What is your recommendation for a 5-star EDR with low resource consumption for a financial services company?

I highly recommend SentinelOne. It is extremely effective and has very low resource usage. 

Hi Fernando,

I’m very happy with Kaspersky. Good value  for your money. Good support when you need it. The console gives you more than only antivirus, but also patch management for 3th party software and so many more. And i believe the best anti ransomware in the world.

With kind regards,

Hi Fernando,

Nice to meet you! 
From Sofistic we can help you with SOC and Crowdstrike EDR!

The best EDR is one you can afford and one that comes with a company that can provide round-the-clock support and management, such as Ace Cloud Hosting, when it comes to using it for some financial services.

Suggested Reading: Why is EDR Crucial for Financial Industry? (acecloudhosting.com)

You should choose a company that provides a managed EDR solution so that you have somebody always managing your EDR. The company should be able to provide you with remote support and maintenance. Choosing a managed EDR is important because it reduces the cost of labor and saves you time. The managed EDR is also always kept up to date, so when you have a problem, they can fix it quickly and without any downtime.

I recommend you managed EDR service from Ace Cloud Hosting. The best part is that they will provide 24/7 support with their managed SOC team active 24*7 and regular security fixes and updates. Overall, it's the best EDR solution I've ever used.

Trend Micro Vision One! The XDR solution is already matured compared to last year and can be correlated with other information within an environment.

SentinelOne is the best solution for that. 

A minimum of training and administration, easy to manage and deploy, more secure than most of its competitors, and very low consumption of resources.

I highly recommend Bitdefender Gravityzone Business Security Enterprise. 

Low resource usage, policy management supports inheritance, option to set a power user mode password (to temporarily disable on an endpoint). 

Relay machines can be optionally used to have a few or one relay machine(s) fetch the updates and then forward to all endpoints to reduce update traffic, instead of all machines fetching updates; it's easy to learn/use.

Hi @Fernando Elias Gonzalez Hernandez, ​

You can check RSA Netwitness Endpoint if your focus is low resource impact, deep use of machine learning and great forensic tools. Plus, you can integrate the ecosystem with another visibility product in the future (net and logs).

If you are looking for a stand-alone solution (full cloud mgt), I recommend SentinelOne too.

SentinelOne or Watchguard EDPR Both provide SMB to corporate level support and management. 

SentinelOne has an icredible record. We use Watchguard alongside their other products, e.g. Authpoint.

I strongly recommend Bitdefender MDR. 

Bitdefender is rated #1 on the EPP side by AV-comparatives testing. 

And Bitdefender MDR is tested in the top rank on the MDR side by Mitre Attack Framework testing. 

In this day and age (with both AMD and Intel having very good performance even on the I3 low-end side), I would prioritize efficacy over system impact. 

Bitdefender only really has an impact when running a full scan. 

In normal operation (even with all of the modules running) the impact is negligible. Bitdefender Gravity Zone with MDR, I think, is the best there is over Trend Micro/Sophos/Crowdstrike.

A good option is Darktrace as it meets both criteria.

---

Una buena opción es DARKTRACE pues cumple con los dos criterios.

Most companies I have spoken to are looking to purchase solutions from CrowdStrike.