Information Security Manager at a retailer with 10,001+ employees
Real User
Top 10
2021-05-11T18:35:54Z
May 11, 2021
Proactive: Patch Mgmt Program, Continuos Vulnerability Scanner (search and fix), Monitoring by SOC/NOC or others secutiry tools (like a HIDS or NIDS components). Reactive: Incident Mgmt Plans categorized and specific by typication, BCP (complete Business Continuity Plan not only Disaster Recover Plans) and, mainly, verified backups tapes/medias (if possible, stored out of company, with continuous restore tests).
there are different solutions for ransomware these days. Best i have found is trendmicro end point protection for end users since it has a feature of stopping the attack or as soon as it says changes in files , it starts making a back up copy of it , so even if you get infected by ransomware, you still have a good chance to recover your data.
Find out what your peers are saying about Microsoft, SentinelOne, CrowdStrike and others in Endpoint Protection Platform (EPP). Updated: February 2025.
Endpoint Protection Platform (EPP) safeguards endpoints by preventing malware, detecting malicious activities, and providing a centralized management system.
Modern EPPs are designed to address the growing threat landscape with features like real-time monitoring, machine learning-based threat detection, and integration with other security tools. They offer comprehensive protection that includes antivirus, anti-malware, and endpoint detection and response capabilities.
What features...
Install all security updates, create an incident response plan, use whitelisting to the maximum.
Look at the ACSC Essential Eight. If you can implement all of these then you will be highly unlikely to get hit by ransomware.
Proactive: Patch Mgmt Program, Continuos Vulnerability Scanner (search and fix), Monitoring by SOC/NOC or others secutiry tools (like a HIDS or NIDS components).
Reactive: Incident Mgmt Plans categorized and specific by typication, BCP (complete Business Continuity Plan not only Disaster Recover Plans) and, mainly, verified backups tapes/medias (if possible, stored out of company, with continuous restore tests).
there are different solutions for ransomware these days. Best i have found is trendmicro end point protection for end users since it has a feature of stopping the attack or as soon as it says changes in files , it starts making a back up copy of it , so even if you get infected by ransomware, you still have a good chance to recover your data.
IPS & Blocking unwanted extensions at gateway level.
First - Use Trend Micro
Second - Apply a Backup System similar to TIME MACHINE Apple.
www.cynet.com