Kaspersky Endpoint Detection and Response (EDR) Optimum helps identify, analyze and neutralize evasive threats by providing easy-to-use advanced detection, simplified investigation and automated response. It is a basic EDR tool for mid-market organizations who are just starting to build their incident response processes.
$14.50
per year on a 3 year license (Pricing is for a 3-year commitment, calculated per year). 1 and 2 year licenses also available. per endpoint
Microsoft Defender XDR
Score 8.9 out of 10
N/A
Microsoft 365 Defender combines SIEM and XDR capabilities for Microsoft 365 environments, encompassing threat detection, post-breach detection, automated investigation, and response for endpoints. Additionally, it protects cloud apps, emails and documents, and employee identities.
N/A
Pricing
Kaspersky EDR Optimum
Microsoft Defender XDR
Editions & Modules
Kaspersky EDR Optimum
$14.50
per year on a 3 year license (Pricing is for a 3-year commitment, calculated per year). 1 and 2 year licenses also available. per endpoint
I’m convinced that the key is guaranteeing the 100% of coverage, with the best configuration possible and without pain or hit at resource consumption and harmonies performance.I would like that the solution detecting, inventorying, and alerting about some host/device unknow or don’t register in KSC. Don’t depend on Device Detection function.
Suit Really in everything, what is modern cloud work especially really if you work in a global company where your IT team is not always operational hour of the business users so that everything is really in the cloud can be managed from everywhere, but we do not access to local resources anymore. That's really a good point. What is always a little bit the pressure point is that general things in cloud things are moving fast so it's always difficult to keep the teams that is using these words up to date
KEDR Optimum is helping to see threat kill chain formation, which helps to get clear picture of the what exactly attacker was trying to do during attack.
We are crating prevent execution rules to block the threat in our complete infra.
Ioc scan to validate and remove the any active threat entry from our endpoints
The software uses advanced AI and machine learning algorithms to monitor activities and detect any anomalies immediately, protecting our financial data.
Automated responses to known threats reduce the impact of possible incidents and improve our security posture.
Microsoft 365 Defender easily combines with other Microsoft 365 services and external security solutions, providing a complete and unified security solution.
Microsoft 365 Defenders risk assessment and remediation tool can be improved while tackling and preventing the attack.
As there are multiple new attacks are getting discovered to prevent and remediate those attacks the Microsoft 365 Defenders database should be keep updated and ready.
The Microsoft 365 Defenders capability to identify the insider attacker can be improved.
Automate response generated to remediate the attack can be strengthen.
At the moment and unfortunately we'll not renew our licenses, due to the Russian conflict and the company policy that has forced us to get rid of any Russian related product. Before that incident, we were very happy with the product and we did not even think once about changing it... Maybe on the future...
All though most of the features are upto mark, there are certain times where there have been misses to detect spam, phising emails. this might be due to the subject and content of the email being more sophisticated than standard .
This item can always be improved, perhaps by pre-elaborating very long reports, such that they are built progressively so that when the user wants to consult them, the delay is minimal. It would also be interesting to have a warehouse of reports, which serves as a repository where they can be consulted whenever needed, adding AI capabilities that allow data to be linked together and improve the analysis and possible correlations of events.
Their support throughout our onboarding of the product was fabulous. They not only took the time to carefully explain to teams not as well equipped with the lingo but explained to the tech team how to teach the other teams to be successful. They never once seemed impatient or annoyed with basic questions and didn’t pretend to know something when they needed to research an answer
Microsoft Provides a good training for the Microsoft 365 Defender and has a good learning paths to learn and take the exams and get your Certifications.
seemless and almost transparent. can be deployed by script if needed so every endpoint on our system get's it. if you have intune it gets dumped on the the endpoint by policy so nothing escapes it
Kaspersky EDR Optimum is the evolution of Kaspersky Endpoint Bussiness, a more complete product, which runs the same software on Windows 11 and Windows Server. Now, we already use Kaspersky Sandbox on-premises, which has now been unified with KEDR as Cloud Sandbox. These improvements and unifications have made life easier for Security administrators.
We chose Microsoft Defender XDR for the ability to correlament the dangers in the Microsoft Ecosystem, Strong Automation, and email, Identification, Estruction, Establishment Points and Cloud Apps in the same platform. This gave us the end-to-end visibility without the need to sew several devices simultaneously.
Cost-Efficiency: Microsoft Defender XDR often proves cost-effective compared to implementing multiple standalone security solutions, consolidating threat detection and response capabilities.
Time Savings: Its centralized dashboard and automated features can save time for security teams, allowing them to focus on critical tasks