IT Cyber Security Specialist at Heirs Technologies
Real User
Top 20
2024-07-10T11:32:00Z
Jul 10, 2024
They need to improve the dashboard by adding a dedicated executive view. This view should provide executives with a clear overview of what's happening. Also, the UI needs to be more user-friendly, especially for entry-level employees who are not technical. It should include clear annotations explaining what each field or option does and the implications of enabling certain features. This could be similar to the guidance when setting up Microsoft Bitdefender on Azure AD, where the app provides detailed explanations of policies and their effects.
Network & Security Team Lead at CENGN - (Centre of Excellence in Next Generation Networks)
Real User
Top 20
2024-06-12T14:54:23Z
Jun 12, 2024
Sometimes, the platform takes a while to allow connectivity on the Mac endpoints. Establishing a connection to the server and ensuring all the local machine policies are in place is time-consuming. Once all the pre-flight checks are done, access to the system is given. Sometimes, this process takes longer, and that's not a good use of my time, especially since I use a MacBook. However, I noticed that Windows users don't have that problem.
Solutions Specialist at a tech services company with 11-50 employees
Reseller
Top 20
2024-01-09T08:04:25Z
Jan 9, 2024
The improvement of the product is required since I am in the cybersecurity industry, where there are a lot of antivirus solutions that offer just a few advantages or have some disadvantages compared to other products. I want Bitdefender GravityZone EDR to offer better antivirus technology and additional features, especially in areas like DLP. The product fails to provide guides to its users. In future releases of the product, I want the tool to offer some guides and hands-on training that can guide users who want to learn more about the product without the vendor's help. A guide for the product can help you learn about the tool at your own pace and show you the options you can use in the solution.
The features in Bitdefender GravityZone EDR are what our company's customers are happy with and actually want. I don't see my company's customers requesting more from Bitdefender GravityZone EDR since they get what they want from the product. Bitdefender GravityZone EDR doesn't have an official office in Saudi Arabia, which is important if the vendor wants to gain or be closer to their customers. Bitdefender GravityZone EDR needs to have a legal team with technical support, a sales manager to cover the region, a pre-sales representative, a technical account manager, a channel manager, and a good team in Saudi Arabia.
Learn what your peers think about Bitdefender GravityZone EDR. Get advice and tips from experienced pros sharing their opinions. Updated: November 2024.
IT Compliance Engineer at a energy/utilities company with 51-200 employees
Real User
Top 20
2023-09-29T09:23:00Z
Sep 29, 2023
I believe it would be better if Microsoft Defender offered features similar to what it does. I appreciate how Defender integrates with Exchange, providing advanced threat protection. In comparison, Bitdefender primarily focuses on endpoint security, serving as a basic line of defense. There's room for improvement in terms of protection. That's my primary concern.
Application Control should be available on the cloud. The product should provide asset management and DLP features in future releases. We have discussed the same with our account manager from Bitdefender. Vendors like Kaspersky are providing such features. DLP is one feature that people need along with an endpoint security solution. It's supposed to cater to the needs of government customers and mid-size businesses. We are looking for an integrated solution just like Kaspersky. Symantec is also providing DLP along with endpoint security. Even Sophos has started providing DLP features.
We would like to see password management integrated into the solution because I don't like having a third-party password management system. I don't like users using password management systems in their browsers. I would like to see a separate password management system. I would also possibly like to see a VPN system in the solution.
Bitdefender GravityZone Ultra should include more advanced features than their competitors in the market for the auto-detection of viruses and threats within the environment.
Information Technology Infrastructure Manager (Region 2 IT Manager) at a transportation company with 201-500 employees
Real User
Top 5
2023-05-10T20:41:00Z
May 10, 2023
Bitdefender GravityZone Ultra does have a ransomware remediation, and that's probably one of the areas where they don't highlight using it, especially in comparison to BullWall. Their ransomware remediation doesn't respond as fast as BullWall does. It's a little more delayed. Ransomware control needs to be improved. It's just a feature that needs to be updated and expanded upon. A functionality that I would like to see in the solution is user tracking since you already got all the reporting in there, tell me what sites were blocked, and they should tell me what sites were visited and how often they visit those sites. That would make it a great reporting tool. So, instead of going out and having everything go through a proxy server to track it, it's better just to do it for the EDR software since you're already tracking for blocking sites. It should be able to just give me everything.
The areas of Endpoint Detection and Response (EDR) and Extended Detection and Response (XDR) could benefit from improvement in terms of how problems are reported and displayed. The way the problems are presented and the information provided could be improved.
It is easily integrated with our controller. However, it's not directly integrated with it. When we took our system endpoints in our anti-directory, we did not see them in our different antivirus directory. Once we install the agent in it, it'll show that. It would be good if they directly integrate with our anti-directory, so whenever the endpoints come into our domain, we can directly install the agent through the web portal into the endpoint. If we could directly push the agent to the script, it'll be very good. We don't have to handle it manually. A new user might have issues with the initial setup. It's easier to handle if a person is knowledgeable. It would be ideal if they offered application patches.
Engineer at a educational organization with 5,001-10,000 employees
Real User
2022-07-25T15:56:39Z
Jul 25, 2022
The interface could be improved since we have some tasks that are not easily understandable, and it took us time to understand why it didn't work. However, the instrument itself has no particular problem.
If we're simply looking at endpoint monitoring, I think the problem is that your basic antivirus, your standard anti-virus, is woefully inadequate. If you think about small to medium-sized enterprises, my concern is that if they ask for guidance, they'll be told to turn on antivirus. They'd presumably get McAfee or Norton or something similar as an antivirus program. Then they'll probably be told to turn on their Microsoft Defender firewall and not do much else. That is a very dangerous position to be in, because, as we all know, phishing attacks are becoming increasingly sophisticated. They get past people's perimeter defenses, and the staff is deceived into clicking on them, putting them in danger. There are numerous techniques to consider. Small businesses can get a complete security package from me. It has six layers of security, including Bitdefender's antivirus and encryption, as well as interaction with a security operations center. There are more levels to it, but those three are critical since most antivirus programs, even those from businesses like Sophos and McAfee, and less so from Symantec, appear to have changed who they want to market to at the present. All of those firms are dreadfully short, whereas Bitdefender if you look at the marketing and blogs and technical stuff that Bitdefender releases on a daily basis, is far superior. Bitdefender is producing extremely high-quality threat intelligence. And if you look at Gartner's right-hand side of the Quadrant, Bitdefender is currently rated as their best endpoint security product, according to Gartner. The one thing I'd say about their complete MDR product is that it's too expensive, which is why I prefer to use an alternative SOC and integrate Bitdefender to a different SOC on their own. More integrations are always beneficial.
Head of Implementation and Security at a financial services firm with 1-10 employees
Real User
2021-12-15T16:01:00Z
Dec 15, 2021
The URL filtering features should be addressed. The installation capabilities should be improved, especially when new updates come out. Sometimes, installation requires one to get to the level of having to install the agents. The installation is not straightforward and should be easier to do.
Managed IT Services Provider at a tech services company with 1-10 employees
Real User
2021-10-04T10:05:36Z
Oct 4, 2021
When one designs for the cloud, the Windows client, no actual package is provided. This is an issue which should be addressed. The package must be downloaded and, when this is accomplished, it does an additional download. On certain older computers this can take a long while. This contrasts with the Mac version, which is very quick. There is a need to work on the deployment, when it comes to deploying to Windows machines with regards to downloading the size of the package. I suppose that the deployment could be faster, although this is not really a criticism, as this involves the design. There is always a difference in Windows and Mac architecture, so I would not count this as a complaint. It would be nice if the Windows deployment could be improved, although this does not result in any major difficulties.
Internal IT manager at a tech services company with 51-200 employees
Real User
2021-09-22T15:32:23Z
Sep 22, 2021
The only problem we have, and I don't know if maybe it's the package we bought, is that it lacks the parts of data protection and application blacklisting. I don't think we have that option on this package. Apart from that, we've been using it and we've been seeing the reports. We've had no issues so far. We're just missing the blacklisting and data protection features.
Director, Information Technology at a tech services company with 11-50 employees
Real User
Top 20
2021-07-04T10:21:03Z
Jul 4, 2021
The whole suite is unlike most AV consoles, which will inform you when there is an infection or threat, for some inexplicable reason Bitdefender does not do that. The most you will receive is an hourly update or possibly if there is an outbreak that affects 30% of your machines, an email. There is no real-time alerting to inform the user there was a potential attack that recently happened on their system. They could improve by having real-time reporting which is important. I have not had used the EDR portion of the solution to do any custom scripting to allow further advanced operations on the endpoints. From what I understand from reading the comments on reviews is that it is not particularly flexible in this regard. Sandbox Analyzer is a feature that comes as part of the Bitdefender GravityZone Ultra Suite. It will start automatically unless you want to manually submit something which I have rarely done. When the feature is in use I do not get a reading back from the analyzer right away, it lacks real-time functionality. For example, if I was executing an admin tool and it was blocked because the Sandbox Analyzer wants to look at it on my local machine, it might take 10 minutes before I can successfully then launch that application to use it. The time it takes to analyze the software is too long. We are busy people and we end up just turning off the detection to allow the use of the program.
It's not quite so easy to use, but it's good enough and powerful. Using this product requires quite a bit of training, which is hard to get. If it were easier to use and there were more training available then it would be helpful.
We don't deal with very large organizations. We stay as far away from active directory and combined network typologies, as much as we possibly can. The way I explain it is we don't build our houses out of straw, we don't build our houses out of wood. Each user machine that piggybacks builds a stone house. We've cloud migrated everybody, however, it did not happen generically. We've used Google Enterprise or Box Enterprise, so good stuff. AES-256 at rest and AES-128 in transit. We only do scans on GravityZone covered machines via our contemporary APIs. We close every hole we can find. With people who still have servers, whether they're physical or virtual or cloud, and they're still active directory, and they're still 100% Microsoft shops, I've heard them complain. However, I don't care as it doesn't affect any of my clients. For many, the problems come mostly when they start tweaking or short-cutting - particularly for patch management. A lot of admins will tend to bundle work that we don't think should be bundled, however, they tend to due to the fact that they're underfunded and undermanned. They've got to get all the patches up. They've got to get all the updates done. Therefore, they tend to tweak group policies associated with the active directory. Some of those customizations can create potential security holes. GravityZone is the only one with the heuristic model, the simulator. We've seen where a thing may pass the script desk, it may pass the node and snippet test, however, it fails the heuristic test. That's where it launches a virtual machine in the high memory and lets the thing do whatever it's going to do, and then looks for where it goes. Of course, a lot of these things then go to the approval area as that's what the admin intended. However, then they get into a bit of a problem with GravityZone as it doesn't want them to do that. GravityZone works fine if you follow best practices in the other areas of your deployments. If you're kind of cheating or cutting corners, GravityZone isn't going to be mean to you, however, it may give you grief.
The only issue an end user might have is in the case where a website has some kind of monitoring software included, where they want to track use, and it might unnecessarily block the site for the user. In that event, the user would contact us and we can 'white list' the site for them enabling them to use it.
I would like to see the capability for remote installation of third party applications added( Like installing WinRar MS Office etc..) , and Firewall for servers.
CTO at a tech services company with 11-50 employees
Real User
2020-07-13T06:55:00Z
Jul 13, 2020
The tech engineers don't complain about much. It's solid. My biggest thing is that I want to have more than one option for my clients. The software itself is solid. It would be better if it was more of a real-time solution, like SentinelOne. The one thing that holds me back on the SentinelOne side is that I can blacklist websites and stuff like that, but it's not as granular as Bitdefender. With Bitdefender, I feel like I have more control over what I can whitelist and blacklist. Bitdefender is not designed to work in real-time. It's a signature-based platform, it's going to work signature-based in that there are times that it has to get updates. For example, if I'm managing a hundred machines with Bitdefender and the staff is having internet issues or something, and Bitdefender does an update within a week, not all the machines are going to be up to date at the same time. I have it configured to run every day at a certain time but unfortunately, a lot of the people that use it have really bad internet and I can't run it during work hours, I have to run it after hours and they shut their computers off. The first thing Bitdefender does is it goes and looks for signatures in the morning and then it runs the updates at night and then it runs scans at night as well. Sometimes it can go three, four, five days without any update. I've had some that go up to 27. The longest I've had was 32 days and it didn't even run one scan. I have a client in the Philippines and right now, because of COVID, they're all over the Philippines and in the provinces where they have a really bad internet connection, it's a struggle. I have to schedule with them. The internet is so bad that I have six people using phone data to work because internet companies don't even go that far out for them to have a stable internet connection. In those cases, I'm struggling a little bit with Bitdefender. With a regular office set up, it runs like clockwork. But with this new normal that we have right now, it's been a little bit complicated. That's why I'm looking to add Cylance. I have a demo with them soon.
Cybersecurity Analyst & System Engineer at Compucare Systems Inc
Reseller
2020-06-15T07:34:00Z
Jun 15, 2020
Bitdefender could improve their modules on the server. For example, Bitdefender doesn't have content filters or firewall modules on the server. It would be great if it had a networking module and a content filter module at the workstations. Because when you install it on a workstation and a server is totally different, the workstation has all the modules, firewalls, content filters, antivirus, anti-exploit, etc. But then the server has fewer features than the workstation. It has the anti-malware and the EDR, which is good because you can see the logs. It also has the device control so you can block USB's and whatever you need. But it doesn't have the content filter to see the anti-phishing, and it doesn't have the firewall inside to stop network attacks. This is something that could be improved.
Product Leader at a tech services company with 51-200 employees
Real User
2019-09-22T06:41:00Z
Sep 22, 2019
We have not had any major problems with Bitdefender, it seems to be quite good. There are some additional features that they can implement in the product. For example, a remote wipe option or a geo-tracking for the laptop. That may not be the area they are targeting, but it would be useful. They were working on the encryption management for laptops, and if they complete it then it would be helpful.
Channel Manager at a tech services company with 11-50 employees
Reseller
2019-07-04T07:00:00Z
Jul 4, 2019
Having better descriptions or larger headings that will help you navigate through the to the ISP is needed. It needs to be a bit easier, a bit more intuitive. It would also be nice if we could move devices between companies.
Information technologies at a financial services firm with 11-50 employees
Real User
2019-06-26T05:25:00Z
Jun 26, 2019
We are having trouble on the server side. But also on the endpoint side. For example, specifically on my computer, I couldn't run it, so I had to remove the program. I'm not using endpoint security for now, especially not Bitdefenders right now. We find it's making the machines run slow. We're also having problems in the service groups. When we run GravityZone it suddenly goes very slowly. Some processes are bad and we can't use some features, so we had to uninstall some products from the service of some endpoint devices. We are using about 2000 endpoints and 2000 servers. They seem to have problems installing for the client. We can't seem to find support when we do an install. Uninstalling it is a problem as well. Recently, I tried to uninstall from my computer and when I tried to deploy it, it was hard for me to uninstall it. I have found some tools, but it was really hard to remove it with them too. It must be optimized in my opinion. Because it makes the machine very slow. In the past, we were using ESET NOD32. It was very good, it was not making the machine slow. It was normal. The machine was fast when I'm used ESET, but when I started using Bitdefender it made my computer very slow. It's not just me. My colleague is complaining that the machines are becoming very slow after using Bitdefender. They should make uninstalling easier and improve the service side, but also make it removable on demand locally. It needs to be removable from the local service, not the cloud.
Security Technician at a government with 1,001-5,000 employees
Real User
2019-06-26T05:25:00Z
Jun 26, 2019
The solution can be improved by being able to pull up the localization key map of the user. Also, to be more international, not just American compliant.
Owner at a tech services company with 11-50 employees
Reseller
2019-05-15T05:27:00Z
May 15, 2019
The pricing should be improved. The user interface has been improved on a yearly basis. The key issue is that they need to look at their pricing. Bitdefender is very productive because since we started selling Bitdefender for the past ten years, we've had almost about six different revisions. Every year and every six months there are improvements in their products, based on feedback, customer needs, changes in technology, and so on. For example, people were talking about encryption, so today you have GravityZone that has the ability to perform disc encryption. Disc encryption is done to ensure that your disc isn't attacked. Clients were requesting for endpoint detection EDR, which right now they have been able to incorporate. At any point in time, they have always been improving. Every six months there are new features. Every three months new features come in to address the needs of these customers. Bitdefender has consistently been very pro-active in virtually all the places we've installed. We ask our clients if they have any issues with the product. All of them say that it's very easy to install and to understand and that they don't have any problems with it. Any global requirements are constantly incorporated. Our clients want to see some intelligence built into reporting but they saw that most antivirus solutions don't do analytics. Bitdefender has acquired a new company that does analytics so the analytics software gets input from the antivirus then it is able to correlate and give you the analytics that are required.
Datacenter Engineer at a university with 501-1,000 employees
Real User
2019-03-19T10:11:00Z
Mar 19, 2019
There is room for improvement in the communication between servers and endpoints. The performance there needs to be much better. When we install endpoints and they communicate with the appliance server, we notice a drop in endpoint performance. The endpoint automatically connects and the policies are applied to the endpoint but the performance does not meet our expectations. In terms of additional features, I would like to see a remote desktop for installed endpoints so administrators can see what is on a user's screen or what a user is doing. A remote desktop between the server and the endpoints would be a useful feature in Bitdefender.
Bitdefender GravityZone Ultra is an endpoint security solution that offers protection against even the most elusive cyber threats. The solution provides a full range of security capabilities, including threat detection, pre- and post- compromise visibility, alert triage, automatic response, advanced search, investigation, and more. It is designed with a single agent/single consoler architecture, is cloud-native, and also supports on-premises deployments.
Bitdefender GravityZone Ultra...
They need to improve the dashboard by adding a dedicated executive view. This view should provide executives with a clear overview of what's happening. Also, the UI needs to be more user-friendly, especially for entry-level employees who are not technical. It should include clear annotations explaining what each field or option does and the implications of enabling certain features. This could be similar to the guidance when setting up Microsoft Bitdefender on Azure AD, where the app provides detailed explanations of policies and their effects.
Sometimes, the platform takes a while to allow connectivity on the Mac endpoints. Establishing a connection to the server and ensuring all the local machine policies are in place is time-consuming. Once all the pre-flight checks are done, access to the system is given. Sometimes, this process takes longer, and that's not a good use of my time, especially since I use a MacBook. However, I noticed that Windows users don't have that problem.
The stability must be improved.
The improvement of the product is required since I am in the cybersecurity industry, where there are a lot of antivirus solutions that offer just a few advantages or have some disadvantages compared to other products. I want Bitdefender GravityZone EDR to offer better antivirus technology and additional features, especially in areas like DLP. The product fails to provide guides to its users. In future releases of the product, I want the tool to offer some guides and hands-on training that can guide users who want to learn more about the product without the vendor's help. A guide for the product can help you learn about the tool at your own pace and show you the options you can use in the solution.
The features in Bitdefender GravityZone EDR are what our company's customers are happy with and actually want. I don't see my company's customers requesting more from Bitdefender GravityZone EDR since they get what they want from the product. Bitdefender GravityZone EDR doesn't have an official office in Saudi Arabia, which is important if the vendor wants to gain or be closer to their customers. Bitdefender GravityZone EDR needs to have a legal team with technical support, a sales manager to cover the region, a pre-sales representative, a technical account manager, a channel manager, and a good team in Saudi Arabia.
The solution is sometimes resource-intensive.
I believe it would be better if Microsoft Defender offered features similar to what it does. I appreciate how Defender integrates with Exchange, providing advanced threat protection. In comparison, Bitdefender primarily focuses on endpoint security, serving as a basic line of defense. There's room for improvement in terms of protection. That's my primary concern.
Application Control should be available on the cloud. The product should provide asset management and DLP features in future releases. We have discussed the same with our account manager from Bitdefender. Vendors like Kaspersky are providing such features. DLP is one feature that people need along with an endpoint security solution. It's supposed to cater to the needs of government customers and mid-size businesses. We are looking for an integrated solution just like Kaspersky. Symantec is also providing DLP along with endpoint security. Even Sophos has started providing DLP features.
We would like to see password management integrated into the solution because I don't like having a third-party password management system. I don't like users using password management systems in their browsers. I would like to see a separate password management system. I would also possibly like to see a VPN system in the solution.
Bitdefender GravityZone EDR needs to be more stable.
Bitdefender GravityZone Ultra should include more advanced features than their competitors in the market for the auto-detection of viruses and threats within the environment.
The solution's technical support in terms of communication could be provided in the Hebrew language.
Bitdefender GravityZone Ultra does have a ransomware remediation, and that's probably one of the areas where they don't highlight using it, especially in comparison to BullWall. Their ransomware remediation doesn't respond as fast as BullWall does. It's a little more delayed. Ransomware control needs to be improved. It's just a feature that needs to be updated and expanded upon. A functionality that I would like to see in the solution is user tracking since you already got all the reporting in there, tell me what sites were blocked, and they should tell me what sites were visited and how often they visit those sites. That would make it a great reporting tool. So, instead of going out and having everything go through a proxy server to track it, it's better just to do it for the EDR software since you're already tracking for blocking sites. It should be able to just give me everything.
They should improve the solution's patch management feature. Also, they should work on business model encryption.
The areas of Endpoint Detection and Response (EDR) and Extended Detection and Response (XDR) could benefit from improvement in terms of how problems are reported and displayed. The way the problems are presented and the information provided could be improved.
It is easily integrated with our controller. However, it's not directly integrated with it. When we took our system endpoints in our anti-directory, we did not see them in our different antivirus directory. Once we install the agent in it, it'll show that. It would be good if they directly integrate with our anti-directory, so whenever the endpoints come into our domain, we can directly install the agent through the web portal into the endpoint. If we could directly push the agent to the script, it'll be very good. We don't have to handle it manually. A new user might have issues with the initial setup. It's easier to handle if a person is knowledgeable. It would be ideal if they offered application patches.
The interface could be improved since we have some tasks that are not easily understandable, and it took us time to understand why it didn't work. However, the instrument itself has no particular problem.
There was a bit of a problem deploying. However, that was resolved. As it is now, we are at the stage of deploying it to the end-users.
I can't recall coming across an area that is lacking. Technical support could be faster and more responsive. The cost is a bit high.
If we're simply looking at endpoint monitoring, I think the problem is that your basic antivirus, your standard anti-virus, is woefully inadequate. If you think about small to medium-sized enterprises, my concern is that if they ask for guidance, they'll be told to turn on antivirus. They'd presumably get McAfee or Norton or something similar as an antivirus program. Then they'll probably be told to turn on their Microsoft Defender firewall and not do much else. That is a very dangerous position to be in, because, as we all know, phishing attacks are becoming increasingly sophisticated. They get past people's perimeter defenses, and the staff is deceived into clicking on them, putting them in danger. There are numerous techniques to consider. Small businesses can get a complete security package from me. It has six layers of security, including Bitdefender's antivirus and encryption, as well as interaction with a security operations center. There are more levels to it, but those three are critical since most antivirus programs, even those from businesses like Sophos and McAfee, and less so from Symantec, appear to have changed who they want to market to at the present. All of those firms are dreadfully short, whereas Bitdefender if you look at the marketing and blogs and technical stuff that Bitdefender releases on a daily basis, is far superior. Bitdefender is producing extremely high-quality threat intelligence. And if you look at Gartner's right-hand side of the Quadrant, Bitdefender is currently rated as their best endpoint security product, according to Gartner. The one thing I'd say about their complete MDR product is that it's too expensive, which is why I prefer to use an alternative SOC and integrate Bitdefender to a different SOC on their own. More integrations are always beneficial.
Areas for improvement would be performance and pricing.
The firewall security could be better.
The URL filtering features should be addressed. The installation capabilities should be improved, especially when new updates come out. Sometimes, installation requires one to get to the level of having to install the agents. The installation is not straightforward and should be easier to do.
We'd like to have an encryption model within it. They need to improve their encryption capabilities.
When one designs for the cloud, the Windows client, no actual package is provided. This is an issue which should be addressed. The package must be downloaded and, when this is accomplished, it does an additional download. On certain older computers this can take a long while. This contrasts with the Mac version, which is very quick. There is a need to work on the deployment, when it comes to deploying to Windows machines with regards to downloading the size of the package. I suppose that the deployment could be faster, although this is not really a criticism, as this involves the design. There is always a difference in Windows and Mac architecture, so I would not count this as a complaint. It would be nice if the Windows deployment could be improved, although this does not result in any major difficulties.
The only problem we have, and I don't know if maybe it's the package we bought, is that it lacks the parts of data protection and application blacklisting. I don't think we have that option on this package. Apart from that, we've been using it and we've been seeing the reports. We've had no issues so far. We're just missing the blacklisting and data protection features.
The whole suite is unlike most AV consoles, which will inform you when there is an infection or threat, for some inexplicable reason Bitdefender does not do that. The most you will receive is an hourly update or possibly if there is an outbreak that affects 30% of your machines, an email. There is no real-time alerting to inform the user there was a potential attack that recently happened on their system. They could improve by having real-time reporting which is important. I have not had used the EDR portion of the solution to do any custom scripting to allow further advanced operations on the endpoints. From what I understand from reading the comments on reviews is that it is not particularly flexible in this regard. Sandbox Analyzer is a feature that comes as part of the Bitdefender GravityZone Ultra Suite. It will start automatically unless you want to manually submit something which I have rarely done. When the feature is in use I do not get a reading back from the analyzer right away, it lacks real-time functionality. For example, if I was executing an admin tool and it was blocked because the Sandbox Analyzer wants to look at it on my local machine, it might take 10 minutes before I can successfully then launch that application to use it. The time it takes to analyze the software is too long. We are busy people and we end up just turning off the detection to allow the use of the program.
While the solution is secure, it could have better integration. Also, the support should be faster.
It's not quite so easy to use, but it's good enough and powerful. Using this product requires quite a bit of training, which is hard to get. If it were easier to use and there were more training available then it would be helpful.
We don't deal with very large organizations. We stay as far away from active directory and combined network typologies, as much as we possibly can. The way I explain it is we don't build our houses out of straw, we don't build our houses out of wood. Each user machine that piggybacks builds a stone house. We've cloud migrated everybody, however, it did not happen generically. We've used Google Enterprise or Box Enterprise, so good stuff. AES-256 at rest and AES-128 in transit. We only do scans on GravityZone covered machines via our contemporary APIs. We close every hole we can find. With people who still have servers, whether they're physical or virtual or cloud, and they're still active directory, and they're still 100% Microsoft shops, I've heard them complain. However, I don't care as it doesn't affect any of my clients. For many, the problems come mostly when they start tweaking or short-cutting - particularly for patch management. A lot of admins will tend to bundle work that we don't think should be bundled, however, they tend to due to the fact that they're underfunded and undermanned. They've got to get all the patches up. They've got to get all the updates done. Therefore, they tend to tweak group policies associated with the active directory. Some of those customizations can create potential security holes. GravityZone is the only one with the heuristic model, the simulator. We've seen where a thing may pass the script desk, it may pass the node and snippet test, however, it fails the heuristic test. That's where it launches a virtual machine in the high memory and lets the thing do whatever it's going to do, and then looks for where it goes. Of course, a lot of these things then go to the approval area as that's what the admin intended. However, then they get into a bit of a problem with GravityZone as it doesn't want them to do that. GravityZone works fine if you follow best practices in the other areas of your deployments. If you're kind of cheating or cutting corners, GravityZone isn't going to be mean to you, however, it may give you grief.
The only issue an end user might have is in the case where a website has some kind of monitoring software included, where they want to track use, and it might unnecessarily block the site for the user. In that event, the user would contact us and we can 'white list' the site for them enabling them to use it.
I would like to see the capability for remote installation of third party applications added( Like installing WinRar MS Office etc..) , and Firewall for servers.
The tech engineers don't complain about much. It's solid. My biggest thing is that I want to have more than one option for my clients. The software itself is solid. It would be better if it was more of a real-time solution, like SentinelOne. The one thing that holds me back on the SentinelOne side is that I can blacklist websites and stuff like that, but it's not as granular as Bitdefender. With Bitdefender, I feel like I have more control over what I can whitelist and blacklist. Bitdefender is not designed to work in real-time. It's a signature-based platform, it's going to work signature-based in that there are times that it has to get updates. For example, if I'm managing a hundred machines with Bitdefender and the staff is having internet issues or something, and Bitdefender does an update within a week, not all the machines are going to be up to date at the same time. I have it configured to run every day at a certain time but unfortunately, a lot of the people that use it have really bad internet and I can't run it during work hours, I have to run it after hours and they shut their computers off. The first thing Bitdefender does is it goes and looks for signatures in the morning and then it runs the updates at night and then it runs scans at night as well. Sometimes it can go three, four, five days without any update. I've had some that go up to 27. The longest I've had was 32 days and it didn't even run one scan. I have a client in the Philippines and right now, because of COVID, they're all over the Philippines and in the provinces where they have a really bad internet connection, it's a struggle. I have to schedule with them. The internet is so bad that I have six people using phone data to work because internet companies don't even go that far out for them to have a stable internet connection. In those cases, I'm struggling a little bit with Bitdefender. With a regular office set up, it runs like clockwork. But with this new normal that we have right now, it's been a little bit complicated. That's why I'm looking to add Cylance. I have a demo with them soon.
Bitdefender could improve their modules on the server. For example, Bitdefender doesn't have content filters or firewall modules on the server. It would be great if it had a networking module and a content filter module at the workstations. Because when you install it on a workstation and a server is totally different, the workstation has all the modules, firewalls, content filters, antivirus, anti-exploit, etc. But then the server has fewer features than the workstation. It has the anti-malware and the EDR, which is good because you can see the logs. It also has the device control so you can block USB's and whatever you need. But it doesn't have the content filter to see the anti-phishing, and it doesn't have the firewall inside to stop network attacks. This is something that could be improved.
We have not had any major problems with Bitdefender, it seems to be quite good. There are some additional features that they can implement in the product. For example, a remote wipe option or a geo-tracking for the laptop. That may not be the area they are targeting, but it would be useful. They were working on the encryption management for laptops, and if they complete it then it would be helpful.
At the moment, I do not have enough experience with the solution to know what needs to be improved. The cryptosystem could be improved a bit.
Having better descriptions or larger headings that will help you navigate through the to the ISP is needed. It needs to be a bit easier, a bit more intuitive. It would also be nice if we could move devices between companies.
We are having trouble on the server side. But also on the endpoint side. For example, specifically on my computer, I couldn't run it, so I had to remove the program. I'm not using endpoint security for now, especially not Bitdefenders right now. We find it's making the machines run slow. We're also having problems in the service groups. When we run GravityZone it suddenly goes very slowly. Some processes are bad and we can't use some features, so we had to uninstall some products from the service of some endpoint devices. We are using about 2000 endpoints and 2000 servers. They seem to have problems installing for the client. We can't seem to find support when we do an install. Uninstalling it is a problem as well. Recently, I tried to uninstall from my computer and when I tried to deploy it, it was hard for me to uninstall it. I have found some tools, but it was really hard to remove it with them too. It must be optimized in my opinion. Because it makes the machine very slow. In the past, we were using ESET NOD32. It was very good, it was not making the machine slow. It was normal. The machine was fast when I'm used ESET, but when I started using Bitdefender it made my computer very slow. It's not just me. My colleague is complaining that the machines are becoming very slow after using Bitdefender. They should make uninstalling easier and improve the service side, but also make it removable on demand locally. It needs to be removable from the local service, not the cloud.
The solution can be improved by being able to pull up the localization key map of the user. Also, to be more international, not just American compliant.
The pricing should be improved. The user interface has been improved on a yearly basis. The key issue is that they need to look at their pricing. Bitdefender is very productive because since we started selling Bitdefender for the past ten years, we've had almost about six different revisions. Every year and every six months there are improvements in their products, based on feedback, customer needs, changes in technology, and so on. For example, people were talking about encryption, so today you have GravityZone that has the ability to perform disc encryption. Disc encryption is done to ensure that your disc isn't attacked. Clients were requesting for endpoint detection EDR, which right now they have been able to incorporate. At any point in time, they have always been improving. Every six months there are new features. Every three months new features come in to address the needs of these customers. Bitdefender has consistently been very pro-active in virtually all the places we've installed. We ask our clients if they have any issues with the product. All of them say that it's very easy to install and to understand and that they don't have any problems with it. Any global requirements are constantly incorporated. Our clients want to see some intelligence built into reporting but they saw that most antivirus solutions don't do analytics. Bitdefender has acquired a new company that does analytics so the analytics software gets input from the antivirus then it is able to correlate and give you the analytics that are required.
There is room for improvement in the communication between servers and endpoints. The performance there needs to be much better. When we install endpoints and they communicate with the appliance server, we notice a drop in endpoint performance. The endpoint automatically connects and the policies are applied to the endpoint but the performance does not meet our expectations. In terms of additional features, I would like to see a remote desktop for installed endpoints so administrators can see what is on a user's screen or what a user is doing. A remote desktop between the server and the endpoints would be a useful feature in Bitdefender.