We are not a very large organization, so scalability is not relevant to us. After the first installation, we do not need people to maintain the tool. I will recommend the solution to others. Overall, I rate the product an eight out of ten.
Kaspersky EDR enhances response capabilities by capturing malware or problematic websites on endpoints and providing alerts for quick action to resolve issues. Kaspersky EDR offers features for threat hunting and vulnerability scanning on endpoints. It identifies unapplied security patches and provides a reporting tool for managing patch deployments efficiently. Kaspersky EDR offers good integration capabilities, particularly with services like Office 365, which is beneficial for our organization. However, there might be some limitations when integrating with other tools such as NetSuite and Monday.com. Improving integration with tools like SolarWinds could enhance overall cybersecurity management. Looking ahead, prioritizing integration with cloud services would be advantageous as organizations increasingly rely on cloud-based solutions. I would recommend Kaspersky EDR, especially for organizations operating in the China market. It is a convenient tool that provides effective security solutions, particularly helpful in addressing firewall issues commonly faced in the Chinese market. However, for companies outside of China not facing similar market restrictions, it might be good to consider other solutions as well. Overall, I would rate Kaspersky EDR as a seven out of ten. It is a useful choice for our organization, although not perfect. It requires a certain skill set to manage security nodes effectively. However, it is relatively easy to use compared to other EDR tools, making it a safer option for less experienced users.
My recommendation will depend on the number of users and the features other competitors offer. We are partners. Overall, I rate the tool a seven out of ten.
Learn what your peers think about Kaspersky Endpoint Detection and Response. Get advice and tips from experienced pros sharing their opinions. Updated: December 2024.
Assistant General Manager at a financial services firm with 5,001-10,000 employees
Real User
Top 20
2023-11-08T11:45:08Z
Nov 8, 2023
Our operation team has used Kaspersky. We are involved in it as a part of my cybersecurity or system audit. Overall, I rate the solution an eight out of ten.
For using Kaspersky, the first thing is the features it offers, like locking USB, the use cases, and the scalability. It is easily scalable in any type of environment, from small-sized organizations to larger ones with 5,000 or up to 10,000 users. It is cost-effective in terms of services and features compared to other more expensive EDR solutions like CrowdStrike and Trend Micro. So, these are the two things I would recommend if any organization wants to deploy it in their environment. Overall, I would rate the solution a seven out of ten.
I would tell those planning to use the solution that Kaspersky Endpoint Detection and Response is a good product. I rate the overall solution a nine out of ten.
To those planning to use the solution, I can say that it provides various specific customization and offers many shields for protection, because of which there is a need to be specific about the resources you want to save. If you have a SIEM solution, then you should be specific when integrating Kaspersky with that SIEM solution and the best logs. The product is not friendly, and it's not for end users. The product is meant for engineers and security engineers owing to its complex nature. I rate the overall tool a ten out of ten.
If Kaspersky EDR is working fine in another environment and for other people, I would say they should stick with it. Kaspersky is a good product, and I honestly believe it is a very good product overall. Unfortunately, it didn't work well in my environment, but that might just be my bad luck. If you look at the reviews, especially in the Middle East, you'll see that Kaspersky has received very positive feedback. Overall, I would rate the solution an eight out of ten. It's a nice product and genuinely a very good one. Kaspersky EDR was super and fulfilled my needs, especially on-premises. It has everything, like application control, device control, web filtering control, and much more. Any Kaspersky product you take, it comes with certain default features that are not available in SentinelOne. To get additional features, you need to switch from Core to Control and then to Complete versions. In my experience, it was fantastic and worked very well in my environment. I didn't face any issues, and I would still love to use this product if they had supported me in my case. Unfortunately, that didn't happen, and I was disappointed as I never expected to receive no support from Kaspersky.
Kaspersky Endpoint Detection and Response provides robust malware detection, endpoint security, integration with SIEM, control of USB devices, and behavior analysis, deployed on servers, mobile devices, and laptops.
Kaspersky Endpoint Detection and Response aids organizations in scanning environments, blocking sites, handling data transfers, and offering visibility into quarantine systems. Utilizing features such as encryption, machine learning analysis, caching, and automation,...
I fully recommend Kaspersky EDR to others. I'd rate the solution nine out of ten.
We are not a very large organization, so scalability is not relevant to us. After the first installation, we do not need people to maintain the tool. I will recommend the solution to others. Overall, I rate the product an eight out of ten.
Kaspersky EDR enhances response capabilities by capturing malware or problematic websites on endpoints and providing alerts for quick action to resolve issues. Kaspersky EDR offers features for threat hunting and vulnerability scanning on endpoints. It identifies unapplied security patches and provides a reporting tool for managing patch deployments efficiently. Kaspersky EDR offers good integration capabilities, particularly with services like Office 365, which is beneficial for our organization. However, there might be some limitations when integrating with other tools such as NetSuite and Monday.com. Improving integration with tools like SolarWinds could enhance overall cybersecurity management. Looking ahead, prioritizing integration with cloud services would be advantageous as organizations increasingly rely on cloud-based solutions. I would recommend Kaspersky EDR, especially for organizations operating in the China market. It is a convenient tool that provides effective security solutions, particularly helpful in addressing firewall issues commonly faced in the Chinese market. However, for companies outside of China not facing similar market restrictions, it might be good to consider other solutions as well. Overall, I would rate Kaspersky EDR as a seven out of ten. It is a useful choice for our organization, although not perfect. It requires a certain skill set to manage security nodes effectively. However, it is relatively easy to use compared to other EDR tools, making it a safer option for less experienced users.
My recommendation will depend on the number of users and the features other competitors offer. We are partners. Overall, I rate the tool a seven out of ten.
Overall, I rate the solution an eight out of ten.
I rate the product a six out of ten.
Our operation team has used Kaspersky. We are involved in it as a part of my cybersecurity or system audit. Overall, I rate the solution an eight out of ten.
For using Kaspersky, the first thing is the features it offers, like locking USB, the use cases, and the scalability. It is easily scalable in any type of environment, from small-sized organizations to larger ones with 5,000 or up to 10,000 users. It is cost-effective in terms of services and features compared to other more expensive EDR solutions like CrowdStrike and Trend Micro. So, these are the two things I would recommend if any organization wants to deploy it in their environment. Overall, I would rate the solution a seven out of ten.
I would tell those planning to use the solution that Kaspersky Endpoint Detection and Response is a good product. I rate the overall solution a nine out of ten.
I rate the solution an eight out of ten.
To those planning to use the solution, I can say that it provides various specific customization and offers many shields for protection, because of which there is a need to be specific about the resources you want to save. If you have a SIEM solution, then you should be specific when integrating Kaspersky with that SIEM solution and the best logs. The product is not friendly, and it's not for end users. The product is meant for engineers and security engineers owing to its complex nature. I rate the overall tool a ten out of ten.
If Kaspersky EDR is working fine in another environment and for other people, I would say they should stick with it. Kaspersky is a good product, and I honestly believe it is a very good product overall. Unfortunately, it didn't work well in my environment, but that might just be my bad luck. If you look at the reviews, especially in the Middle East, you'll see that Kaspersky has received very positive feedback. Overall, I would rate the solution an eight out of ten. It's a nice product and genuinely a very good one. Kaspersky EDR was super and fulfilled my needs, especially on-premises. It has everything, like application control, device control, web filtering control, and much more. Any Kaspersky product you take, it comes with certain default features that are not available in SentinelOne. To get additional features, you need to switch from Core to Control and then to Complete versions. In my experience, it was fantastic and worked very well in my environment. I didn't face any issues, and I would still love to use this product if they had supported me in my case. Unfortunately, that didn't happen, and I was disappointed as I never expected to receive no support from Kaspersky.