
For how long have I used the solution?
We have been using the solution for three years.
What do I think about the stability of the solution?
I rate the solution's stability an eight.
How was the initial setup?
The solution's deployment process involves configuring the network and changing the active directory. The most challenging part here is opening specific ports and blocking or allowing certain services through firewall settings.
What's my experience with pricing, setup cost, and licensing?
The solution's cost is reasonable compared to other vendors.
What other advice do I have?
I suggest a cost versus-benefit analysis to others while looking for EDR and XDR solutions. Considering the advantages of Kaspersky, it offers patch and vulnerability management. It takes time to deploy initially. But once you deploy it correctly, you will get a lot of features. I rate it as an eight.
Which deployment model are you using for this solution?
On-premises
Disclosure: I am a real user, and this review is based on my own experience and opinions.
Network Administrator at Chase Up
Impressive firewall options, great filtering and blocking
Pros and Cons
- "The solution does a good job of filtering and blocking unusual traffic."
- "The system can be heavy, slowing down performance."
What is our primary use case?
We use EDR on our Windows servers, desktops and laptops. Our use case is for security, file scanning and to prevent data loss.
What is most valuable?
The firewall options are impressive, the solution does a good job of filtering and blocking unusual traffic. It's very easy to use, easy to deploy, and easy to operate.
What needs improvement?
No product is perfect and I think the stability could be improved a little. I'd also like to see performance improvement as the system can be heavy, slowing down our computers, and things don't always work smoothly. Performance could be improved.
For how long have I used the solution?
We've had a license with Kaspersky for six years.
What do I think about the stability of the solution?
The solution is stable.
What do I think about the scalability of the solution?
The solution is scalable. We have around 700 users in the company.
How was the initial setup?
EDR is deployed from the server, it's an easy and manageable process. It's a matter of the system administrator running the profile from the server.
What's my experience with pricing, setup cost, and licensing?
We have a three-year license. It was initially very reasonably priced but we are based in Pakistan and we are not doing well against the dollar so the price has increased significantly.
What other advice do I have?
I've recommended this solution to many colleagues. I think Kaspersky is a reliable and stable solution.
I rate this solution nine out of 10.
Which deployment model are you using for this solution?
On-premises
Disclosure: I am a real user, and this review is based on my own experience and opinions.
General Manager IT at Chase Up
Secure port capabilities, high level threat detection technology, and useful support tools
Pros and Cons
- "The most valuable features of Kaspersky Endpoint Detection and Response are the threat detection technologies, and activity monitoring and support tools. Additionally, the port and USB security, and antivirus are effective."
- "The installation process could be more streamlined."
What is our primary use case?
We are using Kaspersky Endpoint Detection and Response for protecting our clients and our systems from digital threats. For example, our operating systems.
What is most valuable?
The most valuable features of Kaspersky Endpoint Detection and Response are the threat detection technologies, and activity monitoring and support tools. Additionally, the port and USB security, and antivirus are effective.
What needs improvement?
The installation process could be more streamlined.
For how long have I used the solution?
I have been using Kaspersky Endpoint Detection and Response for approximately four years.
What do I think about the stability of the solution?
Kaspersky Endpoint Detection and Response is stable.
What do I think about the scalability of the solution?
The solution is scalable. We are able to upgrade modules and we have not had any problems.
How was the initial setup?
The initial setup of Kaspersky Endpoint Detection and Response is simple but the time of installation could be quicker. We set up our Kaspersky Endpoint Detection and Response server and our clients installed it on their end.
What's my experience with pricing, setup cost, and licensing?
We have been satisfied with the license of the solution.
What other advice do I have?
I rate Kaspersky Endpoint Detection and Response a nine out of ten.
Disclosure: My company has a business relationship with this vendor other than being a customer: Partner
Management Trainee Supply Chain Excellence at fatima group
Reliable and straightforward to set up but needs to cover more devices
Pros and Cons
- "It is easy to manage."
- "If it covered more products, it would improve the XDR."
What is our primary use case?
We are using it to protect our user end. For the server-side, we are using Trend Micro.
What is most valuable?
It is easy to manage.
The initial setup is simple.
It is stable.
We have local support available to us.
What needs improvement?
I could be covering more devices, for example, the XDR. If it covered more products, it would improve the XDR.
For how long have I used the solution?
I've been using the solution for three to four years.
What do I think about the stability of the solution?
It is stable and reliable.
We are not facing any major issues regarding the protection of the endpoints. There are no bugs or glitches. It doesn't crash or freeze.
What do I think about the scalability of the solution?
Around 2,000 people use the solution. We do not plan to increase usage.
How are customer service and support?
We have a local company here in Pakistan that we get support from.
Which solution did I use previously and why did I switch?
We also use Trend Micro.
How was the initial setup?
The initial implementation process is easy and very straightforward. It's not overly complex. It only takes one to two days to handle the complete deployment.
What's my experience with pricing, setup cost, and licensing?
I'm not sure about how the licensing works. It may be per user. I'm not certain.
What other advice do I have?
I'm not sure which version of the solution we're using. I don't have that information.
I'm not directly using this Kaspersky solution. The other team is managing the solution, and that's why I don't have much personal experience. I do not manage it directly.
I'd recommend the solution to other users and companies.
I'd rate the product seven out of ten.
Which deployment model are you using for this solution?
On-premises
Disclosure: I am a real user, and this review is based on my own experience and opinions.
Product Manager at a comms service provider with 51-200 employees
A useful solution for protection, but it sometimes consumes a lot of system resources
Pros and Cons
- "The content filtering options are good."
- "It consumes many system resources."
What is our primary use case?
We use this solution mainly for protection, but we also have another solution we use for this.
What is most valuable?
The content filtering options are good.
What needs improvement?
It consumes many system resources, and there should be more EDR details.
For how long have I used the solution?
We have been using this solution for one year, and we are using the new version. It is deployed on-premises.
What do I think about the stability of the solution?
The solution is stable. Regarding detection, sometimes it consumes a lot of system resources.
What do I think about the scalability of the solution?
It is scalable. We have not scaled it yet, but our customers use Kaspersky Endpoint Detection and Response, and they have not had any issues scaling.
How are customer service and support?
We have not needed technical support. Instead, we deal with our cases and use Google to solve our problems.
Which solution did I use previously and why did I switch?
We prefer CrowdStrike to Kaspersky.
How was the initial setup?
It is not easy to set up. I believe the cloud version is easier to implement. We only deployed it on three computers, which didn't take much time. It was a bit of a struggle.
What's my experience with pricing, setup cost, and licensing?
It is cheap compared to CrowdStrike. It costs $20 per user.
What other advice do I have?
I rate this solution a seven out of ten. Regarding advice, Kaspersky should work with a signature-less solution only because it's better and does not consume too many system resources. They should not use indicators because some new next-generation antivirus vendors are currently not using IOCs. Instead, they use IOA, which is better. In addition, Kaspersky could be GDPR compliant.
Disclosure: I am a real user, and this review is based on my own experience and opinions.
Founding Partner at Xmartlab
Easy to manage, simple to set up, and expands well
Pros and Cons
- "The solution is scalable."
- "I would like better integration with other products."
What is our primary use case?
Clients are using this product to protect their desktops and laptops and to respond adequately when some vulnerabilities are detected as exploited.
What is most valuable?
We like the automated change of policies, given some scenarios. It is wonderful. You can rely upon your automated policies being activated if you need to. If you are under attack, or maybe some ransomware is spreading across your network, and you want your endpoints to become more secure given that threat, you get good protection. It's maybe the most important feature of Kaspersky Endpoint Detection and Response.
It's easy to set up.
The solution is scalable.
It's easy to manage and monitor the endpoints.
What needs improvement?
I would like better integration with other products. For example, I would like to have another view in SolarWinds or Datadog. Integration is not easy. I'd like it to be simplified.
We do not need any additional features.
The business plan maybe could be improved. They need to change the way they sell the product. They could be better friends with their partners. A partner is not somebody who sells this product. It is usually somebody who manages this product for the end user or the end company that is predicting the assets. The role that a partner plays in this interaction is very important. They need to work to build that relationship to benefit the solution and the client. They should also offer better margins.
For how long have I used the solution?
We've been dealing with the solution since 2019. It's been around three years.
What do I think about the stability of the solution?
It is a very stable solution. The most important thing about stability is not if the product runs or stops running, it is the time window you need to be prepared for new threats. They offer good protection, which makes the product very stable. Kaspersky's usually the first in distributing the indicators of compromise of the newest threats.
What do I think about the scalability of the solution?
The solution can scale well. It is easy to deploy and manage a large number of endpoints running just a few tasks. You are very aware of what is happening with the threats in your institution. There's a lot of visibility.
How are customer service and support?
Technical support can be improved. When you need support, when you call for support, and you present the evidence in a ticket, they always come back with more questions. They ask you for more evidence, and you have to go and collect it. You get to a point where you want to say, "Oh, just forget it, I don't need more support from you. You always ask me for more, more, more data."
I would like to see a solution. I don't want to do all of this legwork and not get any help.
How would you rate customer service and support?
Neutral
How was the initial setup?
The console is very easy. The deployment is easy as well. If you have an active directory or something like that, or if you have previously installed the Kaspersky network agent, it's quite simple. If not, even if you don't have any of those, maybe if you have some software policy to deploy over your assets, it should also be easy. Otherwise, you have to go endpoint by endpoint running the agents. That can take time.
The maintenance is pretty straightforward. If I have 5,000 endpoints, I need one engineer to handle the console installation for, maybe a week's worth of work. The endpoints could take two or three people to deploy in the company. If you can centralize the deployment, it will only take two or three days for one engineer to handle the setup.
What was our ROI?
I don't have any details in regard to ROI.
What other advice do I have?
We are a partner of Kaspersky.
We always work with the latest version of the solution.
It's a wonderful product if you have a proper partner to handle it. If you let the product run by itself, by itself, it won't protect you. You need someone on this product with a hand on it every day, checking policies and seeing how it works. That's the only way to be protected from threats.
I'd rate the solution nine out of ten.
Disclosure: My company has a business relationship with this vendor other than being a customer: Partner
Buyer's Guide
Download our free Kaspersky Endpoint Detection and Response Expert Report and get advice and tips from experienced pros
sharing their opinions.
Updated: October 2024
Product Categories
Endpoint Detection and Response (EDR)Popular Comparisons
Microsoft Defender for Endpoint
SentinelOne Singularity Complete
Cortex XDR by Palo Alto Networks
IBM Security QRadar
Intercept X Endpoint
Check Point Harmony Endpoint
Trellix Endpoint Security (ENS)
Bitdefender GravityZone EDR
Trellix Endpoint Detection and Response (EDR)
Buyer's Guide
Download our free Kaspersky Endpoint Detection and Response Expert Report and get advice and tips from experienced pros
sharing their opinions.
Quick Links
Learn More: Questions:
- What is the biggest difference between EPP and EDR products?
- What is the difference between EDR and traditional antivirus?
- What is your recommendation for a 5-star EDR with low resource consumption for a financial services company?
- Which is the best EDR for a logistics company with 500-1000 employees?
- What is the best EDR or XDR product for a company with 9000 employees?
- What to choose: an endpoint antivirus, an EDR solution or both?
- Do we need to use both EDR and Antivirus (AV) solutions for better protection of IT assets?
- How does EternalBlue work?
- What are the best on-premise Endpoint Security solutions for a Tech Services company with 10,000 employees?
- What is Mimikatz?